CVE-2022-50818 scsi: pm8001: Fix running_req for internal abort commands

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix runningreq for internal abort commands Disabling the remote phy for a SATA disk causes a hang: root@none$ more /sys/class/sasphy/phy-0:0:8/targetportprotocols sata root@none$ echo 0...

EUVD-2019-10396

Malware in sbrugna...

EUVD-2020-24447

Malware in sbrugna...

EUVD-2018-7269

Malware in sbrugna...

DEBIAN-CVE-2023-53124

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix NULL pointer access in mpt3sastransportportadd Port is allocated by sasportallocnum and rphy is allocated by either sasenddevicealloc or sasexpanderalloc, all of which may return NULL. So we need to check the...

CISCO-SA-20190821-RPHY

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:41+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666793529477205...

The vulnerability of Cisco Remote PHY device’s software lies in the lack of measures taken to neutralize special elements used in the operating system commands. This allows attackers to execute arbitrary commands in the Linux shell with root privileges.

The vulnerability of Cisco Remote PHY device software relates to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands in the Linux shell with root privileges...

Cisco Remote PHY 120, Remote PHY 220, and Remote PHY Shelf 7200 Command Injection Vulnerabilities

The Cisco Remote PHY 120 and others are a remote PHY port physical layer device from Cisco. A command injection vulnerability exists in the Cisco Remote PHY 120 Release prior to 7.7, Remote PHY 220 all releases, and Remote PHY Shelf 7200 all releases, which stems from the program's failure to...

CVE-2020-3176

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exists because the affected software does not properly sanitize user-supplied input. An...

CVE-2020-3176

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exists because the affected software does not properly sanitize user-supplied input. An...

Input validation

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exists because the affected software does not properly sanitize user-supplied input. An...

CVE-2020-3176 Cisco Remote PHY Device Software Command Injection Vulnerability

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exists because the affected software does not properly sanitize user-supplied input. An...

CVE-2020-3176 Cisco Remote PHY Device Software Command Injection Vulnerability

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exists because the affected software does not properly sanitize user-supplied input. An...

CVE-2020-3176

CVE-2020-3176 affects Cisco Remote PHY Device Software. A local attacker with valid administrator access can exploit improper input sanitization to inject commands into the Linux shell with root privileges, potentially taking full control of the device. Vendors have issued advisories and, where a...

Cisco Remote PHY Device Software Command Injection Vulnerability

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exists because the affected software does not properly sanitize user-supplied input. An...

The vulnerability of Cisco Remote PHY software, related to insufficient input data validation, allows a perpetrator to execute arbitrary commands in the Linux kernel with root privileges.

The vulnerability of Cisco Remote PHY software is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary commands in the Linux kernel with root privileges...

CVE-2019-1839

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected software improperly sanitizes user-supplied input. An attack...

CVE-2019-1839

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected software improperly sanitizes user-supplied input. An attack...

Input validation

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected software improperly sanitizes user-supplied input. An attack...

CVE-2019-1839 Cisco Remote PHY Device Software Command Injection Vulnerability

A vulnerability in Cisco Remote PHY Device Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected software improperly sanitizes user-supplied input. An attack...