650 matches found
CVE-2025-11462 Local Privilege Escalation Vulnerability in AWS Client VPN macOS Client
Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1.3.2- 5.2.0 allows a local user to execute code with elevated privileges. Insufficient validation checks on the log destination directory during log rotation could allow a non-administrator user to create a...
EUVD-2020-7409
Malware in sbrugna...
EUVD-2018-6611
Malware in sbrugna...
EUVD-2017-8008
Malware in sbrugna...
EUVD-2019-13330
Malware in sbrugna...
EUVD-2020-4257
Malware in sbrugna...
EUVD-2012-6599
Malware in sbrugna...
EUVD-2023-48479
Malicious code in bioql PyPI...
EUVD-2024-34369
Malicious code in bioql PyPI...
EUVD-2021-27526
Malicious code in bioql PyPI...
EUVD-2023-32395
Malicious code in bioql PyPI...
EUVD-2023-58580
Malicious code in bioql PyPI...
Cisco IOS Software SNMP DoS RCE (cisco-sa-snmp-x4LPhte)
According to its self-reported version, Cisco IOS is affected by a vulnerability. - A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges could cause...
Vulnerabilities fixed in Cisco Secure Firewall ASA and FTD
Cisco has fixed vulnerabilities in Cisco Secure Firewall ASA and FTD Software. The vulnerability with reference CVE-2025-20333, is located in how the software validates user input in HTTPS requests. An attacker with valid VPN login credentials can exploit this vulnerability by sending specially...
CVE-2025-20352
A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges could cause a denial of service DoS condition on an affected device that is running Cisco IOS...
CVE-2025-20352
CVE-2025-20352 concerns Cisco IOS/IOS XE SNMP subsystem. A stack-based buffer overflow could allow a low-privileged, authenticated remote attacker to cause a DoS (reload) or, with higher privileges, execute arbitrary code as root on affected devices. Exploitation requires SNMP credentials (v2c/v1...
VulnCheck KEV: CVE-2025-20352
A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges could cause a denial of service DoS condition on an affected device that is running Cisco IOS...
PT-2025-39307
Name of the Vulnerable Software and Affected Versions Cisco IOS and IOS XE Software versions prior to IOS XE 17.15.4a Description A vulnerability exists in the Simple Network Management Protocol SNMP subsystem of Cisco IOS and IOS XE Software. This flaw, a stack overflow condition, allows an...
Uncontrolled Search Path Element
Overview Affected versions of this package are vulnerable to Uncontrolled Search Path Element via the safeasterisk script, which sources all .sh files in the /etc/asterisk/startup.d/ directory as root without validating ownership or permissions. An attacker can execute arbitrary code with root...
Amazon Linux 2 : mock, --advisory ALAS2MOCK-2025-001 (ALASMOCK-2025-001)
The version of mock installed on the remote host is prior to 1.4.19-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2MOCK-2025-001 advisory. The Mock software contains a vulnerability wherein an attacker could potentially exploit privilege escalation, enabling the...