CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

214 matches found

Vulnrichment•added 2024/08/07 12:0 a.m.•11 views

CVE-2024-41308

An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system...

7.1AI score0.0018EPSS

Exploits1References1

Vulnrichment•added 2024/08/07 12:0 a.m.•21 views

CVE-2024-41309

An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system...

7.1AI score0.0018EPSS

Exploits1References1

CVE•added 2024/08/07 12:0 a.m.•25 views

CVE-2024-41308

The CVE-2024-41308 issue affects IT Solutions Enjay CRM OS v1.0 within the Ping feature. The root cause described across sources is that the Ping capability allows an attacker to escape the restricted terminal environment and obtain root-level privileges on the underlying system, resulting in a h...

8.4CVSS7.1AI score0.0018EPSS

Exploits1References1Affected Software1

Cvelist•added 2024/07/24 12:0 a.m.•22 views

CVE-2024-39345

AdTran 834-5 HDC17600021F1 SmartOS 11.1.1.1 devices enable the SSH service by default and have a hidden, undocumented, hard-coded support account whose password is based on the devices MAC address. All of the devices internet interfaces share a similar MAC address that only varies in their final...

0.00114EPSS

Exploits0References3

Vulnrichment•added 2024/07/24 12:0 a.m.•18 views

CVE-2024-39345

7.7AI score0.00114EPSS

Exploits0References3

Tenable Nessus•added 2024/04/25 12:0 a.m.•92 views

Cisco Adaptive Security Appliance Software Privilege Escalation (cisco-sa-asaftd-persist-rce-FLsNXF4h)

A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive Security Appliance ASA Software could allow an authenticated, local attacker to execute arbitrary code with root-level privileges. Administrator-level...

6CVSS8.7AI score0.00133EPSS

Exploits1References2

Tenable Nessus•added 2024/04/25 12:0 a.m.•88 views

Cisco Firepower Threat Defense Software Privilege Escalation (cisco-sa-asaftd-persist-rce-FLsNXF4h)

A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary code with root-level privileges. Administrator-level...

6CVSS8.7AI score0.00133EPSS

Exploits1References2

Cvelist•added 2024/04/24 7:38 p.m.•22 views

CVE-2024-20358

A vulnerability in the Cisco Adaptive Security Appliance ASA restore functionality that is available in Cisco ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system with root-level...

6CVSS6.9AI score0.00026EPSS

Exploits0References1

Vulnrichment•added 2024/04/24 7:38 p.m.•19 views

CVE-2024-20358

6CVSS6.4AI score0.00026EPSS

Exploits0References1

OSV•added 2024/04/24 7:15 p.m.•0 views

CVE-2024-20359

A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary code...

6CVSS6.1AI score0.00133EPSS

Exploits1References3

NVD•added 2024/04/24 7:15 p.m.•23 views

CVE-2024-20359

6CVSS6.2AI score0.00133EPSS

Exploits1References3

Cvelist•added 2024/04/24 6:16 p.m.•37 views

CVE-2024-20359

6CVSS6.4AI score0.00133EPSS

Exploits1References1

CVE•added 2024/04/24 6:16 p.m.•488 views

CVE-2024-20359

CVE-2024-20359 affects Cisco ASA and Cisco FTD. A legacy capability flaw allows an authenticated local attacker to exploit improper validation of a file read from flash memory by copying a crafted file to disk0:, enabling arbitrary code execution with root privileges after the next device reload....

6CVSS7.3AI score0.00133EPSS

In wildExploits1References3Affected Software1

Cisco•added 2024/04/24 4:0 p.m.•50 views

Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability

6CVSS6.6AI score0.00133EPSS

Exploits1References1

Positive Technologies•added 2024/04/24 12:0 a.m.•1 views

PT-2024-3071

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software affected versions not specified Description A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins could...

6.2CVSS8.5AI score0.00133EPSS

Exploits1References83

NVD•added 2023/10/25 6:17 p.m.•10 views

CVE-2023-43506

A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux instance to elevate their user privileges to those of a higher role. A successful exploit allows malicious users to execute arbitrary code with root level privileges on the Linux instance...

7.8CVSS7.8AI score0.00115EPSS

Exploits0References1

NVD•added 2023/08/16 10:15 p.m.•7 views

CVE-2023-20017

Multiple vulnerabilities in Cisco Intersight Private Virtual Appliance could allow an authenticated, remote attacker to execute arbitrary commands using root-level privileges. The attacker would need to have Administrator privileges on the affected device to exploit these vulnerabilities. These...

9.1CVSS7.6AI score0.00074EPSS

Exploits0References1

NVD•added 2023/08/16 10:15 p.m.•9 views

CVE-2023-20013

9.1CVSS7.6AI score0.00107EPSS

Exploits0References1