CVE-2025-20029

Command injection vulnerability exists in iControl REST and BIG-IP TMOS Shell tmsh save command, which may allow an authenticated attacker to execute arbitrary system commands. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2025-20029

Command injection vulnerability exists in iControl REST and BIG-IP TMOS Shell tmsh save command, which may allow an authenticated attacker to execute arbitrary system commands. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

The vulnerability of the Foxit PhantomPDF PDF editing program and the Foxit PDF viewer program, related to data conversion errors, allows a perpetrator to execute arbitrary code.

The vulnerability of the Foxit PhantomPDF PDF editing program and the Foxit PDF viewer program is related to data type conversion errors. Exploiting this vulnerability can allow an attacker to execute arbitrary code using the “Save” command...

CVE-2020-10891

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Foxit Reader and PhantomPDF Type Confusion Remote Code Execution Vulnerability

Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A security vulnerability exists in the handling of the Save command in Foxit Reader and Foxit PhantomPDF 9.7.1.29511 and earlier versions for Windows platforms, which stems from the program failing to...

The vulnerability of the programmatically defined Cisco SD-WAN network, which arises due to insufficient validation of input data, allows a hacker to modify arbitrary files and increase their privileges.

The vulnerability of the programmatically defined Cisco SD-WAN network exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to modify arbitrary files and elevate their privileges to root by changing the “save” command in the command interface...

Cisco SD-WAN Solution Input Validation Error Vulnerability

Cisco vBond Orchestrator Software and other products are from Cisco. cisco vBond Orchestrator Software is a set of security network extension management software. vEdge 100 Series Routers is a 100 series router product. SD-WAN Solution is a set of network extension solution running in it. An inpu...

CVE-2019-1650

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An...

OpenText Documentum Content Server "RPC save-command" elevation vulnerability

OpenText Documentum Content Server is a platform for managing content in a repository and consists of three parts: a content server, a relational database, and a location to store documents. OpenText Documentum Content Server "RPC save-command" has an elevation vulnerability that can be exploited...