Lucene search
K

345 matches found

BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.4 views

The vulnerability of the emergency recovery function of the Cisco SD-WAN vManage centralized system allows a intruder to gain unauthorized access to the device.

The vulnerability of the emergency recovery function of the Cisco SD-WAN vManage centralized system management platform is related to insufficient protection of registration data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to the...

6.5CVSS6.5AI score0.00944EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/17 12:0 a.m.3 views

The vulnerability of the web interface of Cisco SD-WAN microprogramming software allows a hacker to obtain confidential information.

The vulnerability of the web interface of Cisco SD-WAN microprogramming software exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information through a specially crafted HTTP request...

5.5CVSS6.5AI score0.00716EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2021/12/13 7:26 p.m.61 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.9.0 enhancement, security, and bug fix update

Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.9.0 on Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVS...

8.6CVSS6.8AI score0.15014EPSS
Exploits5References106
BDU FSTEC
BDU FSTEC
added 2021/12/09 12:0 a.m.4 views

The vulnerability of the CLI component of Cisco SD-WAN microprogramming software allows a hacker to execute arbitrary commands with root user privileges.

The vulnerability of the CLI component of Cisco SD-WAN software microprogramming systems exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary commands with root user privileges...

7.2CVSS7AI score0.00354EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/03 12:0 a.m.7 views

The vulnerability of the SD-WAN system “Bohatka,” related to lack of access control, allows a hacker to execute any arbitrary code on the system’s server.

The vulnerability of the SD-WAN system “Bohatka” is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the system’s server, after successful authentication via WebSocket...

9CVSS6AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/11 12:0 a.m.5 views

The vulnerability of the command-line interface (CLI) of Cisco SD-WAN microprogramming software allows a hacker to escalate their privileges and re-record arbitrary files.

The vulnerability of the command-line interface CLI of Cisco SD-WAN microprogramming software is related to insufficient verification of the commands executed. Exploiting this vulnerability can allow an attacker to enhance their privileges and re-record arbitrary files...

7.2CVSS6.8AI score0.00237EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2021/10/25 10:15 p.m.20 views

CVE-2021-41145

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. FreeSWITCH prior to version 1.10.7 is susceptible to Denial of Service via SIP flooding. When flooding FreeSWITCH...

8.6CVSS0.01598EPSS
Exploits3References2
CNNVD
CNNVD
added 2021/10/20 12:0 a.m.4 views

Cisco IOS XE SD-WAN Software 操作系统命令注入漏洞

Cisco IOS XE SD-WAN Software is a Cisco software for network management software-defined networking applied to the Cisco IOS XE network operating system. An operating system command injection vulnerability exists in the Cisco IOS XE SD-WAN CLI that stems from insufficient input validation in the...

7.8CVSS5.9AI score0.00297EPSS
Exploits0References6
Microsoft KB
Microsoft KB
added 2021/10/19 12:0 a.m.5 views

October 19, 2021—KB5006744 (OS Build 17763.2268) Preview

October 19, 2021—KB5006744 OS Build 17763.2268 Preview 11/17/20 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 10, version 1809, see its update history page. Highlights Adds...

7AI score
Exploits0
CNVD
CNVD
added 2021/09/24 12:0 a.m.14 views

Cisco IOS XE SD-WAN Software Command Injection Vulnerability

Cisco IOS XE SD-WAN Software is a Cisco IOS XE network operating system used for network management software-defined networking. The vulnerability can be exploited to execute arbitrary commands with elevated privileges by including malicious input in the parameters of the affected command...

7.2CVSS5.4AI score0.00346EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2021/09/23 2:30 a.m.2 views

CVE-2021-1589 Cisco SD-WAN vManage Software Disaster Recovery Feature Password Exposure Vulnerability

A vulnerability in the disaster recovery feature of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain unauthorized access to user credentials. This vulnerability exists because access to API endpoints is not properly restricted. An attacker could exploit this...

6.5CVSS5.6AI score0.00944EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/09/22 12:0 a.m.6 views

PT-2021-5069 · Cisco · Cisco Sd-Wan

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN Software affected versions not specified Description: A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information. This issue is due to improper protections on...

5.5CVSS5.3AI score0.00225EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/09/22 12:0 a.m.3 views

多款Cisco产品资源管理错误漏洞

Cisco IOS and others are products of Cisco, Inc.Cisco IOS is a set of operating systems developed for its network devices.IOS XE is a set of operating systems developed for its network devices.SD-WAN Software is one of the software-defined WAN software.Cisco IOS XE Software is an operating system...

8.6CVSS8AI score0.00947EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/09/22 12:0 a.m.13 views

Cisco SD-WAN 安全漏洞

Cisco SD-WAN is a highly secure cloud-scale architecture that is open, programmable, and scalable from Cisco USA. A security vulnerability exists in Cisco SD-WAN that results from improper protection of file access through the CLI. The vulnerability could allow an authenticated local attacker to...

5.5CVSS6AI score0.00225EPSS
Exploits0References7
OSV
OSV
added 2021/08/05 9:15 p.m.6 views

CVE-2021-22919

A vulnerability has been discovered in Citrix ADC formerly known as NetScaler ADC and Citrix Gateway formerly known as NetScaler Gateway, and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the limited available disk...

7.5CVSS5.7AI score0.0094EPSS
Exploits0References1
Akamai Blog
Akamai Blog
added 2021/07/28 2:0 p.m.49 views

Software-Defined Networking Concept Adoption at Akamai

Akamai engineering has adopted new technology concepts to enhance and expand routing capabilities at the edge. Previously, Akamai's traffic-steering capabilities were mainly focused on DNS-based routing. In this article, we would like to give you an in-depth look at how Akamai has embraced new...

6.9AI score
Exploits0
CNNVD
CNNVD
added 2021/07/21 12:0 a.m.5 views

Cisco SD-WAN vManage Software 安全漏洞

Cisco SD-WAN Solution is a set of network extension solutions from Cisco, of which vManage is the console. vManage Software for Cisco SD-WAN is vulnerable to an information disclosure vulnerability that could be exploited by an attacker to read arbitrary files on the underlying file system of the...

5.5CVSS5.8AI score0.00254EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2021/06/28 9:17 p.m.50 views

5G Security Vulnerabilities Fluster Mobile Operators

As 5G private networks roll out in the coming years, security may be a key issue for enterprises. A survey released at Mobile World Congress on Monday shows that major gaps persist in security capabilities among mobile operators. Some 68 percent of operators already sell private wireless networks...

7.5AI score
Exploits0References9
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/25 4:46 p.m.18 views

Security Bulletin: IBM Spectrum Scale and IBM GPFS are affected by security vulnerabilities (CVE-2015-4974, CVE-2015-4981)

Summary Security vulnerabilities have been identified in the current levels of IBM Spectrum Scale V4.1.1, IBM GPFS V4.1 and V3.5: - could allow a local non privileged attacker to execute commands with root privileges CVE-2015-4974 - could allow a local non privileged attacker to read system...

7.2CVSS5.2AI score0.00585EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2021/06/02 12:0 a.m.6 views

Cisco SD-WAN Software 安全漏洞

Cisco SD-WAN is a highly secure cloud-scale architecture that is open, programmable, and scalable from Cisco USA. A security vulnerability exists in the Cisco SD-WAN Software that allows an authenticated, local attacker to gain elevated privileges on an affected system...

7.8CVSS7.3AI score0.00248EPSS
Exploits0References5
Rows per page
Query Builder