Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-24524

Malware in sbrugna...

7.2CVSS6.6AI score0.00305EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1098

Malware in sbrugna...

7.2CVSS6.6AI score0.00349EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/05/15 12:0 a.m.24 views

Cisco Firepower Threat Defense Software Shell Access (cisco-sa-ftd-shell-9rhJF68K)

According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a shell access vulnerability in the support tunnel feature due to improper configuration of that feature. An authenticated, local attacker can exploit this, by enabling the support tunnel, setting a key...

7.2CVSS6.6AI score0.00305EPSS
Exploits0References3
OSV
OSV
added 2020/05/06 5:15 p.m.1 views

CVE-2020-3253

A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access the shell of an affected device even though expert mode is disabled. The vulnerability is due to improper configuration of the support tunnel feature...

6.7CVSS5.8AI score0.00305EPSS
Exploits0References1
NVD
NVD
added 2020/05/06 5:15 p.m.20 views

CVE-2020-3253

A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access the shell of an affected device even though expert mode is disabled. The vulnerability is due to improper configuration of the support tunnel feature...

7.2CVSS6.5AI score0.00305EPSS
Exploits0References1
Prion
Prion
added 2020/05/06 5:15 p.m.14 views

Input validation

A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access the shell of an affected device even though expert mode is disabled. The vulnerability is due to improper configuration of the support tunnel feature...

7.2CVSS6.5AI score0.00305EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/05/06 4:41 p.m.21 views

CVE-2020-3253 Cisco Firepower Threat Defense Software Shell Access Vulnerability

A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access the shell of an affected device even though expert mode is disabled. The vulnerability is due to improper configuration of the support tunnel feature...

6.7CVSS6.5AI score0.00305EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/05/06 4:41 p.m.11 views

CVE-2020-3253 Cisco Firepower Threat Defense Software Shell Access Vulnerability

A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access the shell of an affected device even though expert mode is disabled. The vulnerability is due to improper configuration of the support tunnel feature...

6.7CVSS6.7AI score0.00305EPSS
Exploits0References1
CVE
CVE
added 2020/05/06 4:41 p.m.56 views

CVE-2020-3253

Cisco Firepower Threat Defense (FTD) Software contains a shell access vulnerability in the support tunnel feature. An authenticated, local attacker can enable the support tunnel, set a key, and derive the tunnel password to execute arbitrary commands with root privileges, even when expert mode is...

7.2CVSS6.5AI score0.00305EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2020/05/06 4:0 p.m.26 views

Cisco Firepower Threat Defense Software Shell Access Vulnerability

A vulnerability in the support tunnel feature of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to access the shell of an affected device even though expert mode is disabled. The vulnerability is due to improper configuration of the support tunnel feature...

6.7CVSS6.5AI score0.00305EPSS
Exploits0References1
CNVD
CNVD
added 2018/05/11 12:0 a.m.3 views

Cisco Identity Services Engine Misconfiguration Vulnerability

Cisco Identity Services Engine ISE is an identity-based environment awareness platform ISE Identity Services Engine from Cisco. The platform collects real-time information from the network, users and devices, and develops and enforces policies to regulate the network. A misconfiguration...

7.2CVSS6.8AI score0.00349EPSS
Exploits0References1
NVD
NVD
added 2018/04/19 8:29 p.m.21 views

CVE-2018-0275

A vulnerability in the support tunnel feature of Cisco Identity Services Engine ISE could allow an authenticated, local attacker to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit this vulnerability by tricking...

7.2CVSS6.6AI score0.00349EPSS
Exploits0References2
OSV
OSV
added 2018/04/19 8:29 p.m.7 views

CVE-2018-0275

A vulnerability in the support tunnel feature of Cisco Identity Services Engine ISE could allow an authenticated, local attacker to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit this vulnerability by tricking...

6.7CVSS5.8AI score0.00349EPSS
Exploits0References2
Prion
Prion
added 2018/04/19 8:29 p.m.20 views

Input validation

A vulnerability in the support tunnel feature of Cisco Identity Services Engine ISE could allow an authenticated, local attacker to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit this vulnerability by tricking...

7.2CVSS6.5AI score0.00349EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/04/19 8:0 p.m.62 views

CVE-2018-0275

Cisco Identity Services Engine (ISE) contains a local, authenticated-exploit vulnerability in the support tunnel feature. Improper configuration can let an attacker unlock the support user account and access the tunnel password and device serial number, enabling execution of arbitrary commands wi...

7.2CVSS6.5AI score0.00349EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2018/04/19 8:0 p.m.10 views

CVE-2018-0275

A vulnerability in the support tunnel feature of Cisco Identity Services Engine ISE could allow an authenticated, local attacker to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit this vulnerability by tricking...

6.9AI score0.00349EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/04/19 8:0 p.m.24 views

CVE-2018-0275

A vulnerability in the support tunnel feature of Cisco Identity Services Engine ISE could allow an authenticated, local attacker to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit this vulnerability by tricking...

6.6AI score0.00349EPSS
Exploits0References2
Cisco
Cisco
added 2018/04/18 4:0 p.m.45 views

Cisco Identity Services Engine Shell Access Vulnerability

A vulnerability in the support tunnel feature of Cisco Identity Services Engine ISE could allow an authenticated, local attacker to access the device's shell. The vulnerability is due to improper configuration of the support tunnel feature. An attacker could exploit this vulnerability by tricking...

6.7CVSS1.8AI score0.00349EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2017/12/01 12:0 a.m.5 views

PT-2017-4252

Name of the Vulnerable Software and Affected Versions Cisco Umbrella Virtual Appliance versions prior to 2.1.0 Cisco Umbrella affected versions not specified Description The issue is related to errors in resource release in the web interface of the Cisco Umbrella security service. Exploitation of...

6.4CVSS6.7AI score0.00359EPSS
Exploits1References9
0day.today
0day.today
added 2017/10/24 12:0 a.m.75 views

Cisco Umbrella Virtual Appliance 2.0.3 Undocumented Support Tunnel Vulnerability

Cisco Umbrella Virtual Appliance versions 2.0.3 and below contain an undocumented, auto-initiated reverse SSH tunnel which allows the Cisco Umbrella support team to have persistent and unrestricted access to the virtual appliance. Cisco Umbrella Virtual Appliance - Undocumented Support Tunnel...

6CVSS6.6AI score0.00359EPSS
Exploits1
Rows per page
Query Builder