Unspecified Vulnerability in NeDi Consulting NeDi (CNVD-2020-44583)

NeDi Consulting NeDi is a suite of open source software that supports discovery and mapping of network devices from the Swiss company NeDi Consulting. A security vulnerability exists in NeDi Consulting NeDi version 1.9C, which stems from the System-Snapshot.php file not properly escaping shell...

CVE-2020-14412

NeDi 1.9C is vulnerable to Remote Command Execution. System-Snapshot.php improperly escapes shell metacharacters from a POST request. An attacker can exploit this by crafting an arbitrary payload any system commands that contains shell metacharacters via a POST request with a psw parameter. This...

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a perpetrator to gain access to protected data with hashed passwords.

The vulnerability of the System Snapshot extension in microprogramming software for Cisco TelePresence Video Communication Servers lies in the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to protected data using...

Cisco TelePresence Video Communication Server Expressway Password Hash Acquisition Vulnerability

Cisco TelePresence Video Communication Server is a video conferencing solution that integrates h.323 and SIP. A security vulnerability exists in Cisco TelePresence Video Communication Server Expressway that allows an authenticated user to download a snapshot of the system and obtain password hash...