23 matches found
Siemens RUGGEDCOM ROX II Client-Side Enforcement of Server-Side Security (CVE-2025-33024)
The 'tcpdump' tool in the web interface of affected devices is vulnerable to command injection due to missing server side input sanitation. This could allow an authenticated remote attacker to execute arbitrary code with root privileges. This plugin only works with Tenable.ot. Please visit...
EUVD-2019-19325
Malware in sbrugna...
EUVD-2022-49818
Malicious code in bioql PyPI...
EUVD-2025-13943
Malicious code in bioql PyPI...
CVE-2022-47040
An issue in ASKEY router RTF3505VW-N1 BRSVg000R3505VMN1001s327 allows attackers to escalate privileges via running the tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets through port 80...
CVE-2019-9971
PhoneSystem Terminal in 3CX Phone System Debian based installation 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z aka postrotate-command option to tcpdump can be unsafe when used in conjunction with sud...
CVE-2025-33024
A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.5, RUGGEDCOM ROX MX5000RE All versions V2.16.5, RUGGEDCOM ROX RX1400 All versions V2.16.5, RUGGEDCOM ROX RX1500 All versions V2.16.5, RUGGEDCOM ROX RX1501 All versions V2.16.5, RUGGEDCOM ROX RX1510 All versions V2.16.5...
CVE-2025-43878
When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-C/A system. Note: Software versions which have reached End of...
CVE-2025-43878
In F5OS-A/C, the CVE-2025-43878 issue affects Appliance mode: an authenticated user with Administrator/Resource Administrator rights can bypass Appliance mode restrictions using the system diagnostics tcpdump command. Vulnerable mappings show F5OS-A versions 1.5.1–1.5.3 and F5OS-C versions 1.6.0–...
CVE-2025-43878 F5OS-A/C CLI vulnerability
When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-C/A system. Note: Software versions which have reached End of...
K000139502: F5OS vulnerability CVE-2025-43878
Security Advisory Description When running in appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-A/C system. CVE-2025-43878 Impact In...
PT-2025-20310 · F5 · F5Os-C/A
Name of the Vulnerable Software and Affected Versions: F5OS-C/A affected versions not specified Description: The issue allows an authenticated attacker with the Administrator or Resource Administrator role to bypass Appliance mode restrictions on a F5OS-C/A system when running in Appliance mode...
ABB Cylon FLXeon 9.3.4 wsConnect.js WebSocket Command Spawning Exploit
ABB Cylon FLXeon version 9.3.4 is vulnerable to an unauthenticated WebSocket implementation that allows an attacker to execute the tcpdump command. This command captures network traffic and filters it on serial ports 4855 and 4851, which are relevant to the device's services. The vulnerability ca...
ABB Cylon FLXeon 9.3.4 wsConnect.js WebSocket Command Spawning
ABB Cylon FLXeon version 9.3.4 is vulnerable to an unauthenticated WebSocket implementation that allows an attacker to execute the tcpdump command. This command captures network traffic and filters it on serial ports 4855 and 4851, which are relevant to the device's services. The vulnerability ca...
ABB Cylon FLXeon 9.3.4 (wsConnect.js) WebSocket Command Spawning PoC
Summary BACnet® Smart Building Controllers. ABB's BACnet portfolio features a series of BACnet® IP and BACnet MS/TP field controllers for ASPECT® and INTEGRA™ building management solutions. ABB BACnet controllers are designed for intelligent control of HVAC equipment such as central plant, boiler...
Command injection
An issue in ASKEY router RTF3505VW-N1 BRSVg000R3505VMN1001s327 allows attackers to escalate privileges via running the tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets through port 80...
PT-2023-15142 · Askey · Askey Rtf3505Vw-N1
Name of the Vulnerable Software and Affected Versions: ASKEY router RTF3505VW-N1 version BR SV g000 R3505VMN1001 s32 7 Description: The issue allows attackers to escalate privileges by running the tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets throu...
CVE-2022-47040
An issue in ASKEY router RTF3505VW-N1 BRSVg000R3505VMN1001s327 allows attackers to escalate privileges via running the tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets through port 80...
CVE-2022-47040
An issue in ASKEY router RTF3505VW-N1 BRSVg000R3505VMN1001s327 allows attackers to escalate privileges via running the tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets through port 80...
CVE-2019-9971
PhoneSystem Terminal in 3CX Phone System Debian based installation 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z aka postrotate-command option to tcpdump can be unsafe when used in conjunction with sud...