11 matches found
EUVD-2020-24848
Malware in sbrugna...
CVE-2024-20401
A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to overwrite arbitrary files on the underlying operating system. This vulnerability is due to improper handling of email attachments when file...
Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild
Cisco on Friday rolled out fixes for a medium-severity vulnerability affecting IOS XR Software that it said has been exploited in real-world attacks. Tracked as CVE-2022-20821 CVSS score: 6.5, the issue relates to an open port vulnerability that could be abused by an unauthenticated, remote...
Cisco Releases Patch for Critical Bug Affecting Unified CCMP and Unified CCDM
Cisco Systems has rolled out security updates for a critical security vulnerability affecting Unified Contact Center Management Portal Unified CCMP and Unified Contact Center Domain Manager Unified CCDM that could be exploited by a remote attacker to take control of an affected system. Tracked as...
Cisco Firepower Threat Defense Software Inline Pair/Passive Mode DoS (cisco-sa-ftd-inline-dos-nXqUyEqM)
According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a vulnerability in the ingress packet processing path for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent attacker to cause a denial of...
Vulnerability fixed in Huawei S5700 devices
Huawei has fixed a vulnerability in S5700 devices. A authenticated remote malicious person can exploit the vulnerability potentially exploit it to inject system commands. There are few substantive details about the vulnerability disclosed. Huawei has released updates to fix the vulnerability. The...
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 7, 2018
This week marked National Teacher Appreciation Week here in the United States. I was happy to see that many other countries celebrate educators in all the other months of the year. All of us have at least one teacher, instructor or professor who really made a difference in our lives. There are tw...
Security Advisory 0026
Security Advisory 0026 PDF Date: October 21st, 2016 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | October 21st, 2016 | Initial release Arista Products vulnerability report for CVE-2016-5195 On October 21st 2016, information was released about a security advisory for a race condition...
Security Advisory 0010
Security Advisory 0010 PDF Date: May 14th 2015 Revision| Date| Changes ---|---|--- 1.0 | May 14th, 2015 | Initial release 1.1 | November 22nd, 2017 | Resolution section updated to reflect the correct BUGID Arista 7000 Series Products and Arista EOS are vulnerable to CVE-2015-3456. On May 13th, 20...
PT-2013-58: Insufficient Session Security in Huawei M2000
The specialists of the Positive Research center have detected an Insufficient Session Security vulnerability in Huawei M2000. Access rights storage mechanism is vulnerable to cryptographic attacks. An attacker may calculate the new checksum and obtain elevated privileges via brute force attack. H...
PT-2013-53: Information Disclosure in Huawei SGSN USN9810
The specialists of the Positive Research center have detected an Information Disclosure vulnerability in Huawei SGSN USN9810. Web application displays the system information such as the version of the web server, its components, and the details about the installation platform in the HTTP-response...