29 matches found
EUVD-2015-4254
Malware in sbrugna...
Cisco NX-OS Software CLI Arbitrary Command Injection (CVE-2018-0307)
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecting...
Cisco Nexus 7000 Devices Virtual Device Context Privilege Escalation (CVE-2015-4231)
The Python interpreter in Cisco NX-OS 6.28a on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416. This plugin only works with Tenable.ot. Please visit...
CVE-2021-44835
An issue was discovered in Active Intelligent Visualization 5. The Vdc header is used in a SQL query without being sanitized. This causes SQL injection...
CVE-2021-44835
An issue was discovered in Active Intelligent Visualization 5. The Vdc header is used in a SQL query without being sanitized. This causes SQL injection...
CVE-2021-44835
An issue was discovered in Active Intelligent Visualization 5. The Vdc header is used in a SQL query without being sanitized. This causes SQL injection...
PT-2022-12239 · Unknown · Active Intelligent Visualization
Name of the Vulnerable Software and Affected Versions: Active Intelligent Visualization version 5 Description: An issue was discovered where the Vdc header is used in a SQL query without being sanitized, causing SQL injection. Recommendations: For Active Intelligent Visualization version 5,...
CVE-2009-3552
In RHEV-M VDC 2.2.0, it was found that the SSL certificate was not verified when using the client-side Red Hat Enterprise Virtualization Manager interface a Windows Presentation Foundation WPF XAML browser application to connect to the Red Hat Enterprise Virtualization Manager. An attacker on the...
CVE-2009-3552
In RHEV-M VDC 2.2.0, it was found that the SSL certificate was not verified when using the client-side Red Hat Enterprise Virtualization Manager interface a Windows Presentation Foundation WPF XAML browser application to connect to the Red Hat Enterprise Virtualization Manager. An attacker on the...
CVE-2009-3552
In RHEV-M VDC 2.2.0, the SSL certificate validation was not performed when using the client-side Red Hat Enterprise Virtualization Manager interface (a WPF-based browser app) to connect to the manager. This allows a local-network attacker to conduct a man-in-the-middle, potentially fooling users ...
GE EP-1902 RSTi-EP 2 Safe Feed-Inputs, 24 VDC Detection
Binary data 755535.prm...
GE EP-1922 RSTi-EP 2 Safe Feed-Inputs, 24 VDC Detection
Binary data 755536.prm...
Emerson 396687-01-6 Relay Isolated Vac/Vdc Digital Output module Detection
Binary data 756525.prm...
Emerson 396568-01-7 Non-isolated Analog Input/Output module Detection
Binary data 756510.prm...
GE EP-1901 RSTi-EP 1 Safe Feed-Input, 24 VDC Detection
Binary data 755534.prm...
CVE-2018-0307
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecting...
CVE-2018-0307
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecting...
CVE-2018-0307
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecting...
Important: Red Hat Security Advisory: Red Hat Satellite 6 security, bug fix, and enhancement update
An update is now available for Red Hat Satellite 6.2 for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...
CVE-2017-12338
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to read the contents of arbitrary files. The vulnerability is due to insufficient input validation for a specific CLI command. An attacker could exploit this vulnerability by issuing a crafted...