15 matches found
EUVD-2020-24486
Malware in sbrugna...
EUVD-2016-3857
Malware in sbrugna...
D-Link DIR-605L/DIR-618 formVirtualServ Function Access Control Error Vulnerability
The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An Access Control Error vulnerability exists in the D-Link DIR-605L and D-Link DIR-618 that stems from improper access control of the file /goform/formVirtualServ, which can be exploited by an attacker ...
D-Link DIR-605L和D-Link DIR-618 安全漏洞
The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An Access Control Error vulnerability exists in the D-Link DIR-605L and D-Link DIR-618 that stems from improper access control of the file /goform/formVirtualServ, which can be exploited by an attacker ...
D-Link DIR-816 A2 /goform/form2AddVrtsrv.cgi Access Control Error Vulnerability
The D-Link DIR-816 is a wireless router from China's AUO D-Link. An access control error vulnerability exists in D-Link DIR-816 A2 version 1.10CNB05R1B011D88210, which stems from improper access control in /goform/form2AddVrtsrv.cgi. An attacker can exploit this vulnerability to be able to set up...
D-Link DIR-816 安全漏洞
The D-Link DIR-816 is a wireless router from China's AUO D-Link. An access control error vulnerability exists in D-Link DIR-816 A2 version 1.10CNB05R1B011D88210, which stems from improper access control in /goform/form2AddVrtsrv.cgi. An attacker can exploit this vulnerability to be able to set up...
Cisco IOS XE Software Privilege Escalation Vulnerability (cisco-sa-priv-esc1-OKMKFRhV)
According to its self-reported version, Cisco IOS XE Software is affected by a privilege escalation vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due t...
The vulnerability of Cisco IOS XE’s Virtual Services Containers allows attackers to elevate their privileges to the root level.
The vulnerability of Cisco IOS XE Virtual Services Containers is related to errors during the verification of the electronic signature during the installation of an Open Virtual Appliance OVA. Exploiting this vulnerability can allow a malicious individual to elevate their privileges to the root...
Cisco IOS XE Privilege Permission and Access Control Issues Vulnerability (CNVD-2020-31965)
Cisco IOS XE is the United States Cisco Cisco company's set of operating system developed for its network equipment. A privilege-granting and access-control issue vulnerability exists in Virtual Services Container in Cisco IOS XE Software, which arises from the program's failure to adequately...
CVE-2020-3215
A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due to insufficient validation of a user-supplied open virtual appliance OVA. An attacker could exploit...
CVE-2020-3215 Cisco IOS XE Software Privilege Escalation Vulnerability
A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due to insufficient validation of a user-supplied open virtual appliance OVA. An attacker could exploit...
CVE-2020-3215
Cisco IOS XE Software Privilege Escalation vulnerability CVE-2020-3215 affects the Virtual Services Container. The issue stems from insufficient validation of a user-supplied Open Virtual Appliance (OVA), allowing an authenticated, local attacker to install a malicious OVA and gain root-level pri...
Cisco IOS XE Software Privilege Escalation Vulnerability
A vulnerability in the Virtual Services Container of Cisco IOS XE Software could allow an authenticated, local attacker to gain root-level privileges on an affected device. The vulnerability is due to insufficient validation of a user-supplied open virtual appliance OVA. An attacker could exploit...
CVE-2016-2783
Avaya Fabric Connect Virtual Services Platform VSP Operating System Software VOSS before 4.2.3.0 and 5.x before 5.0.1.0 does not properly handle VLAN and I-SIS indexes, which allows remote attackers to obtain unauthorized access via crafted Ethernet frames...
Unauthorized Access Vulnerability in Multiple Avaya Products
Avaya Virtual Services Platform 8000 Series VSP 8000 and others are Ethernet switch products from Avaya, USA. An unauthorized access vulnerability exists in multiple Avaya products, which can be exploited by an attacker to gain access to affected devices...