Lucene search
+L

443 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-13897

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.01159EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-26194

Malicious code in bioql PyPI...

6.8CVSS6.6AI score0.00203EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/26 12:0 a.m.6 views

Cisco IOS XE Software Web Services Remote Code Execution (cisco-sa-http-code-exec-WmfP3h3O)

According to its self-reported version, Cisco IOS-XE Software is affected by a web services remote code exeuction vulnerability: - A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance ASA Software, Cisco Secure Firewall Threat Defense FTD Software, Cisco IOS...

9CVSS9.3AI score0.0752EPSS
Exploits0References4
OSV
OSV
added 2025/09/24 6:15 p.m.4 views

CVE-2025-20352

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges could cause a denial of service DoS condition on an affected device that is running Cisco IOS...

7.7CVSS6.2AI score0.37613EPSS
Exploits1References2
CVE
CVE
added 2025/09/24 5:14 p.m.32 views

CVE-2025-20149

CVE-2025-20149 affects Cisco IOS and IOS XE CLI, where a buffer overflow in the CLI could be triggered by crafted commands from a low-privileged, authenticated user to cause an unexpected device reload (DoS). The vulnerability is local-attack accessible (LOCAL), with LOW privileges required and n...

6.5CVSS6.5AI score0.00113EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/24 5:10 p.m.18 views

CVE-2025-20352

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges could cause a denial of service DoS condition on an affected device that is running Cisco IOS...

7.7CVSS0.37613EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.8 views

PT-2025-33327

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software affected versions not specified Cisco IOS XE Software affected versions not specified Cisco Secure Firewall Adaptive Security Appliance ASA Software affected versions not specified Cisco Secure Firewall Threat Defense FTD...

8.6CVSS6.4AI score0.00585EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 1:45 a.m.13 views

CVE-2023-20227

A vulnerability in the Layer 2 Tunneling Protocol L2TP feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of certain L2TP packets. An attacker could explo...

8.6CVSS7.1AI score0.00653EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.10 views

PT-2025-21057 · Intel · Intel Arc +1

Name of the Vulnerable Software and Affected Versions: IntelR Arc™ and IrisR Xe graphics software versions prior to 32.0.101.6077 Description: The issue is related to improper access control for some IntelR Arc™ and IrisR Xe graphics software. This may allow an authenticated user to potentially...

6.7CVSS6.1AI score0.00121EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.10 views

CVE-2025-20200

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...

8.2CVSS7AI score0.00145EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.13 views

CVE-2025-20199

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...

8.2CVSS7AI score0.00141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.14 views

CVE-2025-20186

A vulnerability in the web-based management interface of the Wireless LAN Controller feature of Cisco IOS XE Software could allow an authenticated, remote attacker with a lobby ambassador user account to perform a command injection attack against an affected device. This vulnerability is due to...

8.8CVSS8.2AI score0.01159EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.10 views

CVE-2025-20193

A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remote attacker to perform an injection attack against an affected device.r This vulnerability is due to insufficient input validation. An attacker could exploit this...

6.5CVSS0.00355EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.10 views

CVE-2025-20140

A vulnerability in the Wireless Network Control daemon wncd of Cisco IOS XE Software for Wireless LAN Controllers WLCs could allow an unauthenticated, adjacent wireless attacker to cause a denial of service DoS condition. This vulnerability is due to improper memory management. An attacker could...

7.4CVSS0.00204EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 5:46 p.m.57 views

CVE-2025-20193

CVE-2025-20193 affects the Cisco IOS XE Software web-based management interface. The root cause is insufficient input validation, enabling an authenticated, low-privilege attacker over the network to perform an injection attack that could read files from the underlying operating system. Connected...

6.5CVSS6.5AI score0.00355EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/05/07 5:44 p.m.54 views

CVE-2025-20200

The CVE-2025-20200 entry describes a privilege-escalation vulnerability in Cisco IOS XE Software CLI. An authenticated local attacker with privilege level 15 can exploit insufficient input validation when processing specific configuration commands to elevate to root on the device’s operating syst...

8.2CVSS6.6AI score0.00145EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/07 5:37 p.m.7 views

CVE-2025-20186

A vulnerability in the web-based management interface of the Wireless LAN Controller feature of Cisco IOS XE Software could allow an authenticated, remote attacker with a lobby ambassador user account to perform a command injection attack against an affected device. This vulnerability is due to...

8.8CVSS9.2AI score0.01159EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 5:37 p.m.19 views

CVE-2025-20186

A vulnerability in the web-based management interface of the Wireless LAN Controller feature of Cisco IOS XE Software could allow an authenticated, remote attacker with a lobby ambassador user account to perform a command injection attack against an affected device. This vulnerability is due to...

8.8CVSS0.01159EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 5:35 p.m.14 views

CVE-2025-20189

A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers with Route Switch Processor 3 RSP3C could allow an unauthenticated, adjacent attacker to trigger a denial of service DoS condition. This vulnerability is due to...

7.4CVSS0.00204EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 5:18 p.m.19 views

CVE-2025-20151 Cisco IOS and IOS XE Software SNMPv3 Configuration Restriction Vulnerability

A vulnerability in the implementation of the Simple Network Management Protocol Version 3 SNMPv3 feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to poll an affected device using SNMP, even if the device is configured to deny SNMP traffic from ...

4.3CVSS4.7AI score0.00328EPSS
Exploits0References1
Rows per page
Query Builder