3 matches found
CVE-2025-32433
The CVE-2025-32433 issue affects Erlang/OTP’s SSH server and is caused by a flaw in SSH message handling during authentication, enabling an unauthenticated attacker to execute arbitrary commands with the SSH daemon’s privileges (potentially root). Affected OTP versions include OTP-27.3.2?3, OTP-2...
CVE-2024-20326
The CVE-2024-20326 entry applies to Cisco ConfD CLI and Cisco Crosswork NSO CLI. The vulnerability stems from improper authorization enforcement for specific CLI commands, allowing an authenticated, low-privileged, local attacker to read and write arbitrary files as root on the underlying OS. Exp...
CVE-2024-20389
CVE-2024-20389 affects the ConfD CLI and Cisco Crosswork NSO CLI. The issue stems from improper authorization enforcement when specific CLI commands are used, allowing an authenticated, low-privileged, local attacker to read and write arbitrary files as root on the underlying OS. Exploitation is ...