3 matches found
CVE-2011-2547
The CVE-2011-2547 issue affects Cisco SA 500 Series Security Appliances running software before 2.1.19. The Privilege Escalation vulnerability allows an authenticated user to inject arbitrary commands into the underlying OS via crafted parameters in web forms, enabling execution with root-equival...
CVE-2015-6418
CVE-2015-6418 concerns Cisco Small Business RV Series routers (4.x) and SA500 Security Appliances (2.2.07). The root cause is a weak random-number generator with insufficient entropy used during TLS handshake key exchange, enabling a remote attacker to potentially determine the TLS key pair from ...
CVE-2011-2546
The CVE-2011-2546 issue affects Cisco SA 500 Series Security Appliances prior to firmware 2.1.19. The vulnerability is a SQL Injection in the web-based management interface that could allow an unauthenticated, remote attacker to execute arbitrary SQL commands and potentially obtain usernames and ...