|
221741
|
6.7 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to bypass the limited command set of the restricted Guest Shell and execute comm…
|
NVD-CWE-noinfo
|
CVE-2019-1730
|
2024-11-21 13:37 |
2019-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221742
|
6.0 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the CLI implementation of a specific command used for image maintenance for Cisco NX-OS Software could allow an authenticated, local attacker to overwrite any file on the file syst…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2019-1729
|
2024-11-21 13:37 |
2019-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221743
|
6.7 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the Secure Configuration Validation functionality of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to run arbitrary commands at system b…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2019-1728
|
2024-11-21 13:37 |
2019-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221744
|
6.7 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python parser and issue arbitrary commands to elevate the attacker…
|
CWE-78
OS Command
|
CVE-2019-1727
|
2024-11-21 13:37 |
2019-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221745
|
7.8 |
HIGH
Local
|
cisco
|
nx-os
|
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to access internal services that should be restricted on an affected device, such as the NX-API. The vu…
|
CWE-78
OS Command
|
CVE-2019-1726
|
2024-11-21 13:37 |
2019-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221746
|
7.5 |
HIGH
Network
|
cisco
|
video_surveillance_manager
|
A vulnerability in the web-based management interface of Cisco Video Surveillance Manager could allow an unauthenticated, remote attacker to access sensitive information. The vulnerability is due to …
|
CWE-22
Path Traversal
|
CVE-2019-1717
|
2024-11-21 13:37 |
2019-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221747
|
7.2 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to execute commands on the underlying Linux shell of an affected device…
|
CWE-20
Improper Input Validation
|
CVE-2019-1862
|
2024-11-21 13:37 |
2019-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221748
|
6.7 |
MEDIUM
Local
|
cisco
|
asa_5500_firmware
firepower_2100_firmware
firepower_4000_firmware
firepower_9000_firmware
ons_15454_mstp_firmware
analog_voice_network_interface_modules_firmware
integrated_services…
|
A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot implementation could allow an authenticated, local attacker to write a mo…
|
CWE-667
Improper Locking
|
CVE-2019-1649
|
2024-11-21 13:37 |
2019-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221749
|
10.0 |
CRITICAL
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in the REST API of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to bypass authentication on the REST API. The vulnerability is due to improp…
|
CWE-287
Improper Authentication
|
CVE-2019-1867
|
2024-11-21 13:37 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221750
|
7.8 |
HIGH
Local
|
cisco
|
firepower_threat_defense
firepower_management_center
|
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficien…
|
CWE-78
OS Command
|
CVE-2019-1709
|
2024-11-21 13:37 |
2019-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
