Vulnerability & Exploit Database

Displaying entries 1 - 10 of 132750 in total

OS X update for Security (CVE-2017-13889) Vulnerability

  • Severity: 4
  • Published: June 22, 2018
A logic error existed in the validation of credentials. This was addressed with improved credential validation.

Cisco NX-OS: Cisco NX-OS Software Role-Based Access Arbitrary Command Execution Vulnerability (CVE-2018-0337) Vulnerability

  • Severity: 4
  • Published: June 21, 2018

A vulnerability in the role-based access-checking mechanisms of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on an affected device. The vulnerability exists because the affected software lacks proper input and validation checks for certain file systems. An attacker could exploit this vul...

Cisco NX-OS: Cisco FXOS and NX-OS Software Cisco Fabric Services Denial of Service Vulnerability (CVE-2018-0311) Vulnerability

  • Severity: 4
  • Published: June 21, 2018

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability exists because the affected software insufficiently validates Cisco Fabric Services packets when the s...

Cisco NX-OS: Cisco FXOS and NX-OS Software Cisco Fabric Services Denial of Service Vulnerability (CVE-2018-0310) Vulnerability

  • Severity: 4
  • Published: June 21, 2018

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to obtain sensitive information from memory or cause a denial of service (DoS) condition on the affected product. The vulnerability exists because the affected software insufficiently vali...

Cisco NX-OS: Cisco NX-OS Software CLI Arbitrary Command Execution Vulnerability (CVE-2018-0306) Vulnerability

  • Severity: 4
  • Published: June 21, 2018

A vulnerability in the CLI parser of Cisco NX-OS Software could allow an authenticated, local attacker to perform a command-injection attack on an affected device. The vulnerability is due to insufficient input validation of command arguments. An attacker could exploit this vulnerability by injecting malicious command arguments into a vu...

Cisco NX-OS: Cisco FXOS, NX-OS, and UCS Manager Software Cisco Discovery Protocol Denial of Service Vulnerability (CVE-2018-0331) Vulnerability

  • Severity: 4
  • Published: June 21, 2018

A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) subsystem of devices running, or based on, Cisco NX-OS Software contain a vulnerability that could allow an unauthenticated, adjacent attacker to create a denial of service (DoS) condition. The vulnerability is due to a failure to properly validate certain fields wit...

Cisco NX-OS: Cisco NX-OS Software NX-API Arbitrary Command Execution Vulnerability (CVE-2018-0313) Vulnerability

  • Severity: 4
  • Published: June 21, 2018

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to send a malicious packet to the management interface on an affected system and execute a command-injection exploit. The vulnerability is due to incorrect input validation of user-supplied data to the NX-API subsystem. An attacker...