|
294321
|
- |
|
cisco
|
nx-os
|
The CLI parser in Cisco NX-OS allows local users to bypass intended access restrictions, and overwrite or create arbitrary files, via shell output redirection, aka Bug IDs CSCts56672 and CSCts56669.
|
CWE-20
Improper Input Validation
|
CVE-2012-4122
|
2024-11-21 10:42 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294322
|
- |
|
cisco
|
nx-os
|
The BGP implementation in Cisco NX-OS does not properly filter AS paths, which allows remote attackers to cause a denial of service (BGP service reset and resync) via a malformed UPDATE message, aka …
|
CWE-20
Improper Input Validation
|
CVE-2012-4098
|
2024-11-21 10:42 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294323
|
- |
|
cisco
|
nx-os
|
The RIP service engine in Cisco NX-OS allows remote attackers to cause a denial of service (engine restart) via a malformed (1) RIPv4 or (2) RIPv6 message, aka Bug ID CSCtj73415.
|
CWE-20
Improper Input Validation
|
CVE-2012-4091
|
2024-11-21 10:42 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294324
|
- |
|
cisco
|
nx-os
nexus_7000
nexus_7000_10-slot
nexus_7000_18-slot
nexus_7000_9-slot
|
The management interface in Cisco NX-OS on Nexus 7000 devices allows remote authenticated users to obtain sensitive configuration-file information by leveraging the network-operator role, aka Bug ID …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4090
|
2024-11-21 10:42 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294325
|
- |
|
cisco
|
unified_computing_system
|
Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote attackers to hijack the…
|
CWE-352
Origin Validation Error
|
CVE-2012-4084
|
2024-11-21 10:42 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294326
|
- |
|
cisco
|
nx-os
|
Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via shell metacharacters in unspecified command parameters, aka Bug IDs CSCtf19827 and CSCtf27788.
|
CWE-78
OS Command
|
CVE-2012-4075
|
2024-11-21 10:42 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294327
|
- |
|
cisco
|
unified_computing_system
|
The high-availability service in the Fabric Interconnect component in Cisco Unified Computing System (UCS) does not properly bind the cluster service to the management interface, which allows remote …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4136
|
2024-11-21 10:42 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294328
|
- |
|
cisco
|
unified_computing_system
|
The create certreq command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bu…
|
CWE-20
Improper Input Validation
|
CVE-2012-4111
|
2024-11-21 10:42 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294329
|
- |
|
cisco
|
unified_computing_system
|
run-script in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq86560.
|
CWE-20
Improper Input Validation
|
CVE-2012-4110
|
2024-11-21 10:42 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294330
|
- |
|
cisco
|
unified_computing_system
|
The clear sshkey command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug …
|
CWE-20
Improper Input Validation
|
CVE-2012-4109
|
2024-11-21 10:42 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
