A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with root privileges. An attacker could exploit this vulnerability by sending crafted input to the web UI API.
This vulnerability is due to insufficient input validation. A successful exploit could allow the attacker to delete arbitrary files from the file system of the affected device.Ģ59 8101-32fh, 8101-32h, 8102-64h and 256 moreĪ vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to perform an injection attack against an affected device. An attacker could exploit this vulnerability by injecting arbitrary file path information when using commands in the CLI of an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.ġ4 Ios Xe Sd-wan, Isr 1100, Isr 1100-4g and 11 moreĪ vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an authenticated, local attacker to delete arbitrary files from the file system of an affected device. An attacker could exploit this vulnerability by sending malicious UDP datagrams to an affected device. This vulnerability is due to the improper processing of UDP datagrams. A successful exploit could allow the attacker to execute arbitrary commands as the root user.ģ60 8101-32fh, 8101-32h, 8102-64h and 357 moreĪ vulnerability in the UDP processing functionality of Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst 9100 Series Access Points could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. An attacker could exploit these vulnerabilities by running a malicious command on the application CLI. These vulnerabilities are due to improper access controls on commands within the application CLI.
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges.
0 kommentar(er)
