Overview : Vulnerable versions of ATTK may allow an attacker to place malicious files in the same directory, potentially leading to arbitrary remote code execution (RCE) when executed. Affected Product(s) : Anti-Threat Toolkit (ATTK) 18.104.22.1688 and below Vulnerability Details : CVE ID : CVE-2019-9491 CVSS 3.0 Score(s): 7.5 – AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H Solution : Exploiting these type of […]
Fuji Electric V-Server Lite all versions prior to 22.214.171.124 contains a heap based buffer overflow. The buffer allocated to read data, when parsing VPR files, is too small.
Summary Multiple vulnerabilities in the authentication mechanisms of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. This advisory is available at the following link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-auth-bypass Details Three vulnerabilities in the authentication mechanisms of Cisco Data Center Network […]