Author Archives: CIRT Team



CIRT Team

in Security Advisories & Alerts

Multiple Cisco Products CVE-2017-12277 Remote Command Injection Vulnerability

Description: A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Firepower 9300 Security Appliance could allow an authenticated, remote attacker to inject arbitrary commands that could be executed with root privileges. The vulnerability is due to insufficient input validation of certain...

Read more

0
22 Nov 2017
in Security Advisories & Alerts

CVE-2017-12301: Cisco NX-OS Software Python Parser Escape Vulnerability

Description: The vulnerability exists due to insufficient sanitization of user-supplied parameters that are passed to certain Python functions within the scripting sandbox of the affected device. An attacker could exploit this vulnerability to escape the scripting sandbox and execute arbitrary commands on the underlying operating system with the privileges of...

Read more

0
22 Nov 2017
in Security Advisories & Alerts

Cisco ASA Next-Generation Firewall Services CVE-2017-12299 Remote Security Bypass Vulnerability

Description: Cisco ASA Next-Generation Firewall Services is prone to a remote security-bypass vulnerability. Impact: Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This issue is being tracked by Cisco Bug CSCvd97962. Mitigation: Updates are available. Please see the references or vendor...

Read more

0
22 Nov 2017
Page 94 of 134« First...102030...9293949596...100110120...Last »