privilege escalation vulnerabilities and exploits

(subscribe to this query)

In CyberArk Endpoint Privilege Manager (formerly Viewfinity), Privilege Escalation is possible if the attacker has one process that executes as Admin.

Cyberark Endpoint Privilege Manager -

Cisco Digital Media Manager (DMM) 5.0.x and 5.1.x has a default password for the Tomcat administration account, which makes it easier for remote malicious users to execute arbitrary code via a crafted web application, aka Bug ID CSCta03378.

Cisco Digital Media Manager 5.0 Cisco Digital Media Manager 5.0.1 Cisco Digital Media Manager 5.0.2 Cisco Digital Media Manager 5.0.3 Cisco Digital Media Manager 5.1

Unspecified vulnerability in Cisco Digital Media Manager (DMM) 5.0.x and 5.1.x allows remote authenticated users to gain privileges via unknown vectors, and consequently execute arbitrary code via a crafted web application, aka Bug ID CSCtc46008.

Cisco Digital Media Manager 5.0 Cisco Digital Media Manager 5.0.1 Cisco Digital Media Manager 5.0.2 Cisco Digital Media Manager 5.0.3 Cisco Digital Media Manager 5.1

Cisco Digital Media Manager (DMM) prior to 5.2 allows remote authenticated users to discover Cisco Digital Media Player credentials via vectors related to reading a (1) error log or (2) stack trace, aka Bug ID CSCtc46050.

Cisco Digital Media Manager Cisco Digital Media Manager 5.0 Cisco Digital Media Manager 5.0.1 Cisco Digital Media Manager 5.0.2 Cisco Digital Media Manager 5.0.3

Cisco Adaptive Security Appliance (ASA) Software 8.2 prior to 8.2(5.47), 8.4 prior to 8.4(7.5), 8.7 prior to 8.7(1.11), 9.0 prior to 9.0(3.10), and 9.1 prior to 9.1(3.4) allows remote authenticated users to gain privileges by leveraging level-0 ASDM access, aka Bug ID CSCuj33496.

Cisco Adaptive Security Appliance Software 8.2 Cisco Adaptive Security Appliance Software 8.4 Cisco Adaptive Security Appliance Software 8.7 Cisco Adaptive Security Appliance Software 9.0 Cisco Adaptive Security Appliance Software 9.1

2 Nmap scripts1 Github repository

Cisco Adaptive Security Appliance (ASA) Software 8.x prior to 8.2(5.48), 8.3 prior to 8.3(2.40), 8.4 prior to 8.4(7.9), 8.6 prior to 8.6(1.13), 9.0 prior to 9.0(4.1), and 9.1 prior to 9.1(4.3) does not properly process management-session information during privilege validation fo...

Cisco Adaptive Security Appliance Software 8.0 Cisco Adaptive Security Appliance Software 8.1 Cisco Adaptive Security Appliance Software 8.2 Cisco Adaptive Security Appliance Software 8.3(1)Cisco Adaptive Security Appliance Software 8.4 Cisco Adaptive Security Appliance Software 8.6 Cisco Adaptive Security Appliance Software 9.0 Cisco Adaptive Security Appliance Software 9.1

2 Nmap scripts

The SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software 8.2 prior to 8.2(5.48), 8.4 prior to 8.4(6.5), 9.0 prior to 9.0(3.1), and 9.1 prior to 9.1(2.5) allows remote malicious users to cause a denial of service (memory consumption or device reload) via craft...

Cisco Adaptive Security Appliance Software 8.2 Cisco Adaptive Security Appliance Software 8.4 Cisco Adaptive Security Appliance Software 9.0 Cisco Adaptive Security Appliance Software 9.1

2 Nmap scripts

The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 8.2 prior to 8.2(5.47, 8.3 prior to 8.3(2.40), 8.4 prior to 8.4(7.3), 8.6 prior to 8.6(1.13), 9.0 prior to 9.0(3.8), and 9.1 prior to 9.1(3.2) allows remote malicious users to bypass authentication via...

Cisco Adaptive Security Appliance Software 8.2 Cisco Adaptive Security Appliance Software 8.3(1)Cisco Adaptive Security Appliance Software 8.4 Cisco Adaptive Security Appliance Software 8.6 Cisco Adaptive Security Appliance Software 9.0 Cisco Adaptive Security Appliance Software 9.1

2 Nmap scripts

A vulnerability in the Enable Secret feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local malicious user to issue the enable command and get full administrative privileges. To exploit this vu...

Cisco NX-OS 6.1 prior to 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud8840...

Cisco Nx-os 6.1 Cisco Nx-os 6.1(1)Cisco Nx-os 6.1(2)Cisco Nx-os 6.1(3)Cisco Nx-os 6.1(4)Cisco Nx-os 6.1(4a)Cisco Nexus 7000 -Cisco Nexus 7000 10-slot -Cisco Nexus 7000 18-slot -Cisco Nexus 7000 9-slot -

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook