News
"An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in ...
The same set of routers are also vulnerable to multiple command injection vulnerabilities that have been tagged with the identifiers CVE-2021-1314, CVE-2021-1315, and CVE-2021-1316.
In its advisory, Cisco said the vulnerability stems from a flaw in the secure sockets layer (SSL)-based virtual private networking (VPN) component of the ASA device, which is used for remote access.
In fact, the same certificate is used to sign the official Ivacy VPN installer linked to from the VPN provider's website. The code-signing certificate in question (@malwrhunterteam) ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback