https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 29 Jun 2026 01:15:34 +0000 https://vulnerability.circl.lu/sighting/4a806a12-6f17-402b-a115-837895befc66/export {"uuid": "4a806a12-6f17-402b-a115-837895befc66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20178", "type": "seen", "source": "https://t.me/cvedetector/23146", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-20178 - Cisco Secure Network Analytics Root Shell Injection\", \n \"Content\": \"CVE ID : CVE-2025-20178 \nPublished : April 16, 2025, 4:15 p.m. | 1\u00a0hour, 28\u00a0minutes ago \nDescription : A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. \n \n \nThis vulnerability is due to insufficient integrity checks within device backup files. An attacker with valid administrative credentials could exploit this vulnerability by crafting a malicious backup file and restoring it to an affected device. A successful exploit could allow the attacker to obtain shell access on the underlying operating system with the privileges of root. \nSeverity: 6.0 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T20:14:38.000000Z"} {"uuid": "4a806a12-6f17-402b-a115-837895befc66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20178", "type": "seen", "source": "https://t.me/cvedetector/23146", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-20178 - Cisco Secure Network Analytics Root Shell Injection\", \n \"Content\": \"CVE ID : CVE-2025-20178 \nPublished : April 16, 2025, 4:15 p.m. | 1\u00a0hour, 28\u00a0minutes ago \nDescription : A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. \n \n \nThis vulnerability is due to insufficient integrity checks within device backup files. An attacker with valid administrative credentials could exploit this vulnerability by crafting a malicious backup file and restoring it to an affected device. A successful exploit could allow the attacker to obtain shell access on the underlying operating system with the privileges of root. \nSeverity: 6.0 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T20:14:38.000000Z"} https://vulnerability.circl.lu/sighting/4a806a12-6f17-402b-a115-837895befc66/export Wed, 16 Apr 2025 20:14:38 +0000 https://vulnerability.circl.lu/sighting/8f916097-5c8e-4f64-8a26-bf8760616c5e/export {"uuid": "8f916097-5c8e-4f64-8a26-bf8760616c5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20178", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12186", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20178\n\ud83d\udd25 CVSS Score: 6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N)\n\ud83d\udd39 Description: A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system.\n\n\nThis vulnerability is due to insufficient integrity checks within device backup files. An attacker with valid administrative credentials could exploit this vulnerability by crafting a malicious backup file and restoring it to an affected device. A successful exploit could allow the attacker to obtain shell access on the underlying operating system with the privileges of root.\n\ud83d\udccf Published: 2025-04-16T16:07:30.356Z\n\ud83d\udccf Modified: 2025-04-17T03:55:24.297Z\n\ud83d\udd17 References:\n1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sna-prvesc-4BQmK33Z", "creation_timestamp": "2025-04-17T04:57:27.000000Z"} {"uuid": "8f916097-5c8e-4f64-8a26-bf8760616c5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-20178", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12186", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20178\n\ud83d\udd25 CVSS Score: 6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N)\n\ud83d\udd39 Description: A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system.\n\n\nThis vulnerability is due to insufficient integrity checks within device backup files. An attacker with valid administrative credentials could exploit this vulnerability by crafting a malicious backup file and restoring it to an affected device. A successful exploit could allow the attacker to obtain shell access on the underlying operating system with the privileges of root.\n\ud83d\udccf Published: 2025-04-16T16:07:30.356Z\n\ud83d\udccf Modified: 2025-04-17T03:55:24.297Z\n\ud83d\udd17 References:\n1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sna-prvesc-4BQmK33Z", "creation_timestamp": "2025-04-17T04:57:27.000000Z"} https://vulnerability.circl.lu/sighting/8f916097-5c8e-4f64-8a26-bf8760616c5e/export Thu, 17 Apr 2025 04:57:27 +0000