all InfoSec news
CVE-2023-20135 (ios_xr)
Sept. 13, 2023, 5:15 p.m. |
National Vulnerability Database web.nvd.nist.gov
This vulnerability is due to a time-of-check, time-of-use (TOCTOU) race condition when an install query regarding an ISO image is performed during an install operation that uses an ISO image. An attacker could exploit this vulnerability by modifying an ISO image and then carrying out install requests in parallel. A successful exploit could allow the …
arbitrary code attacker check cisco cisco ios cisco ios xr code cve image install ios iso local operating system query race race condition software system toctou verification vulnerability
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-45955 (lightstrip_firmware)
6 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21380 (android)
6 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
6 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21385 (android)
6 months, 2 weeks ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg
@ Hifield | Strasbourg, France
Lead Security Specialist
@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas
Consultant SOC / CERT H/F
@ Hifield | Sèvres, France