BIG-IP AAM, PEM Security Vulnerabilities

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: helm, gomplate, pulumi-language-yaml, kyverno, kind, keda, cluster-autoscaler, fuse-overlayfs-snapshotter, aws-efs-csi-driver, secrets-store-csi-driver, oauth2-proxy, node-problem-detector, traefik, kubewatch, minio, kubevela, kots, conftest, kubescape,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, flannel, bank-vaults, etcd, kyverno, tflint, kubernetes-csi-driver-hostpath, nuclei, caddy, keda, cluster-autoscaler, nfs-subdir-external-provisioner, nerdctl, rabbitmq-cluster-operator, zarf,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

CVE-2024-3177 vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, local-static-provisioner, kubernetes, aws-ebs-csi-driver, ip-masq-agent, spark-operator, kubernetes-csi-driver-hostpath, nodetaint, calico, cluster-autoscaler,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: helm, flannel, harbor, neuvector-scanner, flyte, aws-efs-csi-driver, kargo, go-md2man, node-problem-detector, kubewatch, cass-operator, harbor-registry, nri-redis, chartmuseum, nri-memcached, spqr, hubble-ui, ferretdb, prometheus-mongodb-exporter, oras, rekor,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, flannel, bank-vaults, etcd, kyverno, harbor, crane, kubernetes-csi-driver-hostpath, kind, pombump, caddy, kubebuilder, nfs-subdir-external-provisioner, multus-cni, neuvector-scanner, fuse-overlayfs-snapshotter,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, flannel, bank-vaults, etcd, kyverno, harbor, crane, kubernetes-csi-driver-hostpath, kind, pombump, caddy, kubebuilder, nfs-subdir-external-provisioner, multus-cni, neuvector-scanner, fuse-overlayfs-snapshotter,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: docker-credential-ecr-login, render-template, dgraph, gitlab-logger, cilium-envoy, prometheus-stackdriver-exporter, amass, smarter-device-manager, kind, gops, nats, cni-plugins, vertical-pod-autoscaler, go-licenses, metrics-server, go-md2man, ip-masq-agent,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, flannel, bank-vaults, etcd, kyverno, tflint, kubernetes-csi-driver-hostpath, nuclei, caddy, keda, cluster-autoscaler, nfs-subdir-external-provisioner, nerdctl, rabbitmq-cluster-operator, zarf,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: helm, flannel, harbor, neuvector-scanner, flyte, aws-efs-csi-driver, kargo, go-md2man, node-problem-detector, kubewatch, cass-operator, harbor-registry, nri-redis, chartmuseum, nri-memcached, spqr, hubble-ui, ferretdb, prometheus-mongodb-exporter, oras, rekor,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, flannel, bank-vaults, etcd, kyverno, harbor, crane, kubernetes-csi-driver-hostpath, kind, pombump, caddy, kubebuilder, nfs-subdir-external-provisioner, multus-cni, neuvector-scanner, fuse-overlayfs-snapshotter,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

CVE-2023-5528 vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, aws-efs-csi-driver, aws-ebs-csi-driver, prometheus-adapter, ip-masq-agent, nodetaint, calico, cluster-autoscaler,...

GHSA-HQ6Q-C2X6-HMCH vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, aws-efs-csi-driver, aws-ebs-csi-driver, prometheus-adapter, ip-masq-agent, nodetaint, calico, cluster-autoscaler,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: helm, gomplate, pulumi-language-yaml, kyverno, kind, keda, cluster-autoscaler, fuse-overlayfs-snapshotter, aws-efs-csi-driver, secrets-store-csi-driver, oauth2-proxy, node-problem-detector, traefik, kubewatch, minio, kubevela, kots, conftest, kubescape,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: docker-credential-ecr-login, render-template, dgraph, gitlab-logger, cilium-envoy, prometheus-stackdriver-exporter, amass, smarter-device-manager, kind, gops, nats, cni-plugins, vertical-pod-autoscaler, go-licenses, metrics-server, go-md2man, ip-masq-agent,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: docker-credential-ecr-login, render-template, dgraph, gitlab-logger, cilium-envoy, prometheus-stackdriver-exporter, amass, smarter-device-manager, kind, gops, nats, cni-plugins, vertical-pod-autoscaler, go-licenses, metrics-server, go-md2man, ip-masq-agent,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: docker-credential-ecr-login, render-template, dgraph, gitlab-logger, cilium-envoy, prometheus-stackdriver-exporter, amass, smarter-device-manager, kind, gops, nats, cni-plugins, vertical-pod-autoscaler, go-licenses, metrics-server, go-md2man, ip-masq-agent,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, flannel, bank-vaults, etcd, kyverno, harbor, crane, kubernetes-csi-driver-hostpath, kind, pombump, caddy, kubebuilder, nfs-subdir-external-provisioner, multus-cni, neuvector-scanner, fuse-overlayfs-snapshotter,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: dive, helm, gomplate, pulumi-language-yaml, cloud-sql-proxy, esbuild, etcd, tflint, stakater-reloader, kind, nuclei, caddy, keda, kubebuilder, nfs-subdir-external-provisioner, nerdctl, pombump, rabbitmq-cluster-operator, fuse-overlayfs-snapshotter,...

GHSA-PXHW-596R-RWQ5 vulnerabilities

Vulnerabilities for packages: kubernetes-dns-node-cache, local-static-provisioner, kubernetes, aws-ebs-csi-driver, ip-masq-agent, spark-operator, kubernetes-csi-driver-hostpath, nodetaint, calico, cluster-autoscaler,...

ip172.ip-51-255-15.eu Cross Site Scripting vulnerability OBB-3932087

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

Exploit for CVE-2024-24919

CVE-2024-24919 Esse projeto tem como objetivo criar uma...

Wipro Holmes Orchestrator 20.4.1 - Log File Disclosure

...

Exploit for CVE-2024-27348

CVE-2024-27348 **For Ethical Usages only, Any harmful or...

OS X x64 Shell Bind TCP

Bind an arbitrary command to an arbitrary...

Exploit for CVE-2024-24919

CVE-2024-24919 Exploit tool to validate CVE-2024-24919...

OSX aarch64 Shell Reverse TCP

Connect back to attacker and spawn a command...

How to tell if a VPN app added your Windows device to a botnet

On May 29, 2024, the US Department of Justice (DOJ) announced it had dismantled what was likely the world’s largest botnet ever. This botnet, called “911 S5,” infected systems at over 19 million IP addresses across more than 190 countries. The main sources of income for the operators, who stole a.....

Server Side Request Forgery (SSRF)

ip is vulnerable to Server Side Request Forgery (SSRF). The vulnerability is due to some IP addresses being improperly categorized via the isPublic, isPrivate, and isLoopback methods, which allows an attacker to perform Server-Side Request Forgery (SSRF) if an application utilizes the library to...

Exploit for CVE-2024-24919

Check point:CVE-2024-24919 ...

New banking trojan “CarnavalHeist” targets Brazil with overlay attacks

Since February 2024, Cisco Talos has been observing an active campaign targeting Brazilian users with a new banking trojan called "CarnavalHeist." Many of the observed tactics, techniques and procedures (TTPs) are common among other banking trojans coming out of Brazil. This family has also been...

Exploit for CVE-2024-24919

CVE-2024-24919 An Vulnerability detection and Exploitation...

IP Address Spoofing

Symfony is vulnerable to IP Address Spoofing The vulnerability is due to the potential manipulation of client IP addresses returned by the Request::getClientIp() method for sensitive decisions. It allows malicious actors to manipulate or spoof their IP...

Exploit for CVE-2024-24919

CVE-2024-24919 Usage Usage: ./CVE-2024-24919.sh -i ...

Exploit for CVE-2024-24919

CVE-2024-24919 Usage Usage: ./CVE-2024-24919.sh -i ...

Aquatronica Control System 5.1.6 - Information Disclosure

...

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:1870-1)

The remote SUSE Linux SLED12 / SLED_SAP12 / SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1870-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following...

changedetection 0.45.20 Remote Code Execution

...

changedetection < 0.45.20 - Remote Code Execution (RCE)

...

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2024-069)

The version of kernel installed on the remote host is prior to 5.4.276-189.376. It is, therefore, affected by a vulnerability as referenced in the ALAS2KERNEL-5.4-2024-069 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: exthdr: fix 4-byte stack...

K000139859: Envoy vulnerability CVE-2024-30255

Security Advisory Description Envoy is a cloud-native, open source edge and service proxy. The HTTP/2 protocol stack in Envoy versions prior to 1.29.3, 1.28.2, 1.27.4, and 1.26.8 are vulnerable to CPU exhaustion due to flood of CONTINUATION frames. Envoy's HTTP/2 codec allows the client to send an....

CVE-2024-36928

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: Fix kernel panic after setting hsuid Symptom: When the hsuid attribute is set for the first time on an IQD Layer3 device while the corresponding network interface is already UP, the kernel will try to execute a napi...