Lucene search
K

21 matches found

Circl
Circl
added 2025/02/22 9:25 p.m.8 views

CVE-2022-28339

creationtimestamp| type| source ---|---|--- 2025-02-22 21:25:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5056 2025-02-22 23:20:53+00:00| seen| https://t.me/cvedetector/18735 2025-02-23 00:02:15+00:00| seen|...

7.8CVSS7.2AI score0.00272EPSS
Exploits0References3
NVD
NVD
added 2025/02/22 9:15 p.m.6 views

CVE-2022-28339

Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability that could allow an attacker with low user privileges to create a malicious DLL that could lead to escalated privileges...

7.8CVSS0.00272EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 2:6 p.m.11 views

CVE-2020-28339

The usc-e-shop aka Collne Welcart e-Commerce plugin before 1.9.36 for WordPress allows Object Injection because of uscesunserialize. There is not a complete POP chain...

8.8CVSS7.2AI score0.01879EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/03/12 12:0 a.m.14 views

CVE-2024-28339

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required...

6.5AI score0.00428EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/03/12 12:0 a.m.22 views

CVE-2024-28339

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required...

6.4AI score0.00428EPSS
Exploits1References2
CVE
CVE
added 2024/03/12 12:0 a.m.60 views

CVE-2024-28339

CVE-2024-28339 describes an information leak in the debuginfo.htm component of Netgear CBR40, CBK40, and CBK43 routers (version 2.5.0.28). The issue allows attackers to obtain sensitive information without authentication, due to improper access control in the debuginfo.htm page. Publicly availabl...

5.4CVSS6.3AI score0.00428EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2023/03/14 9:23 p.m.8 views

CVE-2023-28339

creationtimestamp| type| source ---|---|--- 2023-03-14 21:23:17+00:00| seen| https://t.me/cibsecurity/60023...

8.8CVSS8.1AI score0.00642EPSS
Exploits0References1
OSV
OSV
added 2023/03/14 7:15 p.m.9 views

CVE-2023-28339

OpenDoas through 6.8.2, when TIOCSTI is available, allows privilege escalation because of sharing a terminal with the original session. NOTE: TIOCSTI is unavailable in OpenBSD 6.0 and later, and can be made unavailable in the Linux kernel 6.2 and later...

8.8CVSS8.8AI score
Exploits0References1
CVE
CVE
added 2023/03/14 12:0 a.m.42 views

CVE-2023-28339

OpenDoas up to version 6.8.2 is affected by CVE-2023-28339. The root cause is privilege escalation when TIOCSTI is available and the attacker shares a terminal with the original session. Note that TIOCSTI is unavailable in OpenBSD 6.0+ and can be disabled in the Linux kernel 6.2+; OpenDoas remain...

8.8CVSS8.5AI score0.00642EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/14 12:0 a.m.6 views

CVE-2023-28339

OpenDoas through 6.8.2, when TIOCSTI is available, allows privilege escalation because of sharing a terminal with the original session. NOTE: TIOCSTI is unavailable in OpenBSD 6.0 and later, and can be made unavailable in the Linux kernel 6.2 and later...

8.6AI score0.00642EPSS
Exploits0References1
NVD
NVD
added 2021/04/13 8:15 p.m.13 views

CVE-2021-28339

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

8.8CVSS0.02315EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/04/13 7:33 p.m.21 views

CVE-2021-28339 Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.02315EPSS
Exploits0References1
CVE
CVE
added 2021/04/13 7:33 p.m.126 views

CVE-2021-28339

CVE-2021-28339 is a Remote Procedure Call Runtime remote code execution vulnerability affecting Windows components. The connected scans show the CVE referenced across multiple Windows monthly security updates (KB5001330/1335/1337/1340/1342/1347) and in Nessus/OpenVAS feeds, indicating it is being...

8.8CVSS8.9AI score0.02315EPSS
Exploits0References1Affected Software8
Rapid7 Blog
Rapid7 Blog
added 2021/04/13 5:37 p.m.135 views

Patch Tuesday - April 2021

Patch Tuesday is here again and there are more Exchange updates to apply! A total of 114 vulnerabilities were fixed this month with more than half of them affecting all versions of Windows, with about half of them being remote code execution bugs, and about a fifth of them being rated as critical...

10CVSS1.5AI score0.83337EPSS
Exploits12
Kaspersky
Kaspersky
added 2021/04/13 12:0 a.m.38 views

KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, bypass security restrictions, spoof user interface. Below is a...

8.8CVSS10AI score0.06112EPSS
Exploits1References63
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.56 views

KB5001389: Windows Server 2008 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - Windows Kernel Information Disclosure Vulnerability CVE-2021-27093, CVE-2021-28309 - Windows Media...

8.8CVSS7.4AI score0.06112EPSS
Exploits1References49
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.166 views

KB5001342: Windows 10 version 1809 / Windows Server 2019 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072, CVE-2021-28310 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Windows Event Tracing Elevati...

9.8CVSS7.3AI score0.61648EPSS
Exploits4References78
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.53 views

KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...

8.8CVSS7AI score0.61648EPSS
Exploits3References64
Circl
Circl
added 2020/11/07 10:52 p.m.6 views

CVE-2020-28339

creationtimestamp| type| source ---|---|--- 2020-11-07 22:52:40+00:00| seen| https://t.me/cibsecurity/16018...

8.8CVSS8.1AI score0.01879EPSS
Exploits1References1
NVD
NVD
added 2020/11/07 7:15 p.m.33 views

CVE-2020-28339

The usc-e-shop aka Collne Welcart e-Commerce plugin before 1.9.36 for WordPress allows Object Injection because of uscesunserialize. There is not a complete POP chain...

8.8CVSS8.1AI score0.01879EPSS
Exploits1References2
Rows per page
Query Builder