Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

246 matches found

KoreLogic Security
KoreLogic Securityadded 2018/01/26 12:0 a.m.14 views

Sophos Web Gateway Persistent Cross Site Scripting Vulnerability

Vulnerability Details Affected Vendor: Sophos Affected Product: Web Gateway Affected Version: 4.4.1 Platform: Embedded Linux CWE Classification: CWE-79: Improper Neutralization of Input During Web Page Generation, CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Impact:...

6.8AI score
Exploits0Affected Software1
0day.today
0day.todayadded 2017/11/05 12:0 a.m.119 views

Splunk 6.6.x Local Privilege Escalation Vulnerability

Splunk version 6.6.x suffers from a local privilege escalation vulnerability. Splunk can be configured to run as a non-root user. However, that user owns the configuration file that specifies the user to run as, so it can trivially gain root privileges. Title: Splunk Local Privilege Escalation...

7.2AI score
Exploits0
KoreLogic Security
KoreLogic Securityadded 2017/11/03 12:0 a.m.65 views

Splunk Local Privilege Escalation

Vulnerability Details Affected Vendor: Splunk Affected Product: Splunk Enterprise Affected Version: 6.6.x Platform: Embedded Linux CWE Classification: CWE-280: Improper Handling of Insufficient Permissions or Privileges Impact: Privilege Escalation Attack vector: Local 2. Vulnerability...

0.4AI score
Exploits0Affected Software1
Packet Storm
Packet Stormadded 2017/10/25 12:0 a.m.58 views

Infoblox NetMRI 7.1.4 Shell Escape / Privilege Escalation

KL-001-2017-017 : Infoblox NetMRI Administration Shell Escape and Privilege Escalation Title: Infoblox NetMRI Administration Shell Escape and Privilege Escalation Advisory ID: KL-001-2017-017 Publication Date: 2017.10.24 Publication URL:...

6.7AI score
Exploits0
0day.today
0day.todayadded 2017/10/25 12:0 a.m.941 views

Infoblox NetMRI 7.1.4 Shell Escape / Privilege Escalation Vulnerabilities

Exploit for hardware platform in category remote exploits Title: Infoblox NetMRI Administration Shell Escape and Privilege Escalation Advisory ID: KL-001-2017-017 Publication Date: 2017.10.24 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-017.txt 1. Vulnerability...

6.7AI score
Exploits0
0day.today
0day.todayadded 2017/10/25 12:0 a.m.49 views

Sonicwall WXA5000 1.3.2-10-30 Console Jail Escape / Privilege Escalation Vulnerabilities

Exploit for cgi platform in category remote exploits Title: Sonicwall WXA5000 Console Jail Escape and Privilege Escalation Advisory ID: KL-001-2017-019 Publication Date: 2017.10.24 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-019.txt 1. Vulnerability Details Affecte...

6.7AI score
Exploits0
0day.today
0day.todayadded 2017/10/25 12:0 a.m.71 views

Sophos UTM 9 Management Appplication Local File Inclusion Vulnerability

Exploit for hardware platform in category remote exploits Title: Sophos UTM 9 Management Application Local File Inclusion Advisory ID: KL-001-2017-021 Publication Date: 2017.10.24 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-021.txt 1. Vulnerability Details Affected...

6.7AI score
Exploits0
0day.today
0day.todayadded 2017/10/25 12:0 a.m.38 views

Infoblox NetMRI VM-AD30-5C6CE Factory Reset Persistence Vulnerability

Exploit for hardware platform in category remote exploits Title: Infoblox NetMRI Administration Shell Factory Reset Persistence Advisory ID: KL-001-2017-018 Publication Date: 2017.10.24 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-018.txt 1. Vulnerability Details...

6.7AI score
Exploits0
Packet Storm
Packet Stormadded 2017/10/25 12:0 a.m.47 views

Sonicwall WXA5000 1.3.2-10-30 Console Jail Escape / Privilege Escalation

KL-001-2017-019 : Sonicwall WXA5000 Console Jail Escape and Privilege Escalation Title: Sonicwall WXA5000 Console Jail Escape and Privilege Escalation Advisory ID: KL-001-2017-019 Publication Date: 2017.10.24 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-019.txt 1...

6.7AI score
Exploits0
KoreLogic Security
KoreLogic Securityadded 2017/10/24 12:0 a.m.32 views

Infoblox NetMRI Administration Shell Factory Reset Persistence

Vulnerability Details Affected Vendor: Infoblox Affected Product: NetMRI Affected Version: VM-AD30-5C6CE Platform: Embedded Linux CWE Classification: CWE-485: Insufficient Encapsulation Impact: Administrative Account Backdoor Attack vector: SSH 2. Vulnerability Description An authenticated user...

0.2AI score
Exploits0Affected Software1
KoreLogic Security
KoreLogic Securityadded 2017/10/24 12:0 a.m.21 views

Sophos UTM 9 loginuser Privilege Escalation via Insecure Directory Permissions

Vulnerability Details Affected Vendor: Sophos Affected Product: UTM 9 Affected Version: 9.410 Platform: Embedded Linux CWE Classification: CWE-280: Improper Handling of Insufficient Permissions or Privileges Impact: Root Access Attack vector: SSH 2. Vulnerability Description The attacker must...

7.2AI score
Exploits0Affected Software1
KoreLogic Security
KoreLogic Securityadded 2017/10/24 12:0 a.m.12 views

Sonicwall WXA5000 Console Jail Escape and Privilege Escalation

Vulnerability Details Affected Vendor: Sonicwall Affected Product: WXA5000 WAN Optimization Appliance Affected Version: 1.3.2-10-30 Platform: Embedded Linux CWE Classification: CWE-78: Improper Neutralization of Special Elements used in an OS Command Impact: Root Access Attack vector: Console 2...

0.1AI score
Exploits0Affected Software1
KoreLogic Security
KoreLogic Securityadded 2017/10/24 12:0 a.m.19 views

Sophos UTM 9 Management Application Local File Inclusion

Vulnerability Details Affected Vendor: Sophos Affected Product: UTM 9 Affected Version: 9.410 Platform: Embedded Linux CWE Classification: CWE-538: File and Directory Information Exposure, CWE-264: Permissions, Privileges, and Access Controls, CWE-532: Information Exposure Through Log Files...

7AI score
Exploits0Affected Software1
KoreLogic Security
KoreLogic Securityadded 2017/10/24 12:0 a.m.33 views

Infoblox NetMRI Administration Shell Escape and Privilege Escalation

Vulnerability Details Affected Vendor: Infoblox Affected Product: NetMRI Affected Version: 7.1.2 - 7.1.4 Platform: Embedded Linux CWE Classification: CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection', CWE-272: Least Privilege Violation Impact: Root...

0.3AI score
Exploits0Affected Software1
KoreLogic Security
KoreLogic Securityadded 2017/09/25 12:0 a.m.9 views

Solarwinds LEM Insecure Update Process

Vulnerability Details Affected Vendor: Solarwinds Affected Product: Multiple Affected Version: Multiple Platform: Embedded Linux CWE Classification: CWE-284: Improper Access Control, CWE-346: Origin Validation Error Impact: Counterfeit Product Downloads Attack vector: HTTP 2. Vulnerability...

0.1AI score
Exploits0
0day.today
0day.todayadded 2017/07/20 12:0 a.m.37 views

Sonicwall Secure Remote Access 8.1.0.2-14sv - Command Injection Vulnerability

Exploit for cgi platform in category web applications Sonicwall Secure Remote Access SRA - Command Injection Vulnerabilities Vendor: Sonicwall Dell Product: Secure Remote Access SRA Version: 8.1.0.2-14sv Platform: Embedded Linux Discovery: Russell Sanford of Critical Start www.CriticalStart.com...

10CVSS9.2AI score0.24523EPSS
Exploits5
exploitpack
exploitpackadded 2017/07/19 12:0 a.m.26 views

Sonicwall Secure Remote Access 8.1.0.2-14sv - Command Injection

Sonicwall Secure Remote Access 8.1.0.2-14sv - Command Injection Sonicwall Secure Remote Access SRA - Command Injection Vulnerabilities Vendor: Sonicwall Dell Product: Secure Remote Access SRA Version: 8.1.0.2-14sv Platform: Embedded Linux Discovery: Russell Sanford of Critical Start...

10CVSS9.9AI score0.24523EPSS
Exploits5
Packet Storm
Packet Stormadded 2017/07/19 12:0 a.m.60 views

Sonicwall Secure Remote Access (SRA) 8.1.0.2-14sv Command Injection

Sonicwall Secure Remote Access SRA - Command Injection Vulnerabilities Vendor: Sonicwall Dell Product: Secure Remote Access SRA Version: 8.1.0.2-14sv Platform: Embedded Linux Discovery: Russell Sanford of Critical Start www.CriticalStart.com CVE: cve-2016-9682 Tested against version 8.1.0.2-14sv ...

10CVSS0.4AI score0.24523EPSS
Exploits5
Packet Storm
Packet Stormadded 2017/07/07 12:0 a.m.78 views

Barracuda WAF V360 Firmware 8.0.1.014 Support Tunnel Hijack

KL-001-2017-014 : Barracuda WAF Support Tunnel Hijack Title: Barracuda WAF Support Tunnel Hijack Advisory ID: KL-001-2017-014 Publication Date: 2017.07.06 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-014.txt 1. Vulnerability Details Affected Vendor: Barracuda Affect...

Exploits0
0day.today
0day.todayadded 2017/07/07 12:0 a.m.37 views

Barracuda WAF V360 Firmware 8.0.1.014 Username / Session ID Leak Vulnerability

The Barracuda WAF management application transmits the current user and session identifier over HTTP GET. Firmware version 8.0.1.014 is affected. Title: Barracuda WAF Management Application Username and Session ID Leak 1. Vulnerability Details Affected Vendor: Barracuda Affected Product: Web...

7AI score
Exploits0
Rows per page
Query Builder