Lucene search
K

123 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-7560

Malware in sbrugna...

7.4CVSS7.5AI score0.01052EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-0941

Malware in sbrugna...

9.8CVSS9.5AI score0.01031EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-2976

Malware in sbrugna...

8.8CVSS7.6AI score0.01075EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-28857

Malware in sbrugna...

8.1CVSS6.5AI score0.01032EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-0908

Malware in sbrugna...

9.8CVSS9.5AI score0.01494EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-7753

Malicious code in bioql PyPI...

6.7CVSS5.4AI score0.00139EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-53902

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00614EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-20335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - For MongoDB Ops Manager versions prior to and including 4.2.24 with multiple OM application servers, that have SSL turned on for their MongoDB processes, the...

6.7CVSS6.1AI score0.00139EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.285 views

MongoDB Ops Manager Diagnostic Archive Sensitive Information Retriever

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'digest/md5' require 'zlib' class MetasploitModule 'MongoDB Ops Manager Diagnostic Archive Sensitive Information Retriever', 'Description' = %q MongoDB Ops Manag...

5.3CVSS7AI score0.00891EPSS
Exploits2
Metasploit
Metasploit
added 2024/04/12 7:55 p.m.415 views

MongoDB Ops Manager Diagnostic Archive Sensitive Information Retriever

MongoDB Ops Manager Diagnostics Archive does not redact SAML SSL Pem Key File Password field mms.saml.ssl.PEMKeyFilePassword within app settings. Archives do not include the PEM files themselves. This module extracts that unredacted password and stores the diagnostic archive for additional manual...

5.3CVSS6.8AI score0.00891EPSS
Exploits2
MongoDB
MongoDB
added 2023/08/08 10:30 a.m.82 views

Privilege Escalation for Project Owner and Project User Admin Roles in Ops Manager

In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation...

7.2CVSS6.9AI score0.00614EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/08/08 9:15 a.m.4 views

CVE-2023-4009

In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation...

7.2CVSS5.8AI score0.00614EPSS
Exploits0References3
NVD
NVD
added 2023/08/08 9:15 a.m.16 views

CVE-2023-4009

In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation...

7.2CVSS7AI score0.00614EPSS
Exploits0References3
Prion
Prion
added 2023/08/08 9:15 a.m.35 views

Privilege escalation

In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation...

5.8CVSS6.9AI score0.00614EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/08 8:37 a.m.12 views

CVE-2023-4009 Privilege Escalation for Project Owner and Project User Admin Roles in Ops Manager

In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation...

7.2CVSS6.8AI score0.00614EPSS
Exploits0References3
CVE
CVE
added 2023/08/08 8:37 a.m.2585 views

CVE-2023-4009

Summary: CVE-2023-4009 affects MongoDB Ops Manager. An authenticated user with project owner or project user admin access could generate an API key with the privileges of org owner, enabling privilege escalation. Affected versions: Ops Manager 5.0 prior to 5.0.22 and 6.0 prior to 6.0.17. Impact: ...

7.2CVSS7AI score0.00614EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/08/08 8:37 a.m.24 views

CVE-2023-4009 Privilege Escalation for Project Owner and Project User Admin Roles in Ops Manager

In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation...

7.2CVSS7.2AI score0.00614EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.5 views

MongoDB Ops Manager Security Vulnerability

MongoDB Ops Manager is a solution from MongoDB, Inc. that supports the management, monitoring, and backup of MongoDB deployments. A security vulnerability exists in MongoDB Ops Manager versions prior to 5.0.22, 6.0.17, and 6.0.17, which originates from a user with Project Owner or Project User...

7.2CVSS6.9AI score0.00614EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/08/08 12:0 a.m.5 views

PT-2023-27262 · Mongodb · Mongodb Ops Manager

Name of the Vulnerable Software and Affected Versions: MongoDB Ops Manager versions 5.0 through 5.0.21 MongoDB Ops Manager versions 6.0 through 6.0.16 Description: The issue allows an authenticated user with project owner or project user admin access to generate an API key with the privileges of...

7.2CVSS6.9AI score0.00614EPSS
Exploits0References7
MongoDB
MongoDB
added 2023/06/09 11:0 a.m.37 views

MongoDB Ops Manager may disclose sensitive information in Diagnostic Archive

MongoDB Ops Manager Diagnostics Archive may not redact sensitive PEM key file password app settings. Archives do not include the PEM files themselves. This issue affects MongoDB Ops Manager v5.0 prior to 5.0.21 and MongoDB Ops Manager v6.0 prior to 6.0.12...

5.3CVSS4.8AI score0.00891EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder