Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

98 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-43205

Malicious code in bioql PyPI...

6.5CVSS5.3AI score0.00167EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-43202

Malicious code in bioql PyPI...

8.8CVSS6.7AI score0.00568EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2023-43201

Malicious code in bioql PyPI...

8.8CVSS6.7AI score0.00308EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-24413

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00994EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-34606

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01088EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-43203

Malicious code in bioql PyPI...

6.5CVSS5AI score0.00264EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-43204

Malicious code in bioql PyPI...

8.8CVSS6.7AI score0.00259EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-34604

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00987EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-34801

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00734EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/05 10:57 p.m.10 views

CVE-2022-1069

A crafted HTTP packet with a large content-length header can create a denial-of-service condition in Softing Secure Integration Server V1.22...

7.5CVSS6.7AI score0.00994EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 10:56 p.m.5 views

CVE-2022-1748

Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability...

7.5CVSS6.7AI score0.00366EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 10:52 p.m.9 views

CVE-2022-1373

The “restore configuration” feature of Softing Secure Integration Server V1.22 is vulnerable to a directory traversal vulnerability when processing zip files. An attacker can craft a zip file to load an arbitrary dll and execute code. Using the "restore configuration" feature to upload a zip file...

7.2CVSS6.9AI score0.68585EPSS
Exploits3References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:30 p.m.6 views

CVE-2022-2335

A crafted HTTP packet with a -1 content-length header can create a denial-of-service condition in Softing Secure Integration Server V1.22...

7.5CVSS6.7AI score0.00987EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:27 p.m.7 views

CVE-2022-2337

A crafted HTTP packet with a missing HTTP URI can create a denial-of-service condition in Softing Secure Integration Server V1.22...

7.5CVSS6.7AI score0.01088EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:19 p.m.8 views

CVE-2022-2334

The application searches for a library dll that is not found. If an attacker can place a dll with this name, then the attacker can leverage it to execute arbitrary code on the targeted Softing Secure Integration Server V1.22...

7.2CVSS7.5AI score0.62412EPSS
Exploits3References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:15 p.m.6 views

CVE-2022-2336

Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the default administrator credentials as admin and password as admin. This allows Softing to log in to the server directly to perform administrative functions. Upon installation or upon first login, the...

9.8CVSS6.9AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:15 p.m.8 views

CVE-2022-2547

A crafted HTTP packet without a content-type header can create a denial-of-service condition in Softing Secure Integration Server V1.22...

7.5CVSS6.7AI score0.00734EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blogadded 2024/07/26 6:7 p.m.37 views

Metasploit Weekly Wrap-Up 07/26/2024

New module content 3 Magento XXE Unserialize Arbitrary File Read Authors: Heyder and Sergey Temnikov Type: Auxiliary Pull request: 19304 contributed by heyder Path: gather/magentoxxecve202434102 AttackerKB reference: CVE-2024-34102 Description: This adds an auxiliary module for an XXE which resul...

9.8CVSS8.3AI score0.94171EPSS
Exploits35
0day.today
0day.todayadded 2024/07/22 12:0 a.m.386 views

Softing Secure Integration Server 1.22 Remote Code Execution Exploit

This Metasploit module chains two vulnerabilities to achieve authenticated remote code execution against Softing Secure Integration Server version 1.22. In CVE-2022-1373, the restore configuration feature is vulnerable to a directory traversal vulnerability when processing zip files. When using t...

7.2CVSS8.2AI score0.68585EPSS
Exploits3
Packet Storm
Packet Stormadded 2024/07/22 12:0 a.m.239 views

Softing Secure Integration Server 1.22 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'zip' require 'metasploit/framework/loginscanner/softingsis' class MetasploitModule 'Softing Secure Integration Server v1.22 Remote Code Execution', 'Description...

7.2CVSS7.4AI score0.68585EPSS
Exploits3
Rows per page
Query Builder