CVE-2019-25717 Dräger Infinity Delta/Kappa Patient Monitors Unauthenticated Log File Disclosure

Dräger Infinity Delta, Delta XL, and Kappa patient monitors contain an information disclosure vulnerability that allows unauthenticated network attackers to access log files over a network connection. Attackers can retrieve device internals, location information, and wired network configuration...

EUVD-2019-16946

Malware in sbrugna...

Command injection

An unauthenticated log file read in the component log-smblog-save of QStar Archive Solutions RELEASE3-0 Build 7 Patch 0 allows attackers to disclose the SMB Log contents via executing a crafted command...

CVE-2023-51062

Summary : CVE-2023-51062 affects QStar Archive Solutions, RELEASE_3-0 Build 7 Patch 0. An unauthenticated read of the log-smblog-save component can disclose SMB log contents when a crafted command is executed. The NVD/CVSS indicates network access with low complexity and no privileges required, r...

VMware View Planner 4.6 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMware View Planner Unauthenticated Log File Upload RCE', 'Description' = %q This module exploits an unauthenticated log file upload within the...

VMware View Planner Unauthenticated Log File Upload RCE

This module exploits an unauthenticated log file upload within the loguploadwsgi.py file of VMWare View Planner 4.6 prior to 4.6 Security Patch 1. Successful exploitation will result in RCE as the apache user inside the appacheServer Docker container. Module Options msf use...