NetAlertX 24.9.12 Command Injection

An attacker can update NetAlertX settings with no authentication, which results in command injection. Versions 23.01.14 through 24.9.12 are affected. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

CVE-2024-24578

RaspberryMatic is an open-source operating system for HomeMatic internet-of-things devices. RaspberryMatic / OCCU prior to version 3.75.6.20240316 contains a unauthenticated remote code execution RCE vulnerability, caused by multiple issues within the Java based HMIPServer.jar component...

NETGEAR XR1000和NETGEAR XR500 安全漏洞

NETGEAR XR500 and NETGEAR XR1000 are both products of NETGEAR Corporation.NETGEAR XR500 is a wireless router.NETGEAR XR1000 is a dual-band Wi-Fi 6 router designed for gaming. A security vulnerability exists in the NETGEAR XR1000 prior to version 1.0.0.74, the XR1000v2 prior to version 1.1.0.22, a...

Cleo LexiCom, VLTrader, and Harmony Unauthenticated Remote Code Execution

This module exploits an unauthenticated file write vulnerability in Cleo LexiCom, VLTrader, and Harmony versions 5.8.0.23 and below. Module Options msf use exploit/multi/http/cleorcecve202455956 msf exploitcleorcecve202455956 show targets ...targets... msf exploitcleorcecve202455956 set TARGET ms...

Exploit for Integer Overflow or Wraparound in Microsoft

CVE-2024-49112-PoC CVE-2024-49112 LDAP RCE PoC and Metasploit...

CVE-2024-42509

ArubaOS/vulnerable Aruba Access Point line affected by CVE-2024-42509, a command-injection in the CLI service that enables unauthenticated remote code execution via PAPI UDP port 8211. Public reports consistently describe this as a high-severity, remote attacker–controlled code execution risk on ...

CVE-2024-42506

CVE-2024-42506 affects Aruba Networks ArubaOS: command-injection in the underlying CLI service reachable via PAPI UDP port 8211 can allow unauthenticated remote code execution as a privileged OS user. Affected Aruba AP management stack and CLI service are exploitable over the network with low com...

Exploit for Code Injection in Rejetto Http_File_Server

POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - C...

CVE-2024-7589

A signal handler in sshd8 may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds 120 by default. This signal handler executes in the context of the sshd8's privileged code, which is not sandbox...

CVE-2024-7589 OpenSSH pre-authentication async signal safety issue

A signal handler in sshd8 may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds 120 by default. This signal handler executes in the context of the sshd8's privileged code, which is not sandbox...

CVE-2024-33898

Axiros AXESS Auto Configuration Server ACS 4.x and 5.0.0 is affected by an Incorrect Access Control vulnerability. An authorization bypass allows remote attackers to achieve unauthenticated remote code execution...

Exploit for Deserialization of Untrusted Data in Nextgen Mirth_Connect

CVE-2023-43208 NextGen Healthcare Mirth Connect before versi...

CVE-2024-2421

LenelS2 NetBox access control and event monitoring system was discovered to contain an unauthenticated RCE in versions prior to and including 5.6.1, which allows an attacker to execute malicious commands with elevated permissions...

CVE-2023-50977

A flaw was found In gnome-shell. The GNOME Network Manager and GNOME Shell Portal Helper connectivity checks send DNS checks that, if intercepted, may be used to launch a GNOME Captive Portal in a WebKitGTK browser and load arbitrary HTML and Javascript code. Mitigation Mitigation for this issue ...

NextGen Healthcare Mirth Connect Under Attack - CISA Issues Urgent Warning

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added a security flaw impacting NextGen Healthcare Mirth Connect to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The flaw, tracked as CVE-2023-43208 CVSS score: N/A, concerns a cas...

CVE-2024-31472

Summary: Aruba InstantOS/ArubaOS versions prior to 10.5.1.0 are affected by a command-injection vulnerability in the Soft AP Daemon exposed via the PAPI UDP port 8211, enabling unauthenticated remote code execution as a privileged OS user. Affected software: Aruba InstantOS/ArubaOS (pre-10.5.1.0)...

CVE-2024-31471

CVE-2024-31471 describes a command-injection vulnerability in Aruba’s Central Communications service (PAPI UDP port 8211) that can allow unauthenticated remote code execution as a privileged OS user. The PT-2024-24103 report confirms the issue relates to the Central Communications service with af...

CVE-2024-31469

The CVE-2024-31469 issue affects Aruba’s Central Communications service (PAPI UDP port 8211) and enables buffer overflow conditions that could allow unauthenticated remote code execution, resulting in arbitrary code execution as a privileged OS user. Available connected documents confirm the unde...

CVE-2024-31466 Unauthenticated Buffer Overflow Vulnerabilities in CLI Service Accessed by the PAPI Protocol

There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these vulnerabilities resul...

CVE-2023-46295

An issue was discovered in Teledyne FLIR M300 2.00-19. Unauthenticated remote code execution can occur in the web server. An attacker can exploit this by sending a POST request to the vulnerable PHP page. An attacker can elevate to root permissions with Sudo...