Lucene search
+L

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:39 p.m.6 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

10CVSS8.1AI score0.54393EPSS
Exploits10References1
GithubExploit
GithubExploit
added 2022/06/02 2:19 a.m.118 views

Exploit for Improper Privilege Management in Kramerav Viaware

CVE-2021-36356 and CVE-2021-35064 PoC Usage: bash...

10CVSS9.6AI score0.70753EPSS
Exploits6
Packet Storm
Packet Storm
added 2022/04/07 12:0 a.m.262 views

Kramer VIAware Remote Code Execution

Exploit Title: Remote Code Execution as Root on KRAMER VIAware Date: 31/03/2022 Exploit Author: sharkmoos Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: Tested on: ViaWare Go Linux CVE : CVE-2021-35064, CVE-2021-36356 import sys,...

10CVSS0.8AI score0.70753EPSS
Exploits6
Exploit DB
Exploit DB
added 2022/04/07 12:0 a.m.479 views

Kramer VIAware - Remote Code Execution (RCE) (Root)

Exploit Title: Remote Code Execution as Root on KRAMER VIAware Date: 31/03/2022 Exploit Author: sharkmoos Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: Tested on: ViaWare Go Linux CVE : CVE-2021-35064, CVE-2021-36356 import sys,...

10CVSS9.6AI score0.70753EPSS
Exploits6
Circl
Circl
added 2021/08/31 7:33 a.m.10 views

CVE-2021-36356

creationtimestamp| type| source ---|---|--- 2021-08-31 07:33:05+00:00| seen| https://t.me/cibsecurity/28061 2022-07-13 13:02:16+00:00| seen| MISP/8bf50bb8-94dd-4004-a646-5f78db6f0b6a 2023-04-27 09:58:59+00:00| confirmed|...

10CVSS7.5AI score0.54393EPSS
In wildExploits5References6
OSV
OSV
added 2021/08/31 4:15 a.m.6 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

9.8CVSS6.1AI score0.54393EPSS
Exploits10References2
NVD
NVD
added 2021/08/31 4:15 a.m.43 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

10CVSS0.54393EPSS
Exploits5References2
CVE
CVE
added 2021/08/31 3:45 a.m.221 views

CVE-2021-36356

KRAMER VIAware (through Aug 2021) is vulnerable to remote code execution via ajaxPages/writeBrowseFilePathAjax.php which accepts arbitrary executable pathnames, enabling unauthenticated attackers to upload and execute code. The issue stems from an incomplete fix for CVE-2019-17124. Reports in CVE...

10CVSS9.8AI score0.54393EPSS
In wildExploits5References2Affected Software1
Cvelist
Cvelist
added 2021/08/31 3:45 a.m.44 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

10AI score0.54393EPSS
Exploits5References2
Rows per page
Query Builder