CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2019/12/02 5:7 p.m.•21 views

CVE-2014-9356

8.5AI score0.04923EPSS

CNVD•added 2019/12/02 12:0 a.m.•1 views

Unspecified vulnerability in ezmaster

ezmaster is a tool for managing Docker applications and instances. A security vulnerability exists in ezmaster that can be exploited by an attacker to execute commands as the root user...

9CVSS7.3AI score0.00806EPSS

Kitploit•added 2019/12/01 11:30 a.m.•82 views

CCAT - Cloud Container Attack Tool For Testing Security Of Container Environments

Cloud Container Attack Tool CCAT is a tool fortesting security of container environments. Quick reference Where to get help : the Pacu/CloudGoat/CCAT Community Slack, or Stack Overflow Where to file issues : https://github.com/RhinoSecurityLabs/ccat/issues Maintained by : the Rhino Assessment Tea...

7.1AI score

Exploits0References3

Cvelist•added 2019/11/29 5:40 p.m.•15 views

CVE-2019-16767 In EzMaster before 5.2.11 docker containers were executed with advanced privileges by default

The admin sys mode is now conditional and dedicated for the special case. By default, since [email protected] no instance container is launched with advanced capabilities not launched as root...

6.6CVSS7.1AI score0.00806EPSS

Exploits0References3

Kitploit•added 2019/11/28 8:33 p.m.•157 views

Netstat2Neo4J - Create Cypher Create Statements For Neo4J Out Of Netstat Files From Multiple Machines

Graphs help to spot anomalies and patterns in large datasets. This script takes netstat information from multiple hosts and formats them in a way to make them importable into Neo4j. Neo4j can be queried for find connections to certain hosts, from certain hosts, find out the usage or protocols and...

6.9AI score

Gitee•added 2019/11/27 11:10 p.m.•4 views

vulhub

It is an open-source collection of pre-built vulnerable docker environments. The primary vulnerability class/vector is not explicitly stated, but the environments are designed to demonstrate various types of vulnerabilities. The probable entry points are the docker-compose files, which define the...

8.2AI score

Kitploit•added 2019/11/26 12:30 p.m.•85 views

Flan - A Pretty Sweet Vulnerability Scanner By CloudFlare

Flan Scan is a lightweight network vulnerability scanner. With Flan Scan you can easily find open ports on your network, identify services and their version, and get a list of relevant CVEs affecting your network. Flan Scan is a wrapper over Nmap and the vulners script which turns Nmap into a...

7.1AI score

Kitploit•added 2019/11/25 12:0 p.m.•83 views

RE:TERNAL - Repo Containing Docker-Compose Files And Setup Scripts Without Having To Clone The Individual Reternal Components

RE:TERNAL is a centralised purple team simulation platform. Reternal uses agents installed on a simulation network to execute various known red-teaming techniques in order to test blue-teaming capabilities. The simulations are mapped to the MITRE ATT&CK framework. This repo contains the compose...

7.5AI score

Exploits0References6

Tenable Nessus•added 2019/11/25 12:0 a.m.•43 views

Fedora 30 : rsyslog (2019-1fb95ae48d)

rebase to upstream version 8.1911.0 ------------------------------------------------- new modules available : - ClickHouse output - generic REST API http output - docker API input - misc. external program input takes output of specified binary as log source Note that Tenable Network Security has...

9.8CVSS7.2AI score0.04568EPSS

Tenable Nessus•added 2019/11/22 12:0 a.m.•32 views

Fedora 31 : rsyslog (2019-ea7d5876a4)

9.8CVSS7.2AI score0.04568EPSS

RedHat Linux•added 2019/11/21 9:51 a.m.•2 views

runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc

runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfslinux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory...

7.5CVSS6.7AI score0.04373EPSS

Exploits1References4

Kitploit•added 2019/11/17 12:30 p.m.•81 views

Seeker v1.1.9 - Accurately Locate Smartphones Using Social Engineering

Concept behind Seeker is simple, just like we host phishing pages to get credentials why not host a fake page that requests your location like many popular location based websites. Seeker Hosts a fake website on In Built PHP Server and uses Serveo to generate a link which we will forward to the...

7AI score

Gitee•added 2019/11/15 2:4 p.m.•4 views

vulhub

It is an offensive tool for web application security training. The tool is a collection of pre-built vulnerable docker environments, Vulhub, which can be used to test and train web application security skills. The tool is designed to be easy to use, with a simple installation process and a...

7AI score

RedHat Linux•added 2019/11/14 9:17 p.m.•2 views

mesos: docker image code execution

A flaw was found in Docker image running under root user, where it is possible to overwrite the init helper binary of the container runtime or the command executor in Apache Mesos. A malicious user could use this flaw to gain root-level code execution on the host...

9.3CVSS7.5AI score0.02712EPSS

Gitee•added 2019/11/12 11:1 p.m.•5 views

vulhub

It is an open-source collection of pre-built vulnerable docker environments. The primary vulnerability class/vector is not specified, but the environments are designed to demonstrate various types of vulnerabilities. The probable entry points are not explicitly stated, but the environments are...

8.1AI score

RedhatCVE•added 2019/11/12 9:16 a.m.•38 views

CVE-2019-14806

Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN randomness because Docker containers share the same machine id...

7.5CVSS3.9AI score0.02288EPSS