Understand the SharePoint RCE: Exploitations, Detections, and Mitigations

...

PT-2025-28659 · Hewlett Packard · Hpe Networking Instant On Access Points

Name of the Vulnerable Software and Affected Versions: HPE Networking Instant On Access Points affected versions not specified Description: An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points. Successful exploitation cou...

CVE-2021-34187

creationtimestamp| type| source ---|---|--- 2025-01-12 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-01-12 2025-01-27 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-01-27 2025-01-27 00:00:00+00:00| seen| The Shadowserv...

CVE-2019-11370

creationtimestamp| type| source ---|---|--- 2024-12-27 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-12-27 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-01-30 00:00:00+00:00| exploited| The Shadowserver...

CVE-2024-11305

creationtimestamp| type| source ---|---|--- 2024-11-18 00:34:57+00:00| seen| https://infosec.exchange/users/cve/statuses/113501149394747365 2024-11-18 03:09:45+00:00| seen| https://t.me/cvedetector/11262 2024-11-19 09:51:16+00:00| published-proof-of-concept| https://t.me/CNArsenal/3468 2024-12-06...

CVE-2023-22478

creationtimestamp| type| source ---|---|--- 2024-11-12 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-12 2024-11-18 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-18 2024-11-19 00:00:00+00:00| exploited| The...

CVE-2024-51567

creationtimestamp| type| source ---|---|--- 2024-10-30 00:49:08+00:00| exploited| https://t.me/cvedetector/9381 2024-11-02 16:28:40+00:00| published-proof-of-concept| Telegram/JGjA2WCl7uqMwB-sRu2kLgWEjOJgtbXC9QBosc4IPd4sg 2024-11-05 09:01:04+00:00| published-proof-of-concept|...

Cisco Issues Urgent Fix for ASA and FTD Software Vulnerability Under Active Attack

Cisco on Wednesday said it has released updates to address an actively exploited security flaw in its Adaptive Security Appliance ASA that could lead to a denial-of-service DoS condition. The vulnerability, tracked as CVE-2024-20481 CVSS score: 5.8, affects the Remote Access VPN RAVPN service of...

CVE-2024-4577

creationtimestamp| type| source ---|---|--- 2024-06-07 05:52:22+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/7544 2024-06-07 06:51:15+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/7545 2024-06-07 08:37:00+00:00| published-proof-of-concept| https://t.me/cKure/13075...

CVE-2024-3701

The system application com.transsion.kolun.aiservice component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services...

CVE-2024-3701 Improper Authentication in com.transsion.kolun.aiservice

The system application com.transsion.kolun.aiservice component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services...

CVE-2024-27198

creationtimestamp| type| source ---|---|--- 2024-03-04 17:52:32+00:00| seen| https://t.me/ctinow/199405 2024-03-04 23:33:04+00:00| published-proof-of-concept| https://t.me/BleepingComputer/19557 2024-03-05 04:46:50+00:00| seen| https://t.me/KomunitiSiber/1583 2024-03-05 05:02:25+00:00| seen|...

CVE-2023-52028

creationtimestamp| type| source ---|---|--- 2024-01-30 12:16:52+00:00| seen| https://t.me/ctinow/175857 2025-01-31 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-31 2025-02-01 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-02-01...

CVE-2019-5129

creationtimestamp| type| source ---|---|--- 2024-01-29 09:41:40+00:00| seen| https://t.me/ctinow/175124 2024-11-30 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-30 2024-12-24 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities ...

CVE-2024-22024

creationtimestamp| type| source ---|---|--- 2024-01-10 20:21:17+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus2/2024 2024-02-09 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1226 2024-02-09 05:06:51+00:00| seen| https://t.me/KomunitiSiber/1465...

CVE-2023-42344

creationtimestamp| type| source ---|---|--- 2023-11-22 10:37:07+00:00| published-proof-of-concept| https://t.me/thebugbountyhunter/8041 2023-12-08 14:33:26+00:00| seen| https://t.me/ctinow/154182 2024-11-04 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-11-04...

CVE-2023-42793

creationtimestamp| type| source ---|---|--- 2023-09-19 20:34:31+00:00| seen| https://t.me/cibsecurity/70740 2023-09-25 08:50:02+00:00| seen| https://t.me/ptswarm/187 2023-09-25 08:59:30+00:00| seen| https://t.me/techb0ltGenona/4000 2023-09-26 07:10:37+00:00| seen| https://t.me/thehackernews/3919...

CVE-2023-38205

creationtimestamp| type| source ---|---|--- 2023-07-20 05:34:05+00:00| exploited| https://t.me/thehackernews/3620 2023-07-20 06:46:04+00:00| exploited| https://t.me/KomunitiSiber/515 2023-07-20 07:09:27+00:00| exploited| Telegram/m5JSB14XcE4WmSFl9S5T7USgeuaPM5JvS0hspkLyulXfQ 2023-07-20...

CVE-2023-38205: Adobe ColdFusion Access Control Bypass [FIXED]

!CVE-2023-38205: Adobe ColdFusion Access Control Bypass \FIXED\https://blog.rapid7.com/content/images/2023/07/GettyImages-1185282377-3.jpg On July 11, 2023, Rapid7 and Adobe disclosed CVE-2023-29298, an access control bypass vulnerability affecting ColdFusion, which Rapid7 had reported to Adobe i...

CVE-2023-24488

creationtimestamp| type| source ---|---|--- 2023-07-01 17:36:04+00:00| published-proof-of-concept| Telegram/PfBDhyUlchQfTUwkRCz2h7RqM5ds-n-bVldH34W40cGxg 2023-07-01 19:39:26+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4660 2023-07-02 08:27:32+00:00| published-proof-of-concept|...