Lucene search
K

102 matches found

Github Security Blog
Github Security Blog
added 2021/10/19 3:28 p.m.85 views

Prototype Pollution in vm2

This affects the package vm2 before 3.9.4. Prototype Pollution attack vector can lead to sandbox escape and execution of arbitrary code on the host machine...

10CVSS3AI score0.03476EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2021/10/18 5:15 p.m.21 views

CVE-2021-23449

This affects the package vm2 before 3.9.4 via a Prototype Pollution attack vector, which can lead to execution of arbitrary code on the host machine...

10CVSS9.5AI score
Exploits0References5
Prion
Prion
added 2021/07/14 9:15 p.m.34 views

Remote code execution

Microsoft discovered a remote code execution RCE vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape Vulnerability. If exploited, a threat actor may be able to gain privileged access to the machine hosting Serv-U Only. SolarWinds Serv-U Managed File Transfer and Serv-U...

10CVSS9.8AI score0.9116EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2021/03/16 3:15 p.m.22 views

CVE-2020-24264

Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The restriction checks for bind mounts are applied only on the client-side and not the server-side, which can lead to spawning a container with bind mount. Once such a container ...

10CVSS0.04116EPSS
Exploits0References1
OSV
OSV
added 2021/03/16 3:15 p.m.18 views

CVE-2020-24264

Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The restriction checks for bind mounts are applied only on the client-side and not the server-side, which can lead to spawning a container with bind mount. Once such a container ...

9.8CVSS7.7AI score
Exploits0References1
Cvelist
Cvelist
added 2021/03/16 2:42 p.m.27 views

CVE-2020-24264

Portainer 1.24.1 and earlier is affected by incorrect access control that may lead to remote arbitrary code execution. The restriction checks for bind mounts are applied only on the client-side and not the server-side, which can lead to spawning a container with bind mount. Once such a container ...

9.8AI score0.04116EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/10/13 8:19 p.m.31 views

CVE-2020-9480

In Apache Spark 2.4.5 and earlier, a standalone resource manager's master may be configured to require authentication spark.authenticate via a shared secret. When enabled, however, a specially-crafted RPC to the master can succeed in starting an application's resources on the Spark cluster, even...

9.3CVSS2.7AI score0.29157EPSS
Exploits0References3
OSV
OSV
added 2020/08/21 10:15 a.m.5 views

CVE-2020-7710

This affects all versions of package safe-eval. It is possible for an attacker to run an arbitrary command on the host machine...

9.8CVSS7.4AI score0.0143EPSS
Exploits1References2
Prion
Prion
added 2020/08/21 10:15 a.m.12 views

Command injection

This affects all versions of package safe-eval. It is possible for an attacker to run an arbitrary command on the host machine...

7.5CVSS9.6AI score0.0143EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/08/21 9:15 a.m.50 views

CVE-2020-7710 Sandbox Escape

This affects all versions of package safe-eval. It is possible for an attacker to run an arbitrary command on the host machine...

8.1CVSS9.7AI score0.0143EPSS
Exploits1References2
Veracode
Veracode
added 2020/08/06 9:35 p.m.20 views

Directory Traversal

ceph is vulnerable to directory traversal. An unauthenticated attacker is able to exploit the vulnerability to cause information disclosure on the host machine running the Ceph dashboard...

7.5CVSS2.1AI score0.02092EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2020/08/06 12:0 a.m.340 views

Docker Privileged Container Escape

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework POC modified from https://blog.trailofbits.com/2019/07/19/understanding-docker-container-escapes/ class MetasploitModule 'Docker Privileged Container Escape',...

0.9AI score
Exploits0
Prion
Prion
added 2020/05/07 2:15 p.m.12 views

Path traversal

A path traversal via the iniFile parameter in excel.php in Blaauw Remote Kiln Control through v3.00r4 allows an authenticated attacker to download arbitrary files from the host machine...

4CVSS6.5AI score0.01136EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/05/07 1:1 p.m.23 views

CVE-2019-18864

/server-info and /server-status in Blaauw Remote Kiln Control through v3.00r4 allow an unauthenticated attacker to gain sensitive information about the host machine...

7.7AI score0.01266EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2020/04/30 12:0 a.m.6 views

The vulnerability of the TriStation 1131 security logic analysis software lies in the presence of a pre-installed account, which allows a perpetrator to gain unauthorized access to the TriStation host machine.

The vulnerability of the TriStation 1131 security logic analysis software is related to the presence of a pre-installed account. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to the TriStation host machine...

9.4CVSS7.7AI score0.01813EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2020/04/21 5:15 p.m.29 views

CVE-2020-1699

A path traversal flaw was found in the Ceph dashboard implemented in upstream versions v14.2.5, v14.2.6, v15.0.0 of Ceph storage and has been fixed in versions 14.2.7 and 15.1.0. An unauthenticated attacker could use this flaw to cause information disclosure on the host machine running the Ceph...

7.5CVSS7.3AI score0.02092EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/04/15 9:3 p.m.22 views

CVE-2020-7485

VERSION NOT SUPPORTED WHEN ASSIGNED A legacy support account in the TriStation software version v4.9.0 and earlier could cause improper access to the TriStation host machine. This was addressed in TriStation version v4.9.1 and v4.10.1 released on May 30, 2013.1...

9.2AI score0.01813EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/02/13 12:0 a.m.24 views

RCE in LibreOffice and OpenOffice via the Apache UNO API

LibreOffice and OpenOffice are vulnerable to RCE via the Apache UNO API if either program is running as a listener on the host machine. Recent assessments: space-r7 at September 12, 2019 6:07pm UTC reported: Details The soffice binary allows passing arguments in order to listen on a host ip and...

1.4AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/01/17 2:39 p.m.30 views

CVE-2020-1699

A path traversal flaw was found in the Ceph dashboard implemented in Ceph storage. An unauthenticated attacker could use this flaw to cause information disclosure on the host machine running the Ceph dashboard...

7.5CVSS2AI score0.02092EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2019/11/12 8:51 p.m.6 views

hw: Machine Check Error on Page Size Change (IFU)

A flaw was found in the way Intel CPUs handle inconsistency between, virtual to physical memory address translations in CPU's local cache and system software's Paging structure entries. A privileged guest user may use this flaw to induce a hardware Machine Check Error on the host processor,...

6.5CVSS7.3AI score0.00915EPSS
Exploits0References6
Rows per page
Query Builder