Lucene search
K

44 matches found

Packet Storm
Packet Storm
added 2022/04/07 12:0 a.m.261 views

Kramer VIAware Remote Code Execution

Exploit Title: Remote Code Execution as Root on KRAMER VIAware Date: 31/03/2022 Exploit Author: sharkmoos Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: Tested on: ViaWare Go Linux CVE : CVE-2021-35064, CVE-2021-36356 import sys,...

10CVSS0.8AI score0.70753EPSS
Exploits6
0day.today
0day.today
added 2022/04/07 12:0 a.m.305 views

Kramer VIAware - Remote Code Execution Exploit

Exploit Title: Remote Code Execution as Root on KRAMER VIAware Exploit Author: sharkmoos Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: Tested on: ViaWare Go Linux CVE : CVE-2021-35064, CVE-2021-36356 import sys, urllib3 from request...

9.8CVSS0.2AI score0.70753EPSS
Exploits6
Exploit DB
Exploit DB
added 2022/04/07 12:0 a.m.476 views

Kramer VIAware - Remote Code Execution (RCE) (Root)

Exploit Title: Remote Code Execution as Root on KRAMER VIAware Date: 31/03/2022 Exploit Author: sharkmoos Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: Tested on: ViaWare Go Linux CVE : CVE-2021-35064, CVE-2021-36356 import sys,...

10CVSS9.6AI score0.70753EPSS
Exploits6
0day.today
0day.today
added 2022/03/30 12:0 a.m.304 views

Kramer VIAware 2.5.0719.1034 - Remote Code Execution Exploit

Exploit Title: Kramer VIAware 2.5.0719.1034 - Remote Code Execution RCE Exploit Author: sharkmoos & BallO Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: 2.5.0719.1034 Tested on: ViaWare Go Windows 10 CVE : CVE-2019-17124 import...

9.8CVSS0.2AI score0.2254EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/03/30 12:0 a.m.249 views

Kramer VIAware 2.5.0719.1034 Remote Code Execution

Exploit Title: Kramer VIAware 2.5.0719.1034 - Remote Code Execution RCE Date: 28/03/2022 Exploit Author: sharkmoos & BallO Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: 2.5.0719.1034 Tested on: ViaWare Go Windows 10 CVE :...

10CVSS0.7AI score0.2254EPSS
Exploits5
Exploit DB
Exploit DB
added 2022/03/30 12:0 a.m.305 views

Kramer VIAware 2.5.0719.1034 - Remote Code Execution (RCE)

Exploit Title: Kramer VIAware 2.5.0719.1034 - Remote Code Execution RCE Date: 28/03/2022 Exploit Author: sharkmoos & BallO Vendor Homepage: https://www.kramerav.com/ Software Link: https://www.kramerav.com/us/product/viaware Version: 2.5.0719.1034 Tested on: ViaWare Go Windows 10 CVE :...

10CVSS9.6AI score0.2254EPSS
Exploits5
OSV
OSV
added 2021/08/31 4:15 a.m.6 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

9.8CVSS6.1AI score0.54393EPSS
Exploits10References2
NVD
NVD
added 2021/08/31 4:15 a.m.43 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

10CVSS0.54393EPSS
Exploits5References2
Prion
Prion
added 2021/08/31 4:15 a.m.25 views

Information disclosure

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

10CVSS9.9AI score0.54393EPSS
Exploits10References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/08/31 4:15 a.m.141 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

10CVSS7.8AI score0.54393EPSS
In wildExploits5References4
Cvelist
Cvelist
added 2021/08/31 3:45 a.m.42 views

CVE-2021-36356

KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames even though browseSystemFiles.php is no longer reachable via the GUI. NOTE: this issue exists because of an incomplete fix for...

10AI score0.54393EPSS
Exploits5References2
CVE
CVE
added 2021/08/31 3:45 a.m.221 views

CVE-2021-36356

KRAMER VIAware (through Aug 2021) is vulnerable to remote code execution via ajaxPages/writeBrowseFilePathAjax.php which accepts arbitrary executable pathnames, enabling unauthenticated attackers to upload and execute code. The issue stems from an incomplete fix for CVE-2019-17124. Reports in CVE...

10CVSS9.8AI score0.54393EPSS
In wildExploits5References2Affected Software1
CNNVD
CNNVD
added 2021/08/31 12:0 a.m.4 views

Kramer Electronics VIAware 代码问题漏洞

Kramer Electronics VIAware is a wireless presentation collaboration software solution from Kramer Electronics Israel. A code issue exists in Kramer Electronics VIAware that allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable...

10CVSS9.2AI score0.54393EPSS
Exploits5References5
CNVD
CNVD
added 2021/07/15 12:0 a.m.8 views

Unspecified Vulnerability in VIAware

Kramer Electronics VIAware is a wireless presentation collaboration software solution from Kramer Electronics, Israel. A security vulnerability exists in all tested versions of KramerAV VIAWare, which can be exploited by an attacker to elevate privileges via misconfigured sudo...

10CVSS6.7AI score0.70753EPSS
Exploits5References1
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.5 views

VIAware 安全漏洞

Kramer Electronics VIAware is a wireless presentation collaboration software solution from Kramer Electronics, Israel. A security vulnerability exists in all tested versions of KramerAV VIAWare, which can be exploited by an attacker to elevate privileges via misconfigured sudo...

10CVSS5.6AI score0.70753EPSS
Exploits5References4
OSV
OSV
added 2019/10/09 4:15 p.m.12 views

CVE-2019-17124

Kramer VIAware 2.5.0719.1034 has Incorrect Access Control...

9.8CVSS7.3AI score0.2254EPSS
Exploits5References2
NVD
NVD
added 2019/10/09 4:15 p.m.48 views

CVE-2019-17124

Kramer VIAware 2.5.0719.1034 has Incorrect Access Control...

10CVSS9.6AI score0.2254EPSS
Exploits5References2
Prion
Prion
added 2019/10/09 4:15 p.m.18 views

Improper access control

Kramer VIAware 2.5.0719.1034 has Incorrect Access Control...

10CVSS9.4AI score0.2254EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2019/10/09 3:44 p.m.53 views

CVE-2019-17124

Kramer VIAware 2.5.0719.1034 has Incorrect Access Control...

9.6AI score0.2254EPSS
Exploits5References2
CVE
CVE
added 2019/10/09 3:44 p.m.165 views

CVE-2019-17124

CVE-2019-17124 affects Kramer VIAware; multiple connected sources (Red Hat CVE-2021-36356, CVE lists) indicate the issue persists via an incomplete fix and allows remote code execution through ajaxPages/writeBrowseFilePathAjax.php by accepting arbitrary pathnames. The advisory notes this is an af...

10CVSS9.4AI score0.2254EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder