Lucene search
K

6 matches found

Rapid7 Blog
Rapid7 Blog
added 2021/01/29 9:9 p.m.935 views

Metasploit Wrap-Up

MobileIron MDM Hessian-Based Java Deserialization RCE Our very own wvu-r7 has added exploits/linux/http/mobileironmdmhessianrce, which exploits an ACL bypass in MobileIron MDM products to execute a Java deserialization attack using a Groovy gadget against a Hessian based endpoint. CVE-2020-15505...

10CVSS1.1AI score0.99737EPSS
Exploits39
Packet Storm
Packet Storm
added 2021/01/28 12:0 a.m.554 views

Micro Focus UCMDB Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Micro Focus UCMDB Java Deserialization Unauthenticated Remote Code Execution', 'Description' = %q This module exploits two vulnerabilities, that...

10CVSS8.8AI score0.7699EPSS
Exploits6
0day.today
0day.today
added 2021/01/28 12:0 a.m.96 views

Micro Focus UCMDB Remote Code Execution Exploit

This Metasploit module exploits two vulnerabilities, that when chained allow an attacker to achieve unauthenticated remote code execution in Micro Focus UCMDB. UCMDB included in versions 2020.05 and below of Operations Bridge Manager are affected, but this module can probably also be used to...

9.8CVSS9AI score0.7699EPSS
Exploits6
Metasploit
Metasploit
added 2021/01/27 5:42 p.m.55 views

Micro Focus UCMDB Java Deserialization Unauthenticated Remote Code Execution

This module exploits two vulnerabilities, that when chained allow an attacker to achieve unauthenticated remote code execution in Micro Focus UCMDB. UCMDB included in versions 2020.05 and below of Operations Bridge Manager are affected, but this module can probably also be used to exploit...

10CVSS9.6AI score0.7699EPSS
Exploits6
NVD
NVD
added 2018/05/23 6:29 p.m.12 views

CVE-2018-6495

Cross-Site Scripting XSS in Micro Focus Universal CMDB, version 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.0, CMS, version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1 and Micro Focus UCMDB Browser, version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15.1. This vulnerability could be remotely exploited to...

6.3CVSS5.4AI score0.00653EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/02/20 9:0 p.m.14 views

CVE-2018-6487 MFSBGN03799 rev.1 - Micro Focus UCMDB, Remote Disclosure of Information

Remote Disclosure of Information in Micro Focus Universal CMDB Foundation Software, version numbers 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 4.10, 4.11. This vulnerability could be remotely exploited to allow disclosure of information...

9.8CVSS9.3AI score0.01903EPSS
Exploits0References1
Rows per page
Query Builder