CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

0day.today•added 2018/01/04 12:0 a.m.•210 views

Linksys WVBR0-25 User-Agent Command Execution Exploit

The Linksys WVBR0-25 Wireless Video Bridge, used by DirecTV to connect wireless Genie cable boxes to the Genie DVR, is vulnerable to OS command injection in versions prior to 1.0.41 of the web management portal via the User-Agent header. Authentication is not required to exploit this vulnerabilit...

10CVSS9.6AI score0.87929EPSS

Exploit DB•added 2018/01/04 12:0 a.m.•52 views

Linksys WVBR0-25 - User-Agent Command Execution (Metasploit)

10CVSS9.4AI score0.87929EPSS

Hacker One•added 2018/01/02 3:30 a.m.•43 views

ownCloud: OS Command Injection via tainted PATH environment variable in findBinaryPath

The PATH environment variable is passed to the find command in owncloud/core/blob/master/lib/private/legacy/helper.php on line 543 is not sanitized for input. If an adversary is able to taint the PATH environment variable, OS command execution is possible utilizing the find command's execute -exe...

7.2AI score

Exploit DB•added 2018/01/01 12:0 a.m.•41 views

Cambium ePMP1000 - 'get_chart' Shell via Command Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Cambium ePMP1000 'getchart' Shell via Command Injection v3.1-3.5-RC7", 'Description' = % This module exploits an OS Command Injection vulnerabilit...

9CVSS7.4AI score0.74556EPSS

Exploit DB•added 2018/01/01 12:0 a.m.•25 views

Cambium ePMP1000 - 'ping' Shell via Command Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Cambium ePMP1000 'ping' Shell via Command Injection up to v2.5", 'Description' = % This module exploits an OS Command Injection vulnerability in...

7.4AI score

Packet Storm•added 2017/12/29 12:0 a.m.•41 views

Cambium ePMP1000 3.1-3.5-RC7 Command Injection

8.8AI score0.74556EPSS

0day.today•added 2017/12/29 12:0 a.m.•29 views

Cambium ePMP1000 2.5 ping Shell via Command Injection Exploit

This Metasploit module exploits an OS Command Injection vulnerability in Cambium ePMP1000 device management portal. It requires any one of the following login credentials - admin/admin, installer/installer, home/home - to set up a reverse netcat shell. This module requires Metasploit:...

7.3AI score

0day.today•added 2017/12/29 12:0 a.m.•75 views

Cambium ePMP1000 3.1-3.5-RC7 Command Injection Exploit

8.9AI score0.74556EPSS

CVE•added 2017/12/24 4:0 p.m.•70 views

CVE-2017-17888

The CVE-2017-17888 entry concerns Anti-Web (up to version 3.8.7) used in multiple industrial/OT devices (NetBiter/HMS, Ouman EH-net, Alliance WS100 → AWU 500, Sauter ERW100F001, Carlo Gavazzi SIU-DLG, AEDILIS SMART-1, SYXTHSENSE WebBiter, ABB SREA, ASCON DY WebServer). Vulnerability: remote authe...

9CVSS9AI score0.27575EPSS

Exploits2References3Affected Software1

Metasploit•added 2017/12/22 6:44 p.m.•43 views

Cambium ePMP 1000 'get_chart' Command Injection (v3.1-3.5-RC7)

This module exploits an OS Command Injection vulnerability in Cambium ePMP 1000 v3.1-3.5-RC7 device management portal. It requires any one of the following login credentials - admin/admin, installer/installer, home/home - to execute arbitrary system commands. This module requires Metasploit:...

8.8CVSS0.8AI score0.74556EPSS

Metasploit•added 2017/12/22 6:44 p.m.•15 views

Cambium ePMP 1000 'ping' Command Injection (up to v2.5)

This module exploits an OS Command Injection vulnerability in Cambium ePMP 1000 Authors Karn Ganeshen This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Cambium ePMP 1000 'ping' Command Injection ...

7.4AI score

OpenVAS•added 2017/12/22 12:0 a.m.•40 views

Linksys WVBRO25 RCE Vulnerability

Linksys WVBRO-25 is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS9.8AI score0.87929EPSS

Exploits9References1

Metasploit•added 2017/12/21 11:44 p.m.•32 views

Linksys WVBR0-25 User-Agent Command Execution

The Linksys WVBR0-25 Wireless Video Bridge, used by DirecTV to connect wireless Genie cable boxes to the Genie DVR, is vulnerable to OS command injection in version 'Linksys WVBR0-25 User-Agent Command Execution', 'Description' = %q The Linksys WVBR0-25 Wireless Video Bridge, used by DirecTV to...

9.8CVSS7.5AI score0.87929EPSS

Prion•added 2017/12/16 2:29 a.m.•13 views

Design/Logic Flaw

Qt for Android prior to 5.9.0 allows remote attackers to execute arbitrary OS commands via unspecified vectors...

7.5CVSS9.5AI score0.01958EPSS

Exploits0References2Affected Software1

CVE•added 2017/12/15 2:0 p.m.•60 views

CVE-2017-10904

CVE-2017-10904 affects Qt for Android prior to 5.9.0, where remote attackers can execute arbitrary OS commands via unspecified vectors. Root cause is not detailed in the provided documents, but the vulnerability impacts Android builds using Qt’s framework up to version 5.8.x. Practical impact is ...

9.8CVSS9.5AI score0.01958EPSS

Exploits0References2Affected Software1

Japan Vulnerability Notes•added 2017/12/11 12:0 a.m.•60 views

JVN#67389262: Qt for Android vulnerable to OS command injection

Qt for Android provided by The Qt Company contains an OS command injection vulnerability CWE-78. Impact A remote attacker may execute an arbitrary OS command. Solution Update the Software Update to the latest version of software according to the information provided by the developer. Apply the...

9.8CVSS9AI score0.01958EPSS