CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Rapid7 Blog•added 2024/04/19 6:42 p.m.•54 views

Metasploit Weekly Wrap-Up 04/19/24

Welcome Ryan and the new CrushFTP module It's not every week we add an awesome new exploit module to the Framework while adding the original discoverer of the vulnerability to the Rapid7 team as well. We're very excited to welcome Ryan Emmons to the Emergent Threat Response team, which works...

7.5CVSS9.8AI score0.83473EPSS

Exploits13

Metasploit•added 2024/04/12 7:55 p.m.•397 views

MongoDB Ops Manager Diagnostic Archive Sensitive Information Retriever

MongoDB Ops Manager Diagnostics Archive does not redact SAML SSL Pem Key File Password field mms.saml.ssl.PEMKeyFilePassword within app settings. Archives do not include the PEM files themselves. This module extracts that unredacted password and stores the diagnostic archive for additional manual...

5.3CVSS6.8AI score0.23025EPSS

Exploits2

CNNVD•added 2023/07/26 12:0 a.m.•1 views

Jenkins Chef Identity Plugin 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

5.3CVSS5.7AI score0.00148EPSS

Exploits0References4

ATTACKERKB•added 2023/06/09 10:36 a.m.•2 views

CVE-2023-0342

MongoDB Ops Manager Diagnostics Archive may not redact sensitive PEM key file password app settings. Archives do not include the PEM files themselves. This issue affects MongoDB Ops Manager v5.0 prior to 5.0.21 and MongoDB Ops Manager v6.0 prior to 6.0.12...

5.3CVSS5.9AI score0.23025EPSS

Exploits2References4Affected Software1