Lucene search
K
AttackerkbMost viewed

74386 matches found

ATTACKERKB
ATTACKERKB
added 2020/02/05 12:0 a.m.114 views

CVE-2019-15126 aka Kr00k

An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors related to state transitions in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a...

8.8CVSS0.7AI score0.07709EPSS
Exploits9References14
ATTACKERKB
ATTACKERKB
added 2010/04/28 10:30 p.m.114 views

CVE-2010-0738

The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET...

5.3CVSS6.4AI score0.79415EPSS
Exploits28References28
ATTACKERKB
ATTACKERKB
added 2024/04/12 12:0 a.m.113 views

CVE-2024-3400

A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the...

10CVSS10AI score0.99999EPSS
Exploits43References5
ATTACKERKB
ATTACKERKB
added 2021/09/03 8:15 p.m.113 views

CVE-2021-30617

Chromium: CVE-2021-30617 Policy bypass in Blink...

6.5CVSS6.7AI score0.03741EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2021/07/14 12:0 a.m.113 views

CVE-2021-33766 ProxyToken

Microsoft Exchange Server Information Disclosure Vulnerability Recent assessments: NinjaOperator at August 30, 2021 4:59pm UTC reported: An unauthenticated actor can perform configuration actions on mailboxes belonging to arbitrary users. Which can be used to copy all emails addressed to a target...

7.5CVSS7.2AI score0.97502EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2020/09/09 12:0 a.m.113 views

CVE-2020-25213

The File Manager wp-file-manager plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder upload or mkfile and p...

10CVSS4.3AI score0.97328EPSS
Exploits14References14
ATTACKERKB
ATTACKERKB
added 2015/02/23 12:0 a.m.113 views

CVE-2015-2051

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

10CVSS9.4AI score0.97101EPSS
Exploits2References7
ATTACKERKB
ATTACKERKB
added 2021/07/09 12:0 a.m.112 views

CVE-2021-30116

Kaseya VSA before 9.5.7 allows credential disclosure, as exploited in the wild in July 2021. By default Kaseya VSA on premise offers a download page where the clients for the installation can be downloaded. The default URL for this page is https://x.x.x.x/dl.asp When an attacker download a client...

10CVSS9.2AI score0.85619EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2020/07/07 12:0 a.m.112 views

CVE-2020-15505

A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0; and Sentry versions 9.7.2 and earlier, and 9.8.0; and Monitor and Reporting Database RDB version 2.0.0.1 and earlier that...

9.8CVSS9.8AI score0.99737EPSS
Exploits4References5
ATTACKERKB
ATTACKERKB
added 2019/10/11 12:0 a.m.112 views

CVE-2019-2215

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network...

7.8CVSS3.1AI score0.72105EPSS
Exploits28References13
ATTACKERKB
ATTACKERKB
added 2016/05/13 12:0 a.m.112 views

CVE-2010-5326

The Invoker Servlet on SAP NetWeaver Application Server Java platforms, possibly before 7.3, does not require authentication, which allows remote attackers to execute arbitrary code via an HTTP or HTTPS request, as exploited in the wild in 2013 through 2016, aka a “Detour” attack. Recent...

10CVSS9.8AI score0.1745EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2013/10/09 12:0 a.m.112 views

Microsoft Internet Explorer SetMouseCapture Use-After-Free

Use-after-free vulnerability in the CDisplayPointer class in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via crafted JavaScript code that uses the onpropertychange event handler, as exploit...

9.3CVSS8.9AI score0.8593EPSS
Exploits42References9
ATTACKERKB
ATTACKERKB
added 2023/07/01 12:15 a.m.110 views

CVE-2021-34506

Microsoft Edge Chromium-based Security Feature Bypass Vulnerability...

6.1CVSS6.3AI score0.02068EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/07/06 12:0 a.m.110 views

CVE-2022-31129

moment is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Affected versions of moment were found to use an inefficient parsing algorithm. Specifically using string-to-date parsing in moment more specifically rfc2822 parsing, which is tried by default has...

7.5CVSS7.7AI score0.04923EPSS
Exploits1References15
ATTACKERKB
ATTACKERKB
added 2020/04/15 12:0 a.m.110 views

CVE-2020-2883

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP, T3 to...

9.8CVSS9.2AI score0.97116EPSS
Exploits34References7
ATTACKERKB
ATTACKERKB
added 2018/10/10 12:0 a.m.110 views

CVE-2018-8453

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka “Win32k Elevation of Privilege Vulnerability.” This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Serv...

7.8CVSS7.8AI score0.69833EPSS
Exploits9References6
ATTACKERKB
ATTACKERKB
added 2022/05/26 12:0 a.m.109 views

CVE-2022-22675

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 15.5, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.3.1, iOS 15.4.1 and iPadOS 15.4.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a repo...

9.3CVSS2.9AI score0.12642EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/02/18 12:0 a.m.109 views

CVE-2022-0543

It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a Debian-specific Lua sandbox escape, which could result in remote code execution. Recent assessments: NinjaOperator at March 25, 2022 8:04pm UTC reported: Muhstik Gang has been seen exploiting...

10CVSS9.7AI score0.9967EPSS
Exploits10References7
ATTACKERKB
ATTACKERKB
added 2020/07/31 12:0 a.m.109 views

OneDrive DLL hijack privilege escalation

There exists a dll hijacking vulnerability in Onedrive versions after 20.073. Recent assessments: bwatters-r7 at July 31, 2020 9:04pm UTC reported: EDIT: This is not a privilege escalation per se. This overwrites the dll and gains injection, but it relies on a second user with greater privileges ...

0.6AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2018/02/06 12:0 a.m.109 views

CVE-2018-4878

A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the...

7.8CVSS9.1AI score0.89618EPSS
Exploits19References19
ATTACKERKB
ATTACKERKB
added 2017/03/17 12:0 a.m.109 views

CVE-2017-0147

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memor...

9.3CVSS7AI score0.99693EPSS
Exploits48References12
ATTACKERKB
ATTACKERKB
added 2016/04/12 12:0 a.m.109 views

CVE-2016-0165

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka “Win32k Elevation of Privilege...

7.8CVSS6.2AI score0.13841EPSS
Exploits4References6
ATTACKERKB
ATTACKERKB
added 2023/09/06 12:0 a.m.108 views

CVE-2023-20269

A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or ...

9.1CVSS7.5AI score0.21583EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2021/10/07 12:0 a.m.108 views

Apache HTTPd 2.4.49/2.4.50 路径穿越漏洞

It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default...

9.8CVSS9.3AI score0.99992EPSS
Exploits175References33
ATTACKERKB
ATTACKERKB
added 2019/07/17 12:0 a.m.108 views

CVE-2019-13272

In the Linux kernel before 5.1.17, ptracelink in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a...

7.8CVSS7.5AI score0.52199EPSS
Exploits21References41
ATTACKERKB
ATTACKERKB
added 2017/09/15 12:0 a.m.108 views

CVE-2017-9805

The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads. Recent assessments: Assessed...

8.1CVSS4AI score0.99461EPSS
Exploits23References15
ATTACKERKB
ATTACKERKB
added 2021/06/08 12:0 a.m.107 views

CVE-2021-33739

Microsoft DWM Core Library Elevation of Privilege Vulnerability Recent assessments: gwillcox-r7 at June 17, 2021 5:19pm UTC reported: Public PoC code has been supposively making the rounds courtesy of https://github.com/mavillon1/CVE-2021-33739-POC. There is also a detailed writeup on this issue ...

8.4CVSS8.1AI score0.06555EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2021/02/09 12:0 a.m.107 views

CVE-2020-16044

Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

8.8CVSS2.6AI score0.01304EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2019/02/20 12:0 a.m.107 views

Wordpress Post Meta Entry RCE

Exploiting a local file inclusion vulnerability and directory traversal vulnerability in Wordpress versions 5.0.0 and prior to v4.9.9 can result in RCE. Recent assessments: space-r7 at May 09, 2019 5:57pm UTC reported: Details This exploit requires authentication and either the php-imagick or...

8.8CVSS3.8AI score0.91985EPSS
Exploits10References11
ATTACKERKB
ATTACKERKB
added 2022/05/09 12:0 a.m.106 views

CVE-2022-30333

RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract aka unpack operation, as demonstrated by creating a /.ssh/authorizedkeys file. NOTE: WinRAR and Android RAR are unaffected. Recent assessments: rbowes-r7 at July 18, 2022 4:55pm UTC reported:...

7.5CVSS7.6AI score0.98975EPSS
Exploits12References7
ATTACKERKB
ATTACKERKB
added 2022/02/24 3:15 p.m.106 views

CVE-2022-25075

TOTOLink A3000RU V5.9c.2280B20180512 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERYSTRING parameter...

9.8CVSS7.7AI score0.56248EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2015/04/21 12:0 a.m.106 views

CVE-2015-1701

Win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in April 2015, aka “Win32k Elevation of Privilege Vulnerability.” Recent assessments: gwillcox-r7 at...

7.8CVSS3.9AI score0.562EPSS
Exploits38References9
ATTACKERKB
ATTACKERKB
added 2024/07/01 12:0 a.m.105 views

CVE-2024-38475

Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure...

9.1CVSS7.8AI score0.99957EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2023/12/05 12:0 a.m.105 views

CVE-2023-49070

Pre-auth RCE in Apache Ofbiz 18.12.09. It’s due to XML-RPC no longer maintained still present. This issue affects Apache OFBiz: before 18.12.10. Users are recommended to upgrade to version 18.12.10 Recent assessments: cbeek-r7 at January 03, 2024 8:34am UTC reported: CVE-2023-49070 is a critical...

9.8CVSS9.8AI score0.96001EPSS
Exploits16References8
ATTACKERKB
ATTACKERKB
added 2021/11/13 3:15 p.m.105 views

CVE-2021-41653

The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840NEUV5171211 is vulnerable to remote code execution via a crafted payload in an IP address input field...

10CVSS8.1AI score0.75883EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2020/07/30 12:0 a.m.105 views

CVE-2020-8218

A code injection vulnerability exists in Pulse Connect Secure 9.1R8 that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface. Recent assessments: wvu-r7 at August 27, 2020 3:29pm UTC reported: Researchers wrote this one up at...

7.2CVSS6.3AI score0.32739EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2020/06/12 12:0 a.m.105 views

CVE-2020-10752

A flaw was found in the OpenShift API Server, where it failed to sufficiently protect OAuthTokens by leaking them into the logs when an API Server panic occurred. This flaw allows an attacker with the ability to cause an API Server error to read the logs, and use the leaked OAuthToken to log into...

7.5CVSS2.3AI score0.01072EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2019/07/19 12:0 a.m.105 views

CVE-2019-12725

Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exploit this issue by injecting OS commands inside the vulnerable parameters. Recent assessments:...

10CVSS3.4AI score0.89849EPSS
Exploits11References7
ATTACKERKB
ATTACKERKB
added 2019/04/09 12:0 a.m.105 views

CVE-2019-0797

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2019-0808. Recent assessments: gwillcox-r7 at November 22, 2020 2:41am UTC reported:...

7.8CVSS7.9AI score0.53298EPSS
Exploits10References2
ATTACKERKB
ATTACKERKB
added 2018/02/08 12:0 a.m.105 views

CVE-2018-6789

An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely. Recent assessments: gwillcox-r7 at October 20, 2020 6:46pm UTC reported: This is now supposedly...

9.8CVSS9.7AI score0.82238EPSS
Exploits19References19
ATTACKERKB
ATTACKERKB
added 2017/07/10 12:0 a.m.105 views

CVE-2017-9791

The Struts 1 plugin in Apache Struts 2.1.x and 2.3.x might allow remote code execution via a malicious field value passed in a raw message to the ActionMessage. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.8CVSS4.6AI score0.99461EPSS
Exploits42References11
ATTACKERKB
ATTACKERKB
added 2015/05/01 3:59 p.m.105 views

CVE-2014-8361

The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023...

10CVSS8AI score0.99975EPSS
Exploits6References14
ATTACKERKB
ATTACKERKB
added 2014/02/14 12:0 a.m.105 views

CVE-2014-0322

Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via vectors involving crafted JavaScript code, CMarkup, and the onpropertychange attribute of a script element, as exploited in the wild in January and February 2014. Recent...

9.3CVSS8.3AI score0.85239EPSS
Exploits35References13
ATTACKERKB
ATTACKERKB
added 2022/02/03 12:0 a.m.104 views

CVE-2022-20708

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned softwa...

10CVSS4.8AI score0.14863EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2021/02/11 12:0 a.m.104 views

CVE-2021-21307

Lucee Server is a dynamic, Java based JSR-223, tag and scripting language used for rapid web application development. In Lucee Admin before versions 5.3.7.47, 5.3.6.68 or 5.3.5.96 there is an unauthenticated remote code exploit. This is fixed in versions 5.3.7.47, 5.3.6.68 or 5.3.5.96. As a...

9.8CVSS9AI score0.89189EPSS
Exploits5References8
ATTACKERKB
ATTACKERKB
added 2019/10/29 12:0 a.m.104 views

CVE-2019-16647

Unquoted Search Path in Maxthon 5.1.0 to 5.2.7 Browser for Windows. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9CVSS3.7AI score0.01961EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2012/06/13 12:0 a.m.104 views

CVE-2012-1889 - MS12-043 Microsoft XML Core Services MSXML Uninitialized Memory Corruption

Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0 accesses uninitialized memory locations, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: This i...

9.3CVSS8.8AI score0.83638EPSS
Exploits12References10
ATTACKERKB
ATTACKERKB
added 2023/06/13 12:0 a.m.103 views

CVE-2023-27997

A heap-based buffer overflow vulnerability CWE-122 in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all versions, version 1.1 all...

9.8CVSS10AI score0.85689EPSS
Exploits10References3
ATTACKERKB
ATTACKERKB
added 2022/07/20 12:0 a.m.103 views

CVE-2022-26138

The Atlassian Questions For Confluence app for Confluence Server and Data Center creates a Confluence user account in the confluence-users group with the username disabledsystemuser and a hardcoded password. A remote, unauthenticated attacker with knowledge of the hardcoded password could exploit...

9.8CVSS3.7AI score0.9817EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2020/11/03 12:0 a.m.103 views

CVE-2020-15999 Chrome Freetype 0day

Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Recent assessments: lvarela-r7 at October 22, 2020 5:25pm UTC reported: Good SECPod blog on the vulnerability, also showing this is...

9.6CVSS8.1AI score0.5063EPSS
Exploits6References14
Total number of security vulnerabilities5000