Lucene search
K
AttackerkbMost viewed

74766 matches found

ATTACKERKB
ATTACKERKB
added 2020/11/19 12:0 a.m.38 views

CVE-2020-28949

ArchiveTar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack such as file:// to overwrite files can still succeed. Recent assessments: gwillcox-r7 at January 15, 2021 8:42pm UTC reported: Original advisory and PoC can be found at...

7.8CVSS7.7AI score0.84554EPSS
Exploits5References19
ATTACKERKB
ATTACKERKB
added 2020/06/08 12:0 a.m.38 views

CVE-2020-12695 "CallStranger"

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. Recent assessments: kevthehermit at June 0...

7.8CVSS0.1AI score0.15193EPSS
Exploits3References22
ATTACKERKB
ATTACKERKB
added 2020/05/21 12:0 a.m.38 views

CVE-2020-1143

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-1054. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker...

7.8CVSS8.6AI score0.52778EPSS
Exploits5References2
ATTACKERKB
ATTACKERKB
added 2020/02/27 12:0 a.m.38 views

CVE-2020-3837

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges. Recent assessments: Assessed Attacker Value:...

9.3CVSS2.9AI score0.16111EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2020/01/15 12:0 a.m.38 views

Junos Space: Malicious HTTP packets sent to Junos Space allow an attacker to view all files on the device.

A Local File Inclusion vulnerability in Juniper Networks Junos Space allows an attacker to view all files on the target when the device receives malicious HTTP packets. This issue affects: Juniper Networks Junos Space versions prior to 19.4R1. Recent assessments: busterb at January 30, 2020 8:09a...

6.5CVSS0.3AI score0.01667EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2019/01/08 12:0 a.m.38 views

CVE-2019-0543

An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka “Microsoft Windows Elevation of Privilege Vulnerability.” This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012,...

7.8CVSS7.8AI score0.04679EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2018/12/11 12:0 a.m.38 views

CVE-2018-17480

Execution of user supplied Javascript during array deserialization leading to an out of bounds write in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Recent assessments: Assessed Attacker Value: 0 Assessed...

8.8CVSS2.9AI score0.34292EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2018/10/17 12:0 a.m.38 views

CVE-2018-10823

An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the shell command into the chkisg.htm page Sip...

9CVSS4.6AI score0.78191EPSS
Exploits5References3
ATTACKERKB
ATTACKERKB
added 2018/07/09 12:0 a.m.38 views

CVE-2018-5002

Adobe Flash Player versions 29.0.0.171 and earlier have a Stack-based buffer overflow vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value:...

10CVSS6.2AI score0.25353EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2017/08/02 12:0 a.m.38 views

CVE-2017-9769

A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process. Recent assessments: zeroSteiner at November 21, 2019 11:14pm UTC reported: Analysis The Razer rzpnk.sys driver...

10CVSS0.3AI score0.85539EPSS
Exploits5References4
ATTACKERKB
ATTACKERKB
added 2016/04/12 12:0 a.m.38 views

CVE-2016-0143

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka “Win32k Elevation of Privilege...

7.8CVSS6.2AI score0.13841EPSS
Exploits4References6
ATTACKERKB
ATTACKERKB
added 2016/02/10 12:0 a.m.38 views

CVE-2016-0984

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allows attackers to execute...

9.3CVSS2.8AI score0.55375EPSS
Exploits4References10
ATTACKERKB
ATTACKERKB
added 2015/08/14 12:0 a.m.38 views

Adobe Flash Overflow in ID3 Tag Parsing

Integer overflow in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors. If an mp3...

10CVSS4.4AI score0.65956EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2015/07/14 12:0 a.m.38 views

CVE-2015-2419

JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka “JScript9 Memory Corruption Vulnerability.” Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value:...

9.3CVSS8.2AI score0.44537EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2014/09/18 12:0 a.m.38 views

CVE-2014-4404

Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assess...

9.3CVSS7.9AI score0.49049EPSS
Exploits5References13
ATTACKERKB
ATTACKERKB
added 2010/12/14 12:0 a.m.38 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive. Recent assessments: Assessed Attacker Value...

7.8CVSS6.3AI score0.17794EPSS
Exploits4References32
ATTACKERKB
ATTACKERKB
added 2010/11/10 12:0 a.m.38 views

CVE-2010-3333

Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via crafted RTF data, aka “RTF Stack Buffer Overfl...

9.3CVSS8.3AI score0.89497EPSS
Exploits14References14
ATTACKERKB
ATTACKERKB
added 2026/02/26 2:23 a.m.37 views

CVE-2026-2356

The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.2 via the 'registermember' function, due to missing validation on the 'memberid' user...

5.3CVSS5.5AI score0.00187EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/10/23 12:0 a.m.37 views

CVE-2024-47575

A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through 7.4.4, FortiManager 7.2.0 through 7.2.7, FortiManager 7.0.0 through 7.0.12, FortiManager 6.4.0 through 6.4.14, FortiManager 6.2.0 through 6.2.12, Fortinet FortiManager Cloud 7.4.1 through 7.4.4,...

9.8CVSS10AI score0.94761EPSS
Exploits13References2
ATTACKERKB
ATTACKERKB
added 2024/09/10 12:0 a.m.37 views

CVE-2024-8190

An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows a remote authenticated attacker to obtain remote code execution. The attacker must have admin level privileges to exploit this vulnerability. Recent assessments: Assessed Attacker...

7.2CVSS7.7AI score0.88955EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2024/09/07 12:0 a.m.37 views

CVE-2024-40711

A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthenticated remote code execution RCE. Recent assessments: ccondon-r7 at November 22, 2024 4:42pm UTC reported: Critical unauthenticated remote code execution vulnerability in Veeam Backup & Replication, a...

9.8CVSS9.9AI score0.88193EPSS
Exploits3References2
ATTACKERKB
ATTACKERKB
added 2024/06/10 12:0 a.m.37 views

CVE-2024-36971

In the Linux kernel, the following vulnerability has been resolved: net: fix dstnegativeadvice race dstnegativeadvice does not enforce proper RCU rules when sk-dstcache must be cleared, leading to possible UAF. RCU rules are that we must first clear sk-skdstcache, then call dstreleaseolddst. Note...

7.8CVSS8.8AI score0.02701EPSS
Exploits1References10
ATTACKERKB
ATTACKERKB
added 2024/05/14 12:0 a.m.37 views

CVE-2024-30051

Windows DWM Core Library Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS7.3AI score0.05687EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2024/03/05 12:0 a.m.37 views

CVE-2024-23296

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 17.4 and iPadOS 17.4. An attacker with arbitrary kernel read and write capability may be able to bypass kernel memory protections. Apple is aware of a report that this issue may have been exploited. Recen...

7.8CVSS6.3AI score0.01411EPSS
Exploits0References17
ATTACKERKB
ATTACKERKB
added 2024/03/04 6:15 p.m.37 views

CVE-2024-27199

In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible Rapid7 Analysis Overview CVE-2024-27199 is an authentication bypass vulnerability in the web component of TeamCity that arises from a path traversal issue CWE-22 and has a CVSS base score ...

9.8CVSS7.4AI score0.99991EPSS
Exploits25References5
ATTACKERKB
ATTACKERKB
added 2023/10/25 12:0 a.m.37 views

CVE-2023-20273

A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web...

10CVSS8.7AI score0.99571EPSS
Exploits28References4
ATTACKERKB
ATTACKERKB
added 2023/10/01 6:15 p.m.37 views

CVE-2023-4211

A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory...

5.5CVSS6.9AI score0.01361EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2023/09/21 12:0 a.m.37 views

CVE-2023-41993

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7. Recent assessments: Assessed...

8.8CVSS9.1AI score0.29179EPSS
Exploits3References23
ATTACKERKB
ATTACKERKB
added 2023/07/11 12:0 a.m.37 views

CVE-2023-35311

Microsoft Outlook Security Feature Bypass Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

8.8CVSS6.9AI score0.15522EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/03/14 12:0 a.m.37 views

CVE-2023-26359

Adobe ColdFusion versions 2018 Update 15 and earlier and 2021 Update 5 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Rece...

9.8CVSS8.7AI score0.97339EPSS
Exploits13References2
ATTACKERKB
ATTACKERKB
added 2022/06/14 12:0 a.m.37 views

CVE-2022-22071

Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Recent...

8.4CVSS8.3AI score0.0045EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/09/02 12:0 a.m.37 views

MSMS-PHP (by: oretnom23 ) v1.0 - HIT STRIKE!

CVE-nu11-05 MSMS-PHP by: oretnom23 v1.0 HIT STRIKE Description: The MSMS-PHP by: oretnom23 v1.0 is vulnerable in three sections! – – remote SQL-Injection-Bypass-Authentication m0re info: . The parameter username from the login form is not protected correctly and there is no security and escaping...

7.3AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/06/07 12:0 a.m.37 views

CVE-2021-30533

Insufficient policy enforcement in PopupBlocker in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass navigation restrictions via a crafted iframe. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

6.5CVSS4.6AI score0.16611EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2020/04/14 12:0 a.m.37 views

CVE-2020-8467

Remote code execution vulnerability against Trend Micro Apex One 2019 and OfficeScan XG Recent assessments: bwatters-r7 at April 14, 2020 1:56pm UTC reported: Security products are notorious targets for attack because for them to perform their function, they must be elevated, so gaining execution...

10CVSS1AI score0.1324EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2020/02/11 12:0 a.m.37 views

CVE-2020-0753

An elevation of privilege vulnerability exists in Windows Error Reporting WER when WER handles and executes files, aka ‘Windows Error Reporting Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-0754. Recent assessments: tekwizz123 at February 23, 2020 6:25pm UTC reported:...

7.8CVSS8.3AI score0.02313EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/02/07 12:0 a.m.37 views

CVE-2019-18988

TeamViewer Desktop through 14.7.1965 allows a bypass of remote-login access control because the same key is used for different customers’ installations. It used a shared AES key for all installations since at least as far back as v7.0.43148, and used it for at least OptionsPasswordAES in the...

7CVSS7.5AI score0.04707EPSS
Exploits2References6
ATTACKERKB
ATTACKERKB
added 2019/10/17 12:0 a.m.37 views

CVE-2019-14287

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER= logging, for a “su...

9CVSS2.6AI score0.63917EPSS
Exploits10References37
ATTACKERKB
ATTACKERKB
added 2019/09/03 12:0 a.m.37 views

CVE-2019-15043

In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana. Recent assessments: h0ffayyy at September 26, 2020 6:21pm UTC reported: The Dashboard Snapshot API allows an...

7.5CVSS1.7AI score0.63388EPSS
Exploits1References15
ATTACKERKB
ATTACKERKB
added 2019/07/19 12:0 a.m.37 views

CVE-2019-1579

Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11-h1 and earlier, and PAN-OS 8.1.2 and earlier with GlobalProtect Portal or GlobalProtect Gateway Interface enabled may allow an unauthenticated remote attacker to execute arbitrary code. Recent assessments: busterb at July 24, 2019...

8.1CVSS3.5AI score0.39317EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2019/07/16 12:0 a.m.37 views

CVE-2019-12991

Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation issue 5 of 6. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9CVSS2.8AI score0.73875EPSS
Exploits5References6
ATTACKERKB
ATTACKERKB
added 2019/06/19 12:0 a.m.37 views

CVE-2019-2025

In binderthreadread of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...

7.8CVSS3.3AI score0.00523EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2019/03/25 12:0 a.m.37 views

LibreOffice Macro Code Execution

It was found that libreoffice before versions 6.0.7 and 6.1.3 was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craft a document, which when opened by LibreOffice, would execute a Python method from a script i...

9.8CVSS1.6AI score0.67321EPSS
Exploits10References9
ATTACKERKB
ATTACKERKB
added 2018/12/21 12:0 a.m.37 views

CVE-2018-19321

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...

7.8CVSS3.9AI score0.03671EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2018/12/12 12:0 a.m.37 views

CVE-2018-8611

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka “Windows Kernel Elevation of Privilege Vulnerability.” This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server...

7.8CVSS8.6AI score0.04196EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2018/08/09 12:0 a.m.37 views

CVE-2018-15133

In Laravel Framework through 5.5.40 and 5.6.x through 5.6.29, remote code execution might occur as a result of an unserialize call on a potentially untrusted X-XSRF-TOKEN value. This involves the decrypt method in Illuminate/Encryption/Encrypter.php and PendingBroadcast in...

8.1CVSS8AI score0.76814EPSS
Exploits11References3
ATTACKERKB
ATTACKERKB
added 2017/10/27 12:0 a.m.37 views

CVE-2017-5070

Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed...

8.8CVSS4.6AI score0.31212EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2017/05/26 12:0 a.m.37 views

CVE-2017-6862

NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5 devices before 1.0.0.42 allow authentication bypass and remote code execution via a buffer overflow that uses a parameter in the administration webapp. The NETGEAR ID is PSV-2016-0261. Recent assessments:...

9.8CVSS10AI score0.42696EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2016/12/20 12:0 a.m.37 views

CVE-2016-7262

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, and Excel Viewer allow user-assisted remote attackers to execute arbitrary commands via a crafted cell that is mishandled upon a click, aka “Microsoft Office Security Feature...

7.8CVSS7.7AI score0.58204EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2016/08/09 12:0 a.m.37 views

CVE-2016-3310

The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka “Win32k Elevation of...

7.8CVSS7.6AI score0.20625EPSS
Exploits8References5
ATTACKERKB
ATTACKERKB
added 2016/04/12 12:0 a.m.37 views

CVE-2016-0151

The Client-Server Run-time Subsystem CSRSS in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mismanages process tokens, which allows local users to gain privileges via a crafted application, aka “Windows CSRSS Security Feature Bypass...

7.8CVSS7.3AI score0.63195EPSS
Exploits2References5
Total number of security vulnerabilities5000