Lucene search
K
AttackerkbMost viewed

74784 matches found

ATTACKERKB
ATTACKERKB
added 2020/10/28 12:0 a.m.34 views

CVE-2018-19949

If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. QNAP has already fixed the issue in the following QTS versions. QTS 4.4.2.1231 on build 20200302; QTS 4.4.1.1201 on build 20200130; QTS 4.3.6.1218 on build 20200214; QTS 4.3.4.1190 on build...

9.8CVSS6AI score0.24449EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/08/24 12:0 a.m.34 views

CVE-2020-24186

A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via the wmuUploadFiles AJAX action. Recent assessments: noraj at June 25, 2021 8:12am UTC reported: This...

10CVSS3.8AI score0.94535EPSS
Exploits19References7
ATTACKERKB
ATTACKERKB
added 2020/07/28 12:0 a.m.34 views

CVE-2020-10924

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 V1.0.4.8410.0.58 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists...

8.8CVSS2.7AI score0.87343EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2020/07/13 12:0 a.m.34 views

CVE-2020-10987

The goform/setUsbUnload endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers to execute arbitrary system commands via the deviceName POST parameter. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

10CVSS9.5AI score0.79673EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2020/06/09 12:0 a.m.34 views

CVE-2020-9818

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5. Processing a maliciously crafted mail message may lead to unexpected memory modification or application termination. Recent assessments: Assessed...

8.8CVSS3.1AI score0.02286EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2020/06/09 12:0 a.m.34 views

CVE-2020-1315 Internet Explorer Information Disclosure Vulnerability

An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack scenario, an...

5.3CVSS0.8AI score0.0377EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/04/28 12:0 a.m.34 views

CVE-2020-7351

An OS Command Injection vulnerability in the endpointdevicemap.php component of Fonality Trixbox Community Edition allows an attacker to execute commands on the underlying operating system as the “asterisk” user. Note that Trixbox Community Edition has been unsupported by the vendor since 2012...

9CVSS9.4AI score0.65208EPSS
Exploits4References3
ATTACKERKB
ATTACKERKB
added 2020/04/15 12:0 a.m.34 views

CVE-2020-1015

An elevation of privilege vulnerability exists in the way that the User-Mode Power Service UMPS handles objects in memory, aka ‘Windows Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-0934, CVE-2020-0983, CVE-2020-1009, CVE-2020-1011. Recent assessments: bwatters-r7 at...

7.8CVSS8.5AI score0.02549EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2020/03/30 12:0 a.m.34 views

CVE-2020-5284

Next.js versions before 9.3.2 have a directory traversal vulnerability. Attackers could craft special requests to access files in the dist directory .next. This does not affect files outside of the dist directory .next. In general, the dist directory only holds build assets unless your applicatio...

5CVSS2AI score0.43426EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2020/03/09 12:0 a.m.34 views

CVE-2016-11021

setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9CVSS7.2AI score0.68525EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2020/02/13 12:0 a.m.34 views

TP-Link Wi-Fi extender User-Agent Header Injection CVE-2019-7406

A pre-authentication command injection vulnerability in TP-Link Wi-Fi extenders allows commands to be executed as root. The injection occurs when the User-Agent header of a request is passed to an execve system call. TP-Link RE365 Wi-Fi extender with firmware version 1.0.2, build 20180213 Rel...

3.4AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2020/02/05 12:0 a.m.34 views

CVE-2020-3110 (AKA: CDPwn)

A vulnerability in the Cisco Discovery Protocol implementation for the Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP Camera. The vulnerability is due to missing checks when processing...

8.8CVSS1.4AI score0.05728EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2020/02/05 12:0 a.m.34 views

CVE-2020-8644

PlaySMS before 1.4.3 does not sanitize inputs from a malicious string. Recent assessments: touhidshaikh at March 12, 2020 4:40pm UTC reported: Description This module exploits a Preauth Server-Side Template Injection leads remote code execution vulnerability in PlaySMS Before Version 1.4.3. This...

9.8CVSS9.8AI score0.86689EPSS
Exploits6References7
ATTACKERKB
ATTACKERKB
added 2019/12/18 12:0 a.m.34 views

CVE-2019-8605

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges. Recent assessments: Assessed Attacker Value: 0 Assessed...

9.3CVSS4AI score0.17438EPSS
Exploits6References6
ATTACKERKB
ATTACKERKB
added 2019/11/12 12:0 a.m.34 views

Automatic macro execution bug in Office Mac _when_ macros are disabled

A security feature bypass vulnerability exists in Microsoft Office software by not enforcing macro settings on an Excel document, aka ‘Microsoft Office Excel Security Feature Bypass’. Recent assessments: busterb at November 14, 2019 10:37pm UTC reported: Saw this on Patrick Wardle’s twitter accou...

7.8CVSS7.4AI score0.03264EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2019/10/10 12:0 a.m.34 views

CVE-2019-1342

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka ‘Windows Error Reporting Manager Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2019-1315, CVE-2019-1339. Recent assessments: Assessed Attacker Value:...

7.8CVSS8.6AI score0.03478EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2019/09/11 12:0 a.m.34 views

CVE-2019-1253

An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka ‘Windows Elevation of Privilege Vulnerability’. This CVE ID is unique from...

7.8CVSS8.4AI score0.19254EPSS
Exploits7References3
ATTACKERKB
ATTACKERKB
added 2018/12/21 12:0 a.m.34 views

CVE-2018-19322

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run cod...

7.8CVSS3.3AI score0.01872EPSS
Exploits2References6
ATTACKERKB
ATTACKERKB
added 2018/08/15 12:0 a.m.34 views

CVE-2018-8385

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka “Scripting Engine Memory Corruption Vulnerability.” This affects Internet Explorer 9, ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ...

7.6CVSS6.9AI score0.68242EPSS
Exploits10References4
ATTACKERKB
ATTACKERKB
added 2018/08/15 12:0 a.m.34 views

CVE-2018-8389

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka “Scripting Engine Memory Corruption Vulnerability.” This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...

7.6CVSS7AI score0.68242EPSS
Exploits10References4
ATTACKERKB
ATTACKERKB
added 2018/03/28 12:0 a.m.34 views

CVE-2018-0175

Format String vulnerability in the Link Layer Discovery Protocol LLDP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition or execute arbitrary code with elevated privileges o...

8CVSS4.6AI score0.03547EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2018/01/19 12:0 a.m.34 views

CVE-2017-18044 - Commvault Communications Service execCmd Vulnerability

A certain message parsing function inside the Commvault service does not properly validate the input of an incoming string before passing it to CreateProcess. As a result, a specially crafted message can inject commands that will be executed on the target operating system. Exploitation of this...

10CVSS9.8AI score0.69753EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2017/05/12 12:0 a.m.34 views

CVE-2017-0222

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka “Internet Explorer Memory Corruption Vulnerability.” This CVE ID is unique from CVE-2017-0226. Recent assessments: gwillcox-r7 at November 22, 2020 3:11am UTC reported: Reported as...

8.8CVSS8.3AI score0.29645EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2016/10/14 12:0 a.m.34 views

CVE-2016-7193

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps...

9.3CVSS7.9AI score0.57705EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2016/02/10 12:0 a.m.34 views

CVE-2016-0040

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka “Windows Elevation of Privilege Vulnerability.” Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed...

7.8CVSS7.3AI score0.24554EPSS
Exploits10References5
ATTACKERKB
ATTACKERKB
added 2016/01/02 12:0 a.m.34 views

CVE-2015-7450

Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the InvokerTransformer class in the Apache Commons...

10CVSS9.5AI score0.97655EPSS
Exploits10References11
ATTACKERKB
ATTACKERKB
added 2015/08/15 12:0 a.m.34 views

CVE-2015-1769

Mount Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 mishandles symlinks, which allows physically proximate attackers to execute arbitrary code by connectin...

7.2CVSS7AI score0.04339EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2015/08/08 12:0 a.m.34 views

CVE-2015-4495

The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x before 38.1.1, and Firefox OS before 2.2 allows remote attackers to bypass the Same Origin Policy, and read arbitrary files or gain privileges, via vectors involving crafted JavaScript code and a native setter, as exploited in the...

8.8CVSS1.6AI score0.70226EPSS
Exploits8References18
ATTACKERKB
ATTACKERKB
added 2014/07/28 12:0 a.m.34 views

CVE-2014-3120

The default configuration in Elasticsearch before 1.2 enables dynamic scripting, which allows remote attackers to execute arbitrary MVEL expressions and Java code via the source parameter to search. NOTE: this only violates the vendor’s intended security policy if the user does not run...

8.1CVSS7.3AI score0.88559EPSS
Exploits17References13
ATTACKERKB
ATTACKERKB
added 2013/06/26 12:0 a.m.34 views

CVE-2013-1690

Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial of service application crash or...

9.3CVSS8.5AI score0.69021EPSS
Exploits9References18
ATTACKERKB
ATTACKERKB
added 2013/05/16 12:0 a.m.34 views

CVE-2013-1675

Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 do not properly initialize data structures for the nsDOMSVGZoomEvent::mPreviousScale and nsDOMSVGZoomEvent::mNewScale functions, which allows remote attackers to obtain...

6.5CVSS5AI score0.06696EPSS
Exploits1References16
ATTACKERKB
ATTACKERKB
added 2012/08/15 12:0 a.m.34 views

CVE-2012-1535

Unspecified vulnerability in Adobe Flash Player before 11.3.300.271 on Windows and Mac OS X and before 11.2.202.238 on Linux allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted SWF content, as exploited in the wild in August 2012 with SWF...

9.3CVSS8.1AI score0.70384EPSS
Exploits11References8
ATTACKERKB
ATTACKERKB
added 2012/06/09 12:0 a.m.34 views

CVE-2012-2037

Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows attackers to execute...

9.3CVSS7.8AI score0.078EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2012/05/16 12:0 a.m.34 views

CVE-2012-0663 Apple Quicktime Buffer Overflow

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. Recent assessments: wchen-r7 at September 12, 20...

9.3CVSS0.9AI score0.28623EPSS
Exploits9References6
ATTACKERKB
ATTACKERKB
added 2010/12/06 12:0 a.m.34 views

CVE-2010-4398

Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges, and bypass the User Account Control...

7.8CVSS7.6AI score0.08661EPSS
Exploits2References18
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:35 a.m.33 views

CVE-2026-46124

In the Linux kernel, the following vulnerability has been resolved: isofs: validate block number from NFS file handle in isofsexportiget isofsfhtodentry and isofsfhtoparent pass an attacker- controlled block number ifid-block or ifid-parentblock from the NFS file handle to isofsexportiget, which...

7.5CVSS6.2AI score0.00425EPSS
Exploits0References9Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/04/24 12:0 a.m.33 views

CVE-2024-20353

A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service DoS condition. This...

8.6CVSS7AI score0.70686EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/12/08 4:15 p.m.33 views

CVE-2023-47565

An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmwar...

8.8CVSS7.4AI score0.73277EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/09/19 2:15 p.m.33 views

CVE-2023-41179

A vulnerability in the 3rd party AV uninstaller module contained in Trend Micro Apex One on-prem and SaaS, Worry-Free Business Security and Worry-Free Business Security Services could allow an attacker to manipulate the module to execute arbitrary commands on an affected installation. Note that a...

7.2CVSS7.6AI score0.04739EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2023/09/12 12:0 a.m.33 views

CVE-2023-41990

The issue was addressed with improved handling of caches. This issue is fixed in tvOS 16.3, iOS 16.3 and iPadOS 16.3, macOS Monterey 12.6.8, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Ventura 13.2, watchOS 9.3. Processing a font file may lead to arbitrary code execution. Apple is...

7.8CVSS7.2AI score0.01145EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2023/07/01 12:15 a.m.33 views

CVE-2021-34475

Microsoft Edge Chromium-based Elevation of Privilege Vulnerability...

5.4CVSS6.1AI score0.00567EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/04/11 12:0 a.m.33 views

CVE-2023-28229

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7CVSS7AI score0.01872EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/03/08 12:0 a.m.33 views

CVE-2021-21326

GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI before version 9.5.4 it is possible to create tickets for another user with self-service interface without delegatee systems enabled. This is...

7.7CVSS4.8AI score0.0138EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2020/11/13 12:0 a.m.33 views

CVE-2020-25557

In CMSuno 1.6.2, an attacker can inject malicious PHP code as a “username” while changing his/her username & password. After that, when attacker logs in to the application, attacker’s code will be run. As a result of this vulnerability, authenticated user can run command on the server. Recent...

8.8CVSS3.3AI score0.09852EPSS
Exploits3References4
ATTACKERKB
ATTACKERKB
added 2020/10/15 12:0 a.m.33 views

CVE-2020-6364 — OS Command Injection Vulnerability in CA Introscope Enterprise Manager (Affected Products: SAP Solution Manager and SAP Focused Run)

SAP Solution Manager and SAP Focused Run update provided in WILYINTROENTERPRISE 9.7, 10.1, 10.5, 10.7, allows an attacker to modify a cookie in a way that OS commands can be executed and potentially gain control over the host running the CA Introscope Enterprise Manager,leading to Code Injection...

10CVSS2.2AI score0.06408EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2020/06/22 12:0 a.m.33 views

CVE-2020-10740

A vulnerability was found in Wildfly in versions before 20.0.0.Final, where a remote deserialization attack is possible in the Enterprise Application BeansEJB due to lack of validation/filtering capabilities in wildfly. Recent assessments: space-r7 at July 17, 2020 2:11pm UTC reported: Versions o...

7.5CVSS4.4AI score0.0172EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/02/12 12:0 a.m.33 views

CVE-2019-16336

The Bluetooth Low Energy implementation in Cypress PSoC 4 BLE component 3.61 and earlier processes data channel frames with a payload length larger than the configured link layer maximum RX payload size, which allows attackers in radio range to cause a denial of service crash via a crafted BLE Li...

8.8CVSS8.1AI score0.0148EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2019/12/18 12:0 a.m.33 views

CVE-2019-7287

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4. An application may be able to execute arbitrary code with kernel privileges. Recent assessments: gwillcox-r7 at November 22, 2020 2:38am UTC reported: Reported as exploited in the wild as pa...

9.3CVSS1.2AI score0.04589EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2019/12/18 12:0 a.m.33 views

CVE-2019-7286

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An application may be able to gain elevated privileges. Recent assessments: gwillcox-r7 at November 22, 2020 2:38am UTC reported: Reported as...

7.8CVSS7.7AI score0.15705EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2019/12/05 12:0 a.m.33 views

CVE-2019-7194

This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend updating Photo Station to their latest versions. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker...

9.8CVSS5.7AI score0.82966EPSS
Exploits8References3
Total number of security vulnerabilities5000