Lucene search
K
AttackerkbMost viewed

74287 matches found

ATTACKERKB
ATTACKERKB
added 2019/10/10 12:0 a.m.178 views

Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the Internet. Successful exploitation of the most severe vulnerabilities could allow an attacker to execute arbitrary co...

8.8CVSS1.5AI score0.73856EPSS
Exploits14References6
ATTACKERKB
ATTACKERKB
added 2024/11/12 12:0 a.m.176 views

CVE-2024-49039

Windows Task Scheduler Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

8.8CVSS6.9AI score0.13719EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2018/07/19 12:0 a.m.176 views

CVE-2017-7481

Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2...

9.8CVSS7.2AI score0.04804EPSS
Exploits0References13
ATTACKERKB
ATTACKERKB
added 2024/11/12 12:0 a.m.175 views

CVE-2024-43451

NTLM Hash Disclosure Spoofing Vulnerability Recent assessments: cbeek-r7 at March 10, 2025 6:13pm UTC reported: CVE-2024-43451 is a Windows NTLM hash disclosure vulnerability categorized as a “spoofing” flaw that affects all supported Microsoft Windows versions, including Windows 10, Windows 11,...

6.5CVSS8.1AI score0.81817EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/08/20 12:0 a.m.174 views

CVE-2021-44515

Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2,...

10CVSS9.6AI score0.99867EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2014/04/24 12:0 a.m.174 views

CVE-2014-2601

The server in HP Integrated Lights-Out 2 aka iLO 2 2.23 and earlier allows remote attackers to cause a denial of service via crafted HTTPS traffic, as demonstrated by traffic from a CVE-2014-0160 vulnerability-assessment tool. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value...

7.8CVSS7.3AI score0.99999EPSS
Exploits88References5
ATTACKERKB
ATTACKERKB
added 2024/03/27 12:0 a.m.173 views

CVE-2024-27188

Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability in Cloudways Breeze allows Stored XSS.This issue affects Breeze: from n/a through 2.1.3. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

5.9CVSS6AI score0.00342EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/12/06 12:0 a.m.173 views

CVE-2022-45359

Unauth. Arbitrary File Upload vulnerability in YITH WooCommerce Gift Cards premium plugin = 3.19.0 on WordPress. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.8CVSS9.4AI score0.13514EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2022/03/29 12:0 a.m.173 views

CVE-2022-26871

An arbitrary file upload vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to upload an arbitrary file which could lead to remote code execution. Recent assessments: jbaines-r7 at April 15, 2022 5:40pm UTC reported: On March 29, 2022, Trend Micro released a...

9.8CVSS10AI score0.19633EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2021/11/23 12:0 a.m.173 views

CVE-2021-38003

Inappropriate implementation in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

8.8CVSS2.8AI score0.36238EPSS
Exploits2References6
ATTACKERKB
ATTACKERKB
added 2020/06/09 12:0 a.m.173 views

CVE-2020-1170

An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka ‘Microsoft Windows Defender Elevation of Privilege Vulnerability’. This CVE ID is unique from...

7.8CVSS7.9AI score0.01608EPSS
Exploits4References3
ATTACKERKB
ATTACKERKB
added 2024/12/27 12:0 a.m.172 views

CVE-2024-3393

A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to send a malicious packet through the data plane of the firewall that reboots the firewall. Repeated attempts to trigger this condition will cause the firewall t...

8.7CVSS6.9AI score0.26636EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/04 12:0 a.m.172 views

CVE-2022-26318

On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code, aka FBX-22786. This vulnerability impacts Fireware OS before 12.7.2U2, 12.x before 12.1.3U8, and 12.2.x through 12.5.x before 12.5.9U2. Recent assessments: h00die-gr3y at March 03, 2024 7:34pm UTC...

9.8CVSS9.4AI score0.78303EPSS
Exploits6References2
ATTACKERKB
ATTACKERKB
added 2019/04/08 12:0 a.m.172 views

CVE-2019-0211

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads including scripts executed by an in-process scripting interpreter could execute arbitrary code with the privileges of the parent process usually roo...

7.8CVSS8.1AI score0.65005EPSS
Exploits8References66
ATTACKERKB
ATTACKERKB
added 2018/08/30 12:0 a.m.172 views

CVE-2018-15745

Argus Surveillance DVR 4.0.0.0 devices allow Unauthenticated Directory Traversal, leading to File Disclosure via a ..%2F in the WEBACCOUNT.CGI RESULTPAGE parameter. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.5CVSS6.9AI score0.97709EPSS
Exploits4References4
ATTACKERKB
ATTACKERKB
added 2018/05/09 12:0 a.m.172 views

CVE-2018-8174

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka “Windows VBScript Engine Remote Code Execution Vulnerability.” This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1,...

7.6CVSS7.3AI score0.87814EPSS
Exploits9References6
ATTACKERKB
ATTACKERKB
added 2014/11/18 12:0 a.m.172 views

CVE-2014-6324 - Microsoft Kerberos Checksum Validation Vulnerability

The Kerberos Key Distribution Center KDC in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote authenticated domain users to obtain domain administrator privileges via a...

9CVSS0.6AI score0.87448EPSS
Exploits8References10
ATTACKERKB
ATTACKERKB
added 2013/01/10 12:0 a.m.172 views

CVE-2013-0422

Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute arbitrary code by 1 using the public getMBeanInstantiator method in the JmxMBeanServer class to obtain a reference to a private MBeanInstantiator object, then retrieving arbitrary Class references using t...

10CVSS3.4AI score0.98536EPSS
Exploits48References23
ATTACKERKB
ATTACKERKB
added 2020/07/24 12:0 a.m.171 views

CVE-2020-12812

An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being able to log in successfully without being prompted for the second factor of authentication FortiToken if they changed the case of their username. Recent assessments:...

9.8CVSS10AI score0.99999EPSS
Exploits22References2
ATTACKERKB
ATTACKERKB
added 2016/06/07 12:0 a.m.171 views

CVE-2016-4437

Apache Shiro before 1.2.5, when a cipher key has not been configured for the “remember me” feature, allows remote attackers to execute arbitrary code or bypass intended access restrictions via an unspecified request parameter. Recent assessments: sv3nbeast at April 17, 2020 12:15pm UTC reported: ...

9.8CVSS9.2AI score0.92988EPSS
Exploits9References8
ATTACKERKB
ATTACKERKB
added 2022/02/01 12:0 a.m.170 views

CVE-2021-24762

The Perfect Survey WordPress plugin before 1.5.2 does not validate and escape the questionid GET parameter before using it in a SQL statement in the getquestion AJAX action, allowing unauthenticated users to perform SQL injection. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker...

9.8CVSS5AI score0.86896EPSS
Exploits7References3
ATTACKERKB
ATTACKERKB
added 2020/11/06 12:0 a.m.168 views

CVE-2020-25592 — SaltStack Authentication Bypass and Salt SSH Command Execution

In SaltStack Salt through 3002, salt-netapi improperly validates eauth credentials and tokens. A user can bypass authentication and invoke Salt SSH. Recent assessments: wvu-r7 at November 10, 2020 11:51pm UTC reported: Please see the Rapid7 analysis. Assessed Attacker Value: 5 Assessed Attacker...

9.8CVSS10AI score0.99585EPSS
Exploits29References10
ATTACKERKB
ATTACKERKB
added 2019/04/26 12:0 a.m.168 views

CVE-2019-11539

In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before 5.2R12.1, and 5.1RX before 5.1R15.1, the admin...

10CVSS8.7AI score0.99999EPSS
Exploits35References12
ATTACKERKB
ATTACKERKB
added 2024/09/04 12:0 a.m.167 views

CVE-2024-45195

Direct Request ‘Forced Browsing’ vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 18.12.16. Users are recommended to upgrade to version 18.12.16, which fixes the issue. Recent assessments: remmons-r7 at September 25, 2024 3:32pm UTC reported: Apache OFBiz is an open-source...

9.8CVSS8.6AI score0.99983EPSS
Exploits15References5
ATTACKERKB
ATTACKERKB
added 2020/09/30 12:0 a.m.167 views

CVE-2020-8243

A vulnerability in the Pulse Connect Secure 9.1R8.2 admin web interface could allow an authenticated attacker to upload custom template to perform an arbitrary code execution. Recent assessments: wvu-r7 at October 07, 2020 10:52pm UTC reported: Oh dear, another Pulse Secure vuln. Let’s break this...

10CVSS8.8AI score0.99999EPSS
Exploits34References2
ATTACKERKB
ATTACKERKB
added 2021/05/11 12:0 a.m.166 views

CVE-2021-31207

Microsoft Exchange Server Security Feature Bypass Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

6.6CVSS2.4AI score0.99782EPSS
Exploits11References4
ATTACKERKB
ATTACKERKB
added 2021/02/24 12:0 a.m.166 views

CVE-2021-21974

OpenSLP as used in ESXi 7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the heap-overflow issue i...

8.8CVSS3.3AI score0.45063EPSS
Exploits7References4
ATTACKERKB
ATTACKERKB
added 2020/12/11 12:0 a.m.166 views

CVE-2020-17530

Forced OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution. Affected software : Apache Struts 2.0.0 – Struts 2.5.25. Recent assessments: wvu-r7 at December 08, 2020 6:53pm UTC reported: See my assessment on CVE-2019-0230. Apache themselves said...

9.8CVSS10AI score0.97399EPSS
Exploits28References13
ATTACKERKB
ATTACKERKB
added 2018/01/05 12:0 a.m.166 views

CVE-2017-4946

The VMware V4H and V4PA desktop agents 6.x before 6.5.1 contain a privilege escalation vulnerability. Successful exploitation of this issue could result in a low privileged windows user escalating their privileges to SYSTEM. Recent assessments: ccondon-r7 at July 26, 2024 1:30pm UTC reported:...

7.8CVSS7.8AI score0.00498EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2020/04/30 12:0 a.m.165 views

CVE-2020-11651

An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class does not properly validate method calls. This allows a remote user to access some methods without authentication. These methods can be used to retrieve user tokens from the...

9.8CVSS9.1AI score0.96405EPSS
Exploits25References13
ATTACKERKB
ATTACKERKB
added 2021/03/16 12:0 a.m.164 views

CVE-2021-21193

Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Recent assessments: gwillcox-r7 at March 15, 2021 6:18am UTC reported: Reported as exploited in the wild at...

8.8CVSS9.8AI score0.26525EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2023/06/07 12:0 a.m.161 views

CVE-2023-20887

Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in remote code execution. Recent assessments: rbowes-r7 at June 27, 2023 4:30pm UTC...

9.8CVSS9.1AI score0.98281EPSS
Exploits7References4
ATTACKERKB
ATTACKERKB
added 2021/10/19 12:0 a.m.161 views

CVE-2021-30807

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.5.1, iOS 14.7.1 and iPadOS 14.7.1, watchOS 7.6.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been...

9.3CVSS8AI score0.28839EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2024/01/16 12:0 a.m.160 views

CVE-2022-1609

The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it’s license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site. Recent assessments: Assessed Attacker Value: 0 Assessed...

9.8CVSS9.8AI score0.64321EPSS
Exploits6References2
ATTACKERKB
ATTACKERKB
added 2022/04/15 12:0 a.m.160 views

CVE-2022-24521

Windows Common Log File System Driver Elevation of Privilege Vulnerability Recent assessments: cbeek-r7 at March 21, 2025 12:29pm UTC reported: RansomHub affiliate observed in abusing this vulnerability including 3 files that were weaponizing this vulnerability:...

7.8CVSS8.9AI score0.07304EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2010/06/03 12:0 a.m.160 views

CVE-2010-0742

The Cryptographic Message Syntax CMS implementation in crypto/cms/cmsasn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which allows context-dependent attackers to modify invalid memory locations or conduct double-free attacks, a...

7.5CVSS5.1AI score0.07834EPSS
Exploits2References22
ATTACKERKB
ATTACKERKB
added 2021/03/11 12:0 a.m.159 views

CVE-2021-27077

Windows Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26863, CVE-2021-26875, CVE-2021-26900. Recent assessments: gwillcox-r7 at March 11, 2021 6:25pm UTC reported: Interesting, so this was a bug within win32kfull.sys!BLTRECORD::bRotate originally disclosed by ZDI...

7.8CVSS0.5AI score0.12233EPSS
Exploits1References14
ATTACKERKB
ATTACKERKB
added 2021/02/09 12:0 a.m.158 views

CVE-2021-21148

Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Recent assessments: gwillcox-r7 at February 05, 2021 4:25pm UTC reported: Reported as exploited in the wild at...

8.8CVSS9.4AI score0.19815EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2020/06/03 12:0 a.m.158 views

CVE-2020-13379

The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information about the network th...

8.2CVSS0.4AI score0.99856EPSS
Exploits5References34
ATTACKERKB
ATTACKERKB
added 2017/03/11 12:0 a.m.158 views

CVE-2017-5638

The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or...

10CVSS1.8AI score0.99999EPSS
Exploits44References45
ATTACKERKB
ATTACKERKB
added 2024/07/01 12:0 a.m.157 views

CVE-2024-36401

GeoServer is an open source server that allows users to share and edit geospatial data. Prior to versions 2.22.6, 2.23.6, 2.24.4, and 2.25.2, multiple OGC request parameters allow Remote Code Execution RCE by unauthenticated users through specially crafted input against a default GeoServer...

9.8CVSS8.6AI score0.99813EPSS
Exploits26References6
ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.157 views

CVE-2022-21371

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Container. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

7.5CVSS6.9AI score0.92331EPSS
Exploits6References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/10/29 12:0 a.m.156 views

CVE-2024-51378

getresetstatus in dns/views.py and ftp/views.py in CyberPanel aka Cyber Panel before 1c0c6cb allows remote attackers to bypass authentication and execute arbitrary commands via /dns/getresetstatus or /ftp/getresetstatus by bypassing secMiddleware which is only for a POST request and using shell...

10CVSS8.3AI score0.94798EPSS
Exploits7References8
ATTACKERKB
ATTACKERKB
added 2021/08/26 12:0 a.m.156 views

CVE-2021-32648

octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5. Recent...

9.1CVSS9AI score0.90418EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2021/07/20 7:15 p.m.156 views

CVE-2021-33909

fs/seqfile.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05...

7.8CVSS7AI score0.09729EPSS
Exploits6References22
ATTACKERKB
ATTACKERKB
added 2021/02/04 12:0 a.m.156 views

CVE-2021-20016

A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. This vulnerability impacts SMA100 build version 10.x. Recent assessments: wvu-r7 at February 05, 20...

9.8CVSS9.7AI score0.40038EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/09/09 12:0 a.m.155 views

CVE-2021-38406

Delta Electronic DOPSoft 2 Version 2.00.07 and prior lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of the current process...

9.8CVSS9.5AI score0.99939EPSS
Exploits53References2
ATTACKERKB
ATTACKERKB
added 2022/07/12 11:15 p.m.154 views

CVE-2022-30216

Windows Server Service Tampering Vulnerability...

8.8CVSS7.5AI score0.88609EPSS
Exploits0References3Affected Software6
ATTACKERKB
ATTACKERKB
added 2021/03/25 12:0 a.m.154 views

OpenSSL TLS Server Crash (NULL pointer dereference) — CVE-2021-3449

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signaturealgorithms extension where it was present in the initial ClientHello, but includes a signaturealgorithmscert extension then a NU...

7.4CVSS7.1AI score0.62906EPSS
Exploits4References32
ATTACKERKB
ATTACKERKB
added 2020/08/17 12:0 a.m.154 views

CVE-2020-1337

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka ‘Windows Print Spooler Elevation of Privilege Vulnerability’. Recent assessments: VoidSec at August 11, 2020 8:19am UTC reported: CVE-2020-1337 is a...

7.8CVSS1.9AI score0.16502EPSS
Exploits17References4
Total number of security vulnerabilities5000