#ExploitObserverAlert
CVE-2019-1652
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2019-1652. A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending malicious HTTP POST requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux shell as root. Cisco has released firmware updates that address this vulnerability.
FIRST-EPSS: 0.974590000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2019-1652
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2019-1652. A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending malicious HTTP POST requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux shell as root. Cisco has released firmware updates that address this vulnerability.
FIRST-EPSS: 0.974590000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2021-1497
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2021-1497. Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.975140000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-1497
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2021-1497. Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.975140000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2015-3043
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2015-3043. Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in April 2015, a different vulnerability than CVE-2015-0347, CVE-2015-0350, CVE-2015-0352, CVE-2015-0353, CVE-2015-0354, CVE-2015-0355, CVE-2015-0360, CVE-2015-3038, CVE-2015-3041, and CVE-2015-3042.
FIRST-EPSS: 0.044690000
NVD-IS: 10.0
NVD-ES: 10.0
CVE-2015-3043
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2015-3043. Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in April 2015, a different vulnerability than CVE-2015-0347, CVE-2015-0350, CVE-2015-0352, CVE-2015-0353, CVE-2015-0354, CVE-2015-0355, CVE-2015-0360, CVE-2015-3038, CVE-2015-3041, and CVE-2015-3042.
FIRST-EPSS: 0.044690000
NVD-IS: 10.0
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2021-30551
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2021-30551. Type confusion in V8 in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
FIRST-EPSS: 0.202830000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-30551
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2021-30551. Type confusion in V8 in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
FIRST-EPSS: 0.202830000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-1642
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2015-1642. Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."
FIRST-EPSS: 0.964250000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2015-1642
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2015-1642. Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."
FIRST-EPSS: 0.964250000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2021-39144
DESCRIPTION: Exploit Observer has 29 entries related to CVE-2021-39144. XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed the recommendation to setup XStream's security framework with a whitelist limited to the minimal required types. XStream 1.4.18 uses no longer a blacklist by default, since it cannot be secured for general purpose.
FIRST-EPSS: 0.962720000
NVD-IS: 6.0
NVD-ES: 1.8
CVE-2021-39144
DESCRIPTION: Exploit Observer has 29 entries related to CVE-2021-39144. XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed the recommendation to setup XStream's security framework with a whitelist limited to the minimal required types. XStream 1.4.18 uses no longer a blacklist by default, since it cannot be secured for general purpose.
FIRST-EPSS: 0.962720000
NVD-IS: 6.0
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2022-4135
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2022-4135. Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
FIRST-EPSS: 0.011730000
NVD-IS: 6.0
NVD-ES: 2.8
CVE-2022-4135
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2022-4135. Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
FIRST-EPSS: 0.011730000
NVD-IS: 6.0
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-4523
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2016-4523. The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via unspecified vectors.
FIRST-EPSS: 0.212530000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2016-4523
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2016-4523. The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via unspecified vectors.
FIRST-EPSS: 0.212530000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-12615
DESCRIPTION: Exploit Observer has 99 entries related to CVE-2017-12615. When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.
FIRST-EPSS: 0.969230000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2017-12615
DESCRIPTION: Exploit Observer has 99 entries related to CVE-2017-12615. When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.
FIRST-EPSS: 0.969230000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2021-22506
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-22506. Advance configuration exposing Information Leakage vulnerability in Micro Focus Access Manager product, affects all versions prior to version 5.0. The vulnerability could cause information leakage.
FIRST-EPSS: 0.003760000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2021-22506
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-22506. Advance configuration exposing Information Leakage vulnerability in Micro Focus Access Manager product, affects all versions prior to version 5.0. The vulnerability could cause information leakage.
FIRST-EPSS: 0.003760000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-20887
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2023-20887. Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in remote code execution.
FIRST-EPSS: 0.952390000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-20887
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2023-20887. Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in remote code execution.
FIRST-EPSS: 0.952390000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-0708
DESCRIPTION: Exploit Observer has 459 entries related to CVE-2019-0708. A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
FIRST-EPSS: 0.974960000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2019-0708
DESCRIPTION: Exploit Observer has 459 entries related to CVE-2019-0708. A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
FIRST-EPSS: 0.974960000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-20273
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2023-20273. A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI. A successful exploit could allow the attacker to inject commands to the underlying operating system with root privileges.
FIRST-EPSS: 0.060170000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2023-20273
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2023-20273. A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI. A successful exploit could allow the attacker to inject commands to the underlying operating system with root privileges.
FIRST-EPSS: 0.060170000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2017-12232
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2017-12232. A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a misclassification of Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvc03809.
FIRST-EPSS: 0.001600000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2017-12232
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2017-12232. A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a misclassification of Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvc03809.
FIRST-EPSS: 0.001600000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-3837
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2020-3837. A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.
FIRST-EPSS: 0.001350000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2020-3837
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2020-3837. A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.
FIRST-EPSS: 0.001350000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2022-32917
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2022-32917. The issue was addressed with improved bounds checks. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.000590000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-32917
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2022-32917. The issue was addressed with improved bounds checks. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.000590000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2014-0322
DESCRIPTION: Exploit Observer has 28 entries related to CVE-2014-0322. Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via vectors involving crafted JavaScript code, CMarkup, and the onpropertychange attribute of a script element, as exploited in the wild in January and February 2014.
FIRST-EPSS: 0.974590000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2014-0322
DESCRIPTION: Exploit Observer has 28 entries related to CVE-2014-0322. Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via vectors involving crafted JavaScript code, CMarkup, and the onpropertychange attribute of a script element, as exploited in the wild in January and February 2014.
FIRST-EPSS: 0.974590000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2021-27104
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2021-27104. Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is FTA_9_12_380 and later.
FIRST-EPSS: 0.007790000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-27104
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2021-27104. Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is FTA_9_12_380 and later.
FIRST-EPSS: 0.007790000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2015-2360
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2015-2360. win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."
FIRST-EPSS: 0.000840000
NVD-IS: 10.0
NVD-ES: 3.9
CVE-2015-2360
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2015-2360. win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."
FIRST-EPSS: 0.000840000
NVD-IS: 10.0
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-31207
DESCRIPTION: Exploit Observer has 36 entries related to CVE-2021-31207. Microsoft Exchange Server Security Feature Bypass Vulnerability
FIRST-EPSS: 0.952100000
NVD-IS: 5.9
NVD-ES: 0.7
CVE-2021-31207
DESCRIPTION: Exploit Observer has 36 entries related to CVE-2021-31207. Microsoft Exchange Server Security Feature Bypass Vulnerability
FIRST-EPSS: 0.952100000
NVD-IS: 5.9
NVD-ES: 0.7
#ExploitObserverAlert
CVE-2017-6334
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2017-6334. dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the host_name field of an HTTP POST request, a different vulnerability than CVE-2017-6077.
FIRST-EPSS: 0.962270000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2017-6334
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2017-6334. dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the host_name field of an HTTP POST request, a different vulnerability than CVE-2017-6077.
FIRST-EPSS: 0.962270000
NVD-IS: 5.9
NVD-ES: 2.8