#ExploitObserverAlert
CVE-2022-35405
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2022-35405. Zoho ManageEngine Password Manager Pro before 12101 and PAM360 before 5510 are vulnerable to unauthenticated remote code execution. (This also affects ManageEngine Access Manager Plus before 4303 with authentication.)
FIRST-EPSS: 0.974500000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-35405
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2022-35405. Zoho ManageEngine Password Manager Pro before 12101 and PAM360 before 5510 are vulnerable to unauthenticated remote code execution. (This also affects ManageEngine Access Manager Plus before 4303 with authentication.)
FIRST-EPSS: 0.974500000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-0781
DESCRIPTION: Exploit Observer has 37 entries related to CVE-2017-0781. A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146105.
FIRST-EPSS: 0.019700000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2017-0781
DESCRIPTION: Exploit Observer has 37 entries related to CVE-2017-0781. A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146105.
FIRST-EPSS: 0.019700000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2019-11091
DESCRIPTION: Exploit Observer has 38 entries related to CVE-2019-11091. Microarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf
FIRST-EPSS: 0.000610000
NVD-IS: 4.0
NVD-ES: 1.1
CVE-2019-11091
DESCRIPTION: Exploit Observer has 38 entries related to CVE-2019-11091. Microarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf
FIRST-EPSS: 0.000610000
NVD-IS: 4.0
NVD-ES: 1.1
#ExploitObserverAlert
CVE-2022-26923
DESCRIPTION: Exploit Observer has 69 entries related to CVE-2022-26923. Active Directory Domain Services Elevation of Privilege Vulnerability.
FIRST-EPSS: 0.006670000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2022-26923
DESCRIPTION: Exploit Observer has 69 entries related to CVE-2022-26923. Active Directory Domain Services Elevation of Privilege Vulnerability.
FIRST-EPSS: 0.006670000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2014-0160
DESCRIPTION: Exploit Observer has 660 entries related to CVE-2014-0160. The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.
FIRST-EPSS: 0.975310000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2014-0160
DESCRIPTION: Exploit Observer has 660 entries related to CVE-2014-0160. The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.
FIRST-EPSS: 0.975310000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-41622
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2022-41622. In all versions, BIG-IP and BIG-IQ are vulnerable to cross-site request forgery (CSRF) attacks through iControl SOAP. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
FIRST-EPSS: 0.417800000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2022-41622
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2022-41622. In all versions, BIG-IP and BIG-IQ are vulnerable to cross-site request forgery (CSRF) attacks through iControl SOAP. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
FIRST-EPSS: 0.417800000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-30964
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-30964. Jenkins Multiselect parameter Plugin 1.3 and earlier does not escape the name and description of Multiselect parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
FIRST-EPSS: 0.000770000
NVD-IS: 2.7
NVD-ES: 2.3
CVE-2022-30964
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-30964. Jenkins Multiselect parameter Plugin 1.3 and earlier does not escape the name and description of Multiselect parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
FIRST-EPSS: 0.000770000
NVD-IS: 2.7
NVD-ES: 2.3
#ExploitObserverAlert
CVE-2013-2134
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2013-2134. Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted action name that is not properly handled during wildcard matching, a different vulnerability than CVE-2013-2135.
FIRST-EPSS: 0.968040000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2013-2134
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2013-2134. Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted action name that is not properly handled during wildcard matching, a different vulnerability than CVE-2013-2135.
FIRST-EPSS: 0.968040000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2020-25042
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2020-25042. An arbitrary file upload issue exists in Mara CMS 7.5. In order to exploit this, an attacker must have a valid authenticated (admin/manager) session and make a codebase/dir.php?type=filenew request to upload PHP code to codebase/handler.php.
FIRST-EPSS: 0.503940000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2020-25042
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2020-25042. An arbitrary file upload issue exists in Mara CMS 7.5. In order to exploit this, an attacker must have a valid authenticated (admin/manager) session and make a codebase/dir.php?type=filenew request to upload PHP code to codebase/handler.php.
FIRST-EPSS: 0.503940000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2019-14378
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2019-14378. ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
FIRST-EPSS: 0.015650000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2019-14378
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2019-14378. ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
FIRST-EPSS: 0.015650000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-36327
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-36327. Bundler 1.16.0 through 2.2.9 and 2.2.11 through 2.2.16 sometimes chooses a dependency source based on the highest gem version number, which means that a rogue gem found at a public source may be chosen, even if the intended choice was a private gem that is a dependency of another private gem that is explicitly depended on by the application. NOTE: it is not correct to use CVE-2021-24105 for every "Dependency Confusion" issue in every product.
FIRST-EPSS: 0.009930000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-36327
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-36327. Bundler 1.16.0 through 2.2.9 and 2.2.11 through 2.2.16 sometimes chooses a dependency source based on the highest gem version number, which means that a rogue gem found at a public source may be chosen, even if the intended choice was a private gem that is a dependency of another private gem that is explicitly depended on by the application. NOTE: it is not correct to use CVE-2021-24105 for every "Dependency Confusion" issue in every product.
FIRST-EPSS: 0.009930000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2014-6278
DESCRIPTION: Exploit Observer has 142 entries related to CVE-2014-6278. GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271, CVE-2014-7169, and CVE-2014-6277.
FIRST-EPSS: 0.973450000
NVD-IS: 10.0
NVD-ES: 10.0
CVE-2014-6278
DESCRIPTION: Exploit Observer has 142 entries related to CVE-2014-6278. GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271, CVE-2014-7169, and CVE-2014-6277.
FIRST-EPSS: 0.973450000
NVD-IS: 10.0
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2011-3923
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2011-3923. Apache Struts before 2.3.1.2 allows remote attackers to bypass security protections in the ParameterInterceptor class and execute arbitrary commands.
FIRST-EPSS: 0.956640000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2011-3923
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2011-3923. Apache Struts before 2.3.1.2 allows remote attackers to bypass security protections in the ParameterInterceptor class and execute arbitrary commands.
FIRST-EPSS: 0.956640000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-13078
DESCRIPTION: Exploit Observer has 44 entries related to CVE-2017-13078. Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients.
FIRST-EPSS: 0.001360000
NVD-IS: 3.6
NVD-ES: 1.6
CVE-2017-13078
DESCRIPTION: Exploit Observer has 44 entries related to CVE-2017-13078. Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients.
FIRST-EPSS: 0.001360000
NVD-IS: 3.6
NVD-ES: 1.6
#ExploitObserverAlert
CVE-2020-2100
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-2100. Jenkins 2.218 and earlier, LTS 2.204.1 and earlier was vulnerable to a UDP amplification reflection denial of service attack on port 33848.
FIRST-EPSS: 0.003970000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2020-2100
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-2100. Jenkins 2.218 and earlier, LTS 2.204.1 and earlier was vulnerable to a UDP amplification reflection denial of service attack on port 33848.
FIRST-EPSS: 0.003970000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-8913
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2020-8913. A local, arbitrary code execution vulnerability exists in the SplitCompat.install endpoint in Android's Play Core Library versions prior to 1.7.2. A malicious attacker could create an apk which targets a specific application, and if a victim were to install this apk, the attacker could perform a directory traversal, execute code as the targeted application and access the targeted application's data on the Android device. We recommend all users update Play Core to version 1.7.2 or later.
FIRST-EPSS: 0.001500000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-8913
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2020-8913. A local, arbitrary code execution vulnerability exists in the SplitCompat.install endpoint in Android's Play Core Library versions prior to 1.7.2. A malicious attacker could create an apk which targets a specific application, and if a victim were to install this apk, the attacker could perform a directory traversal, execute code as the targeted application and access the targeted application's data on the Android device. We recommend all users update Play Core to version 1.7.2 or later.
FIRST-EPSS: 0.001500000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-1555
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2016-1555. (1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 before 3.5.5.0 allow remote attackers to execute arbitrary commands.
FIRST-EPSS: 0.973210000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-1555
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2016-1555. (1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 before 3.5.5.0 allow remote attackers to execute arbitrary commands.
FIRST-EPSS: 0.973210000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-4206
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-4206. A use-after-free vulnerability in the Linux kernel's net/sched: cls_route component can be exploited to achieve local privilege escalation. When route4_change() is called on an existing filter, the whole tcf_result struct is always copied into the new instance of the filter. This causes a problem when updating a filter bound to a class, as tcf_unbind_filter() is always called on the old instance in the success path, decreasing filter_cnt of the still referenced class and allowing it to be deleted, leading to a use-after-free. We recommend upgrading past commit b80b829e9e2c1b3f7aae34855e04d8f6ecaf13c8.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-4206
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-4206. A use-after-free vulnerability in the Linux kernel's net/sched: cls_route component can be exploited to achieve local privilege escalation. When route4_change() is called on an existing filter, the whole tcf_result struct is always copied into the new instance of the filter. This causes a problem when updating a filter bound to a class, as tcf_unbind_filter() is always called on the old instance in the success path, decreasing filter_cnt of the still referenced class and allowing it to be deleted, leading to a use-after-free. We recommend upgrading past commit b80b829e9e2c1b3f7aae34855e04d8f6ecaf13c8.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2008-3259
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2008-3259. OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
FIRST-EPSS: 0.000420000
NVD-IS: 2.9
NVD-ES: 1.9
CVE-2008-3259
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2008-3259. OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.
FIRST-EPSS: 0.000420000
NVD-IS: 2.9
NVD-ES: 1.9
#ExploitObserverAlert
CVE-2012-2012
DESCRIPTION: Exploit Observer has 34 entries related to CVE-2012-2012. HP System Management Homepage (SMH) before 7.1.1 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.
FIRST-EPSS: 0.007140000
NVD-IS: 10.0
NVD-ES: 10.0
CVE-2012-2012
DESCRIPTION: Exploit Observer has 34 entries related to CVE-2012-2012. HP System Management Homepage (SMH) before 7.1.1 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.
FIRST-EPSS: 0.007140000
NVD-IS: 10.0
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2013-1966
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2013-1966. Apache Struts 2 before 2.3.14.2 allows remote attackers to execute arbitrary OGNL code via a crafted request that is not properly handled when using the includeParams attribute in the (1) URL or (2) A tag.
FIRST-EPSS: 0.018580000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2013-1966
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2013-1966. Apache Struts 2 before 2.3.14.2 allows remote attackers to execute arbitrary OGNL code via a crafted request that is not properly handled when using the includeParams attribute in the (1) URL or (2) A tag.
FIRST-EPSS: 0.018580000
NVD-IS: 10.0
NVD-ES: 8.6