#ExploitObserverAlert
CVE-2023-32629
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2023-32629. Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-32629
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2023-32629. Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2017-0783
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-0783. A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63145701.
FIRST-EPSS: 0.000920000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2017-0783
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-0783. A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63145701.
FIRST-EPSS: 0.000920000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2018-2636
DESCRIPTION: Exploit Observer has 25 entries related to CVE-2018-2636. Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (subcomponent: Security). Supported versions that are affected are 2.7, 2.8 and 2.9. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality Simphony. Successful attacks of this vulnerability can result in takeover of Oracle Hospitality Simphony. CVSS 3.0 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).
FIRST-EPSS: 0.673840000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2018-2636
DESCRIPTION: Exploit Observer has 25 entries related to CVE-2018-2636. Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (subcomponent: Security). Supported versions that are affected are 2.7, 2.8 and 2.9. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality Simphony. Successful attacks of this vulnerability can result in takeover of Oracle Hospitality Simphony. CVSS 3.0 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).
FIRST-EPSS: 0.673840000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2020-8203
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2020-8203. Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.
FIRST-EPSS: 0.010360000
NVD-IS: 5.2
NVD-ES: 2.2
CVE-2020-8203
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2020-8203. Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.
FIRST-EPSS: 0.010360000
NVD-IS: 5.2
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2022-30965
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-30965. Jenkins Promoted Builds (Simple) Plugin 1.9 and earlier does not escape the name and description of Promotion Level parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
FIRST-EPSS: 0.000770000
NVD-IS: 2.7
NVD-ES: 2.3
CVE-2022-30965
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-30965. Jenkins Promoted Builds (Simple) Plugin 1.9 and earlier does not escape the name and description of Promotion Level parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
FIRST-EPSS: 0.000770000
NVD-IS: 2.7
NVD-ES: 2.3
#ExploitObserverAlert
CVE-2021-44228
DESCRIPTION: Exploit Observer has 1853 entries related to CVE-2021-44228. Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects.
FIRST-EPSS: 0.974540000
NVD-IS: 6.0
NVD-ES: 3.9
CVE-2021-44228
DESCRIPTION: Exploit Observer has 1853 entries related to CVE-2021-44228. Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects.
FIRST-EPSS: 0.974540000
NVD-IS: 6.0
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-5715
DESCRIPTION: Exploit Observer has 195 entries related to CVE-2017-5715. Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
FIRST-EPSS: 0.975150000
NVD-IS: 4.0
NVD-ES: 1.1
CVE-2017-5715
DESCRIPTION: Exploit Observer has 195 entries related to CVE-2017-5715. Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
FIRST-EPSS: 0.975150000
NVD-IS: 4.0
NVD-ES: 1.1
#ExploitObserverAlert
CVE-2011-4327
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2011-4327. ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
FIRST-EPSS: 0.000420000
NVD-IS: 2.9
NVD-ES: 3.9
CVE-2011-4327
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2011-4327. ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
FIRST-EPSS: 0.000420000
NVD-IS: 2.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2012-0394
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2012-0394. The DebuggingInterceptor component in Apache Struts before 2.3.1.1, when developer mode is used, allows remote attackers to execute arbitrary commands via unspecified vectors. NOTE: the vendor characterizes this behavior as not "a security vulnerability itself.
FIRST-EPSS: 0.945150000
NVD-IS: 6.4
NVD-ES: 8.6
CVE-2012-0394
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2012-0394. The DebuggingInterceptor component in Apache Struts before 2.3.1.1, when developer mode is used, allows remote attackers to execute arbitrary commands via unspecified vectors. NOTE: the vendor characterizes this behavior as not "a security vulnerability itself.
FIRST-EPSS: 0.945150000
NVD-IS: 6.4
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2017-0146
DESCRIPTION: Exploit Observer has 58 entries related to CVE-2017-0146. The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, and CVE-2017-0148.
FIRST-EPSS: 0.971460000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2017-0146
DESCRIPTION: Exploit Observer has 58 entries related to CVE-2017-0146. The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, and CVE-2017-0148.
FIRST-EPSS: 0.971460000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2023-31048
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-31048.
FIRST-EPSS: 0.000450000
CVE-2023-31048
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-31048.
FIRST-EPSS: 0.000450000
#ExploitObserverAlert
CVE-2020-13238
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2020-13238. Mitsubishi MELSEC iQ-R Series PLCs with firmware 33 allow attackers to halt the industrial process by sending an unauthenticated crafted packet over the network, because this denial of service attack consumes excessive CPU time. After halting, physical access to the PLC is required in order to restore production.
FIRST-EPSS: 0.002600000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2020-13238
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2020-13238. Mitsubishi MELSEC iQ-R Series PLCs with firmware 33 allow attackers to halt the industrial process by sending an unauthenticated crafted packet over the network, because this denial of service attack consumes excessive CPU time. After halting, physical access to the PLC is required in order to restore production.
FIRST-EPSS: 0.002600000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-14974
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-14974. The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes (even ones running as SYSTEM) that hold a handle, via IOCTL code 0x222124.
FIRST-EPSS: 0.000440000
NVD-IS: 5.2
NVD-ES: 1.8
CVE-2020-14974
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-14974. The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes (even ones running as SYSTEM) that hold a handle, via IOCTL code 0x222124.
FIRST-EPSS: 0.000440000
NVD-IS: 5.2
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2021-4428
DESCRIPTION: Exploit Observer has 25 entries related to CVE-2021-4428. A vulnerability has been found in what3words Autosuggest Plugin up to 4.0.0 on WordPress and classified as problematic. Affected by this vulnerability is the function enqueue_scripts of the file w3w-autosuggest/public/class-w3w-autosuggest-public.php of the component Setting Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 4.0.1 is able to address this issue. The patch is named dd59cbac5f86057d6a73b87007c08b8bfa0c32ac. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-234247.
FIRST-EPSS: 0.000610000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2021-4428
DESCRIPTION: Exploit Observer has 25 entries related to CVE-2021-4428. A vulnerability has been found in what3words Autosuggest Plugin up to 4.0.0 on WordPress and classified as problematic. Affected by this vulnerability is the function enqueue_scripts of the file w3w-autosuggest/public/class-w3w-autosuggest-public.php of the component Setting Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 4.0.1 is able to address this issue. The patch is named dd59cbac5f86057d6a73b87007c08b8bfa0c32ac. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-234247.
FIRST-EPSS: 0.000610000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-0782
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2017-0782. A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146237.
FIRST-EPSS: 0.006140000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2017-0782
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2017-0782. A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146237.
FIRST-EPSS: 0.006140000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2017-0143
DESCRIPTION: Exploit Observer has 161 entries related to CVE-2017-0143. The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148.
FIRST-EPSS: 0.973010000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2017-0143
DESCRIPTION: Exploit Observer has 161 entries related to CVE-2017-0143. The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148.
FIRST-EPSS: 0.973010000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2022-21907
DESCRIPTION: Exploit Observer has 66 entries related to CVE-2022-21907. HTTP Protocol Stack Remote Code Execution Vulnerability.
FIRST-EPSS: 0.891490000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-21907
DESCRIPTION: Exploit Observer has 66 entries related to CVE-2022-21907. HTTP Protocol Stack Remote Code Execution Vulnerability.
FIRST-EPSS: 0.891490000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-8046
DESCRIPTION: Exploit Observer has 47 entries related to CVE-2017-8046. Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), versions prior to 3.0.1 (Kay SR1) and Spring Boot versions prior to 1.5.9, 2.0 M6 can use specially crafted JSON data to run arbitrary Java code.
FIRST-EPSS: 0.492630000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2017-8046
DESCRIPTION: Exploit Observer has 47 entries related to CVE-2017-8046. Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), versions prior to 3.0.1 (Kay SR1) and Spring Boot versions prior to 1.5.9, 2.0 M6 can use specially crafted JSON data to run arbitrary Java code.
FIRST-EPSS: 0.492630000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-11510
DESCRIPTION: Exploit Observer has 91 entries related to CVE-2019-11510. In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
FIRST-EPSS: 0.972780000
NVD-IS: 6.0
NVD-ES: 3.9
CVE-2019-11510
DESCRIPTION: Exploit Observer has 91 entries related to CVE-2019-11510. In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
FIRST-EPSS: 0.972780000
NVD-IS: 6.0
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-44487
DESCRIPTION: Exploit Observer has 85 entries related to CVE-2023-44487. The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
FIRST-EPSS: 0.601570000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-44487
DESCRIPTION: Exploit Observer has 85 entries related to CVE-2023-44487. The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
FIRST-EPSS: 0.601570000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-7672
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2017-7672. If an application allows enter an URL in a form field and built-in URLValidator is used, it is possible to prepare a special URL which will be used to overload server process when performing validation of the URL. Solution is to upgrade to Apache Struts version 2.5.12.
FIRST-EPSS: 0.053570000
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2017-7672
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2017-7672. If an application allows enter an URL in a form field and built-in URLValidator is used, it is possible to prepare a special URL which will be used to overload server process when performing validation of the URL. Solution is to upgrade to Apache Struts version 2.5.12.
FIRST-EPSS: 0.053570000
NVD-IS: 3.6
NVD-ES: 2.2