#ExploitObserverAlert
CVE-2022-27666
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2022-27666. A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-27666
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2022-27666. A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2021-34473
DESCRIPTION: Exploit Observer has 79 entries related to CVE-2021-34473. Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31196, CVE-2021-31206.
FIRST-EPSS: 0.973440000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-34473
DESCRIPTION: Exploit Observer has 79 entries related to CVE-2021-34473. Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31196, CVE-2021-31206.
FIRST-EPSS: 0.973440000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-27065
DESCRIPTION: Exploit Observer has 86 entries related to CVE-2021-27065. Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412, CVE-2021-26854, CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27078.
FIRST-EPSS: 0.969370000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2021-27065
DESCRIPTION: Exploit Observer has 86 entries related to CVE-2021-27065. Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412, CVE-2021-26854, CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27078.
FIRST-EPSS: 0.969370000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2006-3392
DESCRIPTION: Exploit Observer has 39 entries related to CVE-2006-3392. Webmin before 1.290 and Usermin before 1.220 calls the simplify_path function before decoding HTML, which allows remote attackers to read arbitrary files, as demonstrated using ".. " sequences, which bypass the removal of "../" sequences before bytes such as " " are removed from the filename. NOTE: This is a different issue than CVE-2006-3274.
FIRST-EPSS: 0.943990000
NVD-IS: 2.9
NVD-ES: 10.0
CVE-2006-3392
DESCRIPTION: Exploit Observer has 39 entries related to CVE-2006-3392. Webmin before 1.290 and Usermin before 1.220 calls the simplify_path function before decoding HTML, which allows remote attackers to read arbitrary files, as demonstrated using ".. " sequences, which bypass the removal of "../" sequences before bytes such as " " are removed from the filename. NOTE: This is a different issue than CVE-2006-3274.
FIRST-EPSS: 0.943990000
NVD-IS: 2.9
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2021-36934
DESCRIPTION: Exploit Observer has 100 entries related to CVE-2021-36934. Windows Elevation of Privilege Vulnerability
FIRST-EPSS: 0.000870000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2021-36934
DESCRIPTION: Exploit Observer has 100 entries related to CVE-2021-36934. Windows Elevation of Privilege Vulnerability
FIRST-EPSS: 0.000870000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2019-12384
DESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-12384. FasterXML jackson-databind 2.x before 2.9.9.1 might allow attackers to have a variety of impacts by leveraging failure to block the logback-core class from polymorphic deserialization. Depending on the classpath content, remote code execution may be possible.
FIRST-EPSS: 0.368590000
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2019-12384
DESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-12384. FasterXML jackson-databind 2.x before 2.9.9.1 might allow attackers to have a variety of impacts by leveraging failure to block the logback-core class from polymorphic deserialization. Depending on the classpath content, remote code execution may be possible.
FIRST-EPSS: 0.368590000
NVD-IS: 3.6
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2023-36434
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-36434. Windows IIS Server Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001140000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-36434
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-36434. Windows IIS Server Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001140000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-12149
DESCRIPTION: Exploit Observer has 93 entries related to CVE-2017-12149. In Jboss Application Server as shipped with Red Hat Enterprise Application Platform 5.2, it was found that the doFilter method in the ReadOnlyAccessFilter of the HTTP Invoker does not restrict classes for which it performs deserialization and thus allowing an attacker to execute arbitrary code via crafted serialized data.
FIRST-EPSS: 0.971900000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2017-12149
DESCRIPTION: Exploit Observer has 93 entries related to CVE-2017-12149. In Jboss Application Server as shipped with Red Hat Enterprise Application Platform 5.2, it was found that the doFilter method in the ReadOnlyAccessFilter of the HTTP Invoker does not restrict classes for which it performs deserialization and thus allowing an attacker to execute arbitrary code via crafted serialized data.
FIRST-EPSS: 0.971900000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-11510
DESCRIPTION: Exploit Observer has 87 entries related to CVE-2019-11510. In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
FIRST-EPSS: 0.972780000
NVD-IS: 6.0
NVD-ES: 3.9
CVE-2019-11510
DESCRIPTION: Exploit Observer has 87 entries related to CVE-2019-11510. In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
FIRST-EPSS: 0.972780000
NVD-IS: 6.0
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-17144
DESCRIPTION: Exploit Observer has 35 entries related to CVE-2020-17144. Microsoft Exchange Remote Code Execution Vulnerability This CVE ID is unique from CVE-2020-17117, CVE-2020-17132, CVE-2020-17141, CVE-2020-17142.
FIRST-EPSS: 0.266280000
NVD-IS: 6.0
NVD-ES: 1.7
CVE-2020-17144
DESCRIPTION: Exploit Observer has 35 entries related to CVE-2020-17144. Microsoft Exchange Remote Code Execution Vulnerability This CVE ID is unique from CVE-2020-17117, CVE-2020-17132, CVE-2020-17141, CVE-2020-17142.
FIRST-EPSS: 0.266280000
NVD-IS: 6.0
NVD-ES: 1.7
#ExploitObserverAlert
CVE-2022-35653
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2022-35653. A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website to steal potentially sensitive information, change appearance of the web page, can perform phishing and drive-by-download attacks. This vulnerability does not impact authenticated users.
FIRST-EPSS: 0.006730000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2022-35653
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2022-35653. A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website to steal potentially sensitive information, change appearance of the web page, can perform phishing and drive-by-download attacks. This vulnerability does not impact authenticated users.
FIRST-EPSS: 0.006730000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2021-4355
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-4355. The Welcart e-Commerce plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the download_orderdetail_list(), change_orderlist(), and download_member_list() functions called via admin_init hooks in versions up to, and including, 2.2.7. This makes it possible for unauthenticated attackers to download lists of members, products and orders.
FIRST-EPSS: 0.000720000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2021-4355
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-4355. The Welcart e-Commerce plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the download_orderdetail_list(), change_orderlist(), and download_member_list() functions called via admin_init hooks in versions up to, and including, 2.2.7. This makes it possible for unauthenticated attackers to download lists of members, products and orders.
FIRST-EPSS: 0.000720000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-26855
DESCRIPTION: Exploit Observer has 190 entries related to CVE-2021-26855. Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412, CVE-2021-26854, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065, CVE-2021-27078.
FIRST-EPSS: 0.975300000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-26855
DESCRIPTION: Exploit Observer has 190 entries related to CVE-2021-26855. Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412, CVE-2021-26854, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065, CVE-2021-27078.
FIRST-EPSS: 0.975300000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-27943
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-27943. libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new.
FIRST-EPSS: 0.000610000
NVD-IS: 3.6
NVD-ES: 1.8
CVE-2022-27943
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-27943. libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new.
FIRST-EPSS: 0.000610000
NVD-IS: 3.6
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2020-9715
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-9715. Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution .
FIRST-EPSS: 0.387920000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2020-9715
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-9715. Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution .
FIRST-EPSS: 0.387920000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2019-12272
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2019-12272. In OpenWrt LuCI through 0.10, the endpoints admin/status/realtime/bandwidth_status and admin/status/realtime/wireless_status of the web application are affected by a command injection vulnerability.
FIRST-EPSS: 0.001290000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2019-12272
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2019-12272. In OpenWrt LuCI through 0.10, the endpoints admin/status/realtime/bandwidth_status and admin/status/realtime/wireless_status of the web application are affected by a command injection vulnerability.
FIRST-EPSS: 0.001290000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-15642
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2019-15642. rpc.cgi in Webmin through 1.920 allows authenticated Remote Code Execution via a crafted object name because unserialise_variable makes an eval call. NOTE: the Webmin_Servers_Index documentation states "RPC can be used to run any command or modify any file on a server, which is why access to it must not be granted to un-trusted Webmin users."
FIRST-EPSS: 0.269940000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2019-15642
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2019-15642. rpc.cgi in Webmin through 1.920 allows authenticated Remote Code Execution via a crafted object name because unserialise_variable makes an eval call. NOTE: the Webmin_Servers_Index documentation states "RPC can be used to run any command or modify any file on a server, which is why access to it must not be granted to un-trusted Webmin users."
FIRST-EPSS: 0.269940000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-0847
DESCRIPTION: Exploit Observer has 349 entries related to CVE-2022-0847. A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.
FIRST-EPSS: 0.075840000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-0847
DESCRIPTION: Exploit Observer has 349 entries related to CVE-2022-0847. A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.
FIRST-EPSS: 0.075840000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2018-9995
DESCRIPTION: Exploit Observer has 103 entries related to CVE-2018-9995. TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which run re-branded versions of the original TBK DVR4104 and DVR4216 series, allow remote attackers to bypass authentication via a "Cookie: uid=admin" header, as demonstrated by a device.rsp?opt=user
CVE-2018-9995
DESCRIPTION: Exploit Observer has 103 entries related to CVE-2018-9995. TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which run re-branded versions of the original TBK DVR4104 and DVR4216 series, allow remote attackers to bypass authentication via a "Cookie: uid=admin" header, as demonstrated by a device.rsp?opt=user
#ExploitObserverAlert
CVE-2023-2953
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2953. A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
FIRST-EPSS: 0.004070000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-2953
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2953. A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
FIRST-EPSS: 0.004070000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-13382
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2018-13382. An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated attacker to modify the password of an SSL VPN web portal user via specially crafted HTTP requests
FIRST-EPSS: 0.895730000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2018-13382
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2018-13382. An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated attacker to modify the password of an SSL VPN web portal user via specially crafted HTTP requests
FIRST-EPSS: 0.895730000
NVD-IS: 3.6
NVD-ES: 3.9