#ExploitObserverAlert
CVE-2023-6802
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-6802. An insertion of sensitive information into the log file in the audit log in GitHub Enterprise Server was identified that could allow an attacker to gain access to the management console. To exploit this, an attacker would need access to the log files for the GitHub Enterprise Server appliance, a backup archive created with GitHub Enterprise Server Backup Utilities, or a service which received streamed logs. This vulnerability affected all versions of GitHub Enterprise Server since 3.8 and was fixed in version 3.8.12, 3.9.7, 3.10.4, and 3.11.1.
CVE-2023-6802
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-6802. An insertion of sensitive information into the log file in the audit log in GitHub Enterprise Server was identified that could allow an attacker to gain access to the management console. To exploit this, an attacker would need access to the log files for the GitHub Enterprise Server appliance, a backup archive created with GitHub Enterprise Server Backup Utilities, or a service which received streamed logs. This vulnerability affected all versions of GitHub Enterprise Server since 3.8 and was fixed in version 3.8.12, 3.9.7, 3.10.4, and 3.11.1.
#ExploitObserverAlert
CVE-2023-2585
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-2585. Keycloak's device authorization grant does not correctly validate the device code and client ID. An attacker client could abuse the missing validation to spoof a client consent request and trick an authorization admin into granting consent to a malicious OAuth client or possible unauthorized access to an existing OAuth client.
CVE-2023-2585
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-2585. Keycloak's device authorization grant does not correctly validate the device code and client ID. An attacker client could abuse the missing validation to spoof a client consent request and trick an authorization admin into granting consent to a malicious OAuth client or possible unauthorized access to an existing OAuth client.
#ExploitObserverAlert
CVE-2019-25157
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2019-25157. A vulnerability was found in Ethex Contracts. It has been classified as critical. This affects an unknown part of the file EthexJackpot.sol of the component Monthly Jackpot Handler. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The patch is named 6b8664b698d3d953e16c284fadc6caeb9e58e3db. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-248271.
CVE-2019-25157
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2019-25157. A vulnerability was found in Ethex Contracts. It has been classified as critical. This affects an unknown part of the file EthexJackpot.sol of the component Monthly Jackpot Handler. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The patch is named 6b8664b698d3d953e16c284fadc6caeb9e58e3db. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-248271.
#ExploitObserverAlert
CVE-2022-22916
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2022-22916. O2OA v6.4.7 was discovered to contain a remote code execution (RCE) vulnerability via /x_program_center/jaxrs/invoke.
FIRST-EPSS: 0.004750000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-22916
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2022-22916. O2OA v6.4.7 was discovered to contain a remote code execution (RCE) vulnerability via /x_program_center/jaxrs/invoke.
FIRST-EPSS: 0.004750000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-22962
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-22962. An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack.
CVE-2021-22962
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-22962. An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack.
#ExploitObserverAlert
CVE-2023-45603
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-45603. Unrestricted Upload of File with Dangerous Type vulnerability in Jeff Starr User Submitted Posts – Enable Users to Submit Posts from the Front End.This issue affects User Submitted Posts – Enable Users to Submit Posts from the Front End: from n/a through 20230902.
CVE-2023-45603
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-45603. Unrestricted Upload of File with Dangerous Type vulnerability in Jeff Starr User Submitted Posts – Enable Users to Submit Posts from the Front End.This issue affects User Submitted Posts – Enable Users to Submit Posts from the Front End: from n/a through 20230902.
#ExploitObserverAlert
CVE-2023-29432
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-29432.
CVE-2023-29432
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-29432.
#ExploitObserverAlert
CVE-2022-45809
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-45809. Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating.This issue affects Thumbs Rating: from n/a through 5.0.0.
CVE-2022-45809
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-45809. Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating.This issue affects Thumbs Rating: from n/a through 5.0.0.
#ExploitObserverAlert
CVE-2019-13288
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2019-13288. In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646.
FIRST-EPSS: 0.000860000
NVD-IS: 3.6
NVD-ES: 1.8
CVE-2019-13288
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2019-13288. In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646.
FIRST-EPSS: 0.000860000
NVD-IS: 3.6
NVD-ES: 1.8
#ExploitObserverAlert
PD/http/cves/2023/CVE-2023-34020
DESCRIPTION: Exploit Observer has 2 entries related to PD/http/cves/2023/CVE-2023-34020.
PD/http/cves/2023/CVE-2023-34020
DESCRIPTION: Exploit Observer has 2 entries related to PD/http/cves/2023/CVE-2023-34020.
#ExploitObserverAlert
CVE-2023-26256
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-26256. An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu
CVE-2023-26256
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-26256. An unauthenticated path traversal vulnerability affects the "STAGIL Navigation for Jira - Menu
#ExploitObserverAlert
CVE-2023-28782
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-28782. Deserialization of Untrusted Data vulnerability in Rocketgenius Inc. Gravity Forms.This issue affects Gravity Forms: from n/a through 2.7.3.
CVE-2023-28782
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-28782. Deserialization of Untrusted Data vulnerability in Rocketgenius Inc. Gravity Forms.This issue affects Gravity Forms: from n/a through 2.7.3.
#ExploitObserverAlert
PD/http/cves/2023/CVE-2023-6038
DESCRIPTION: Exploit Observer has 1 entries related to PD/http/cves/2023/CVE-2023-6038. An attacker is able to read any file on the server hosting the H2O dashboard without any authentication.
PD/http/cves/2023/CVE-2023-6038
DESCRIPTION: Exploit Observer has 1 entries related to PD/http/cves/2023/CVE-2023-6038. An attacker is able to read any file on the server hosting the H2O dashboard without any authentication.
#ExploitObserverAlert
CVE-2021-27852
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27852. Deserialization of Untrusted Data vulnerability in CheckboxWeb.dll of Checkbox Survey allows an unauthenticated remote attacker to execute arbitrary code. This issue affects: Checkbox Survey versions prior to 7.
FIRST-EPSS: 0.011740000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-27852
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27852. Deserialization of Untrusted Data vulnerability in CheckboxWeb.dll of Checkbox Survey allows an unauthenticated remote attacker to execute arbitrary code. This issue affects: Checkbox Survey versions prior to 7.
FIRST-EPSS: 0.011740000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-20821
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-20821. A vulnerability in the health check RPM of Cisco IOS XR Software could allow an unauthenticated, remote attacker to access the Redis instance that is running within the NOSi container. This vulnerability exists because the health check RPM opens TCP port 6379 by default upon activation. An attacker could exploit this vulnerability by connecting to the Redis instance on the open port. A successful exploit could allow the attacker to write to the Redis in-memory database, write arbitrary files to the container filesystem, and retrieve information about the Redis database. Given the configuration of the sandboxed container that the Redis instance runs in, a remote attacker would be unable to execute remote code or abuse the integrity of the Cisco IOS XR Software host system.
FIRST-EPSS: 0.003670000
NVD-IS: 2.5
NVD-ES: 3.9
CVE-2022-20821
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-20821. A vulnerability in the health check RPM of Cisco IOS XR Software could allow an unauthenticated, remote attacker to access the Redis instance that is running within the NOSi container. This vulnerability exists because the health check RPM opens TCP port 6379 by default upon activation. An attacker could exploit this vulnerability by connecting to the Redis instance on the open port. A successful exploit could allow the attacker to write to the Redis in-memory database, write arbitrary files to the container filesystem, and retrieve information about the Redis database. Given the configuration of the sandboxed container that the Redis instance runs in, a remote attacker would be unable to execute remote code or abuse the integrity of the Cisco IOS XR Software host system.
FIRST-EPSS: 0.003670000
NVD-IS: 2.5
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-41892
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2023-41892. Craft CMS is a platform for creating digital experiences. This is a high-impact, low-complexity attack vector. Users running Craft installations before 4.4.15 are encouraged to update to at least that version to mitigate the issue. This issue has been fixed in Craft CMS 4.4.15.
FIRST-EPSS: 0.206280000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-41892
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2023-41892. Craft CMS is a platform for creating digital experiences. This is a high-impact, low-complexity attack vector. Users running Craft installations before 4.4.15 are encouraged to update to at least that version to mitigate the issue. This issue has been fixed in Craft CMS 4.4.15.
FIRST-EPSS: 0.206280000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-42917
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-42917. A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.
FIRST-EPSS: 0.001370000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2023-42917
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-42917. A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.
FIRST-EPSS: 0.001370000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-41265
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-41265. An HTTP Request Tunneling vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier, and August 2022 Patch 12 and earlier allows a remote attacker to elevate their privilege by tunneling HTTP requests in the raw HTTP request. This allows them to send requests that get executed by the backend server hosting the repository application. This is fixed in August 2023 IR, May 2023 Patch 4, February 2023 Patch 8, November 2022 Patch 11, and August 2022 Patch 13.
FIRST-EPSS: 0.810490000
NVD-IS: 6.0
NVD-ES: 3.1
CVE-2023-41265
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-41265. An HTTP Request Tunneling vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier, and August 2022 Patch 12 and earlier allows a remote attacker to elevate their privilege by tunneling HTTP requests in the raw HTTP request. This allows them to send requests that get executed by the backend server hosting the repository application. This is fixed in August 2023 IR, May 2023 Patch 4, February 2023 Patch 8, November 2022 Patch 11, and August 2022 Patch 13.
FIRST-EPSS: 0.810490000
NVD-IS: 6.0
NVD-ES: 3.1
#ExploitObserverAlert
CVE-2023-2728
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2728. Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
FIRST-EPSS: 0.000660000
NVD-IS: 5.2
NVD-ES: 1.2
CVE-2023-2728
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2728. Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
FIRST-EPSS: 0.000660000
NVD-IS: 5.2
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2022-3172
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2022-3172. A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties.
FIRST-EPSS: 0.000870000
NVD-IS: 4.7
NVD-ES: 2.8
CVE-2022-3172
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2022-3172. A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties.
FIRST-EPSS: 0.000870000
NVD-IS: 4.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-33106
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33106. Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
FIRST-EPSS: 0.000640000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-33106
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33106. Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
FIRST-EPSS: 0.000640000
NVD-IS: 5.9
NVD-ES: 1.8