#ExploitObserverAlert
CVE-2023-42917
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-42917. A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.
FIRST-EPSS: 0.001370000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2023-42917
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-42917. A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.
FIRST-EPSS: 0.001370000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-41265
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-41265. An HTTP Request Tunneling vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier, and August 2022 Patch 12 and earlier allows a remote attacker to elevate their privilege by tunneling HTTP requests in the raw HTTP request. This allows them to send requests that get executed by the backend server hosting the repository application. This is fixed in August 2023 IR, May 2023 Patch 4, February 2023 Patch 8, November 2022 Patch 11, and August 2022 Patch 13.
FIRST-EPSS: 0.810490000
NVD-IS: 6.0
NVD-ES: 3.1
CVE-2023-41265
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-41265. An HTTP Request Tunneling vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier, and August 2022 Patch 12 and earlier allows a remote attacker to elevate their privilege by tunneling HTTP requests in the raw HTTP request. This allows them to send requests that get executed by the backend server hosting the repository application. This is fixed in August 2023 IR, May 2023 Patch 4, February 2023 Patch 8, November 2022 Patch 11, and August 2022 Patch 13.
FIRST-EPSS: 0.810490000
NVD-IS: 6.0
NVD-ES: 3.1
#ExploitObserverAlert
CVE-2023-2728
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2728. Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
FIRST-EPSS: 0.000660000
NVD-IS: 5.2
NVD-ES: 1.2
CVE-2023-2728
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-2728. Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.
FIRST-EPSS: 0.000660000
NVD-IS: 5.2
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2022-3172
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2022-3172. A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties.
FIRST-EPSS: 0.000870000
NVD-IS: 4.7
NVD-ES: 2.8
CVE-2022-3172
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2022-3172. A security issue was discovered in kube-apiserver that allows an aggregated API server to redirect client traffic to any URL. This could lead to the client performing unexpected actions as well as forwarding the client's API server credentials to third parties.
FIRST-EPSS: 0.000870000
NVD-IS: 4.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-33106
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33106. Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
FIRST-EPSS: 0.000640000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-33106
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33106. Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
FIRST-EPSS: 0.000640000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2023-33107
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33107. Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
FIRST-EPSS: 0.000640000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-33107
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-33107. Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
FIRST-EPSS: 0.000640000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2015-4068
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2015-4068. Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of service via a crafted file path to the (1) reportFileServlet or (2) exportServlet servlet.
FIRST-EPSS: 0.974010000
NVD-IS: 9.2
NVD-ES: 10.0
CVE-2015-4068
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2015-4068. Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of service via a crafted file path to the (1) reportFileServlet or (2) exportServlet servlet.
FIRST-EPSS: 0.974010000
NVD-IS: 9.2
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2000-1094
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2000-1094. Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute arbitrary commands via a "buddyicon" command with a long "src" argument.
FIRST-EPSS: 0.027150000
NVD-IS: 6.4
NVD-ES: 10.0
CVE-2000-1094
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2000-1094. Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute arbitrary commands via a "buddyicon" command with a long "src" argument.
FIRST-EPSS: 0.027150000
NVD-IS: 6.4
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2023-39785
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-39785. Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the set_qosMib_list function.
FIRST-EPSS: 0.000460000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-39785
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-39785. Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the set_qosMib_list function.
FIRST-EPSS: 0.000460000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-10232
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2019-10232. Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlock_tasks.php.
FIRST-EPSS: 0.142290000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2019-10232
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2019-10232. Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlock_tasks.php.
FIRST-EPSS: 0.142290000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-41266
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-41266. A path traversal vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier, and August 2022 Patch 12 and earlier allows an unauthenticated remote attacker to generate an anonymous session. This allows them to transmit HTTP requests to unauthorized endpoints. This is fixed in August 2023 IR, May 2023 Patch 4, February 2023 Patch 8, November 2022 Patch 11, and August 2022 Patch 13.
FIRST-EPSS: 0.526000000
NVD-IS: 2.5
NVD-ES: 3.9
CVE-2023-41266
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2023-41266. A path traversal vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier, and August 2022 Patch 12 and earlier allows an unauthenticated remote attacker to generate an anonymous session. This allows them to transmit HTTP requests to unauthorized endpoints. This is fixed in August 2023 IR, May 2023 Patch 4, February 2023 Patch 8, November 2022 Patch 11, and August 2022 Patch 13.
FIRST-EPSS: 0.526000000
NVD-IS: 2.5
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-42916
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-42916. An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.
FIRST-EPSS: 0.001300000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2023-42916
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-42916. An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.
FIRST-EPSS: 0.001300000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-1713
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-1713. Insecure temporary file creation in bitrix/modules/crm/lib/order/import/instagram.php in Bitrix24 22.0.300 hosted on Apache HTTP Server allows remote authenticated attackers to execute arbitrary code via uploading a crafted ".htaccess" file.
FIRST-EPSS: 0.000990000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2023-1713
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-1713. Insecure temporary file creation in bitrix/modules/crm/lib/order/import/instagram.php in Bitrix24 22.0.300 hosted on Apache HTTP Server allows remote authenticated attackers to execute arbitrary code via uploading a crafted ".htaccess" file.
FIRST-EPSS: 0.000990000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-29557
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-29557. An issue was discovered on D-Link DIR-825 R1 devices through 3.0.1 before 2020-11-20. A buffer overflow in the web interface allows attackers to achieve pre-authentication remote code execution.
FIRST-EPSS: 0.037730000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-29557
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-29557. An issue was discovered on D-Link DIR-825 R1 devices through 3.0.1 before 2020-11-20. A buffer overflow in the web interface allows attackers to achieve pre-authentication remote code execution.
FIRST-EPSS: 0.037730000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-27101
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2021-27101. Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html. The fixed version is FTA_9_12_380 and later.
FIRST-EPSS: 0.007610000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-27101
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2021-27101. Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html. The fixed version is FTA_9_12_380 and later.
FIRST-EPSS: 0.007610000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-6448
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-6448. Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default administrative password. An unauthenticated attacker with network access can take administrative control of a vulnerable system.
FIRST-EPSS: 0.044640000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-6448
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-6448. Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default administrative password. An unauthenticated attacker with network access can take administrative control of a vulnerable system.
FIRST-EPSS: 0.044640000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2015-0666
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2015-0666. Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) before 7.1(1) allows remote attackers to read arbitrary files via a crafted pathname, aka Bug ID CSCus00241.
FIRST-EPSS: 0.973990000
NVD-IS: 6.9
NVD-ES: 10.0
CVE-2015-0666
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2015-0666. Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) before 7.1(1) allows remote attackers to read arbitrary files via a crafted pathname, aka Bug ID CSCus00241.
FIRST-EPSS: 0.973990000
NVD-IS: 6.9
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2001-1228
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2001-1228. Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.
FIRST-EPSS: 0.014510000
NVD-IS: 6.4
NVD-ES: 10.0
CVE-2001-1228
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2001-1228. Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.
FIRST-EPSS: 0.014510000
NVD-IS: 6.4
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2020-13700
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-13700. An issue was discovered in the acf-to-rest-api plugin through 3.1.0 for WordPress. It allows an insecure direct object reference via permalinks manipulation, as demonstrated by a wp-json/acf/v3/options/ request that reads sensitive information in the wp_options table, such as the login and pass values.
FIRST-EPSS: 0.018310000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2020-13700
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-13700. An issue was discovered in the acf-to-rest-api plugin through 3.1.0 for WordPress. It allows an insecure direct object reference via permalinks manipulation, as demonstrated by a wp-json/acf/v3/options/ request that reads sensitive information in the wp_options table, such as the login and pass values.
FIRST-EPSS: 0.018310000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2002-1131
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2002-1131. Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
FIRST-EPSS: 0.060180000
NVD-IS: 6.4
NVD-ES: 10.0
CVE-2002-1131
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2002-1131. Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
FIRST-EPSS: 0.060180000
NVD-IS: 6.4
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2023-1255
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2023-1255. Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash in rare circumstances. The AES-XTS algorithm is usually used for disk encryption. The AES-XTS cipher decryption implementation for 64 bit ARM platform will read past the end of the ciphertext buffer if the ciphertext size is 4 mod 5 in 16 byte blocks, e.g. 144 bytes or 1024 bytes. If the memory after the ciphertext buffer is unmapped, this will trigger a crash which results in a denial of service. If an attacker can control the size and location of the ciphertext buffer being decrypted by an application using AES-XTS on 64 bit ARM, the application is affected. This is fairly unlikely making this issue a Low severity one.
FIRST-EPSS: 0.000660000
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2023-1255
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2023-1255. Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to a crash. Impact summary: Applications that use the AES-XTS algorithm on the 64 bit ARM platform can crash in rare circumstances. The AES-XTS algorithm is usually used for disk encryption. The AES-XTS cipher decryption implementation for 64 bit ARM platform will read past the end of the ciphertext buffer if the ciphertext size is 4 mod 5 in 16 byte blocks, e.g. 144 bytes or 1024 bytes. If the memory after the ciphertext buffer is unmapped, this will trigger a crash which results in a denial of service. If an attacker can control the size and location of the ciphertext buffer being decrypted by an application using AES-XTS on 64 bit ARM, the application is affected. This is fairly unlikely making this issue a Low severity one.
FIRST-EPSS: 0.000660000
NVD-IS: 3.6
NVD-ES: 2.2