#ExploitObserverAlert
CVE-2016-9498
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-9498. ManageEngine Applications Manager 12 and 13 before build 13200, allows unserialization of unsafe Java objects. The vulnerability can be exploited by remote user without authentication and it allows to execute remote code compromising the application as well as the operating system. As Application Manager's RMI registry is running with privileges of system administrator, by exploiting this vulnerability an attacker gains highest privileges on the underlying operating system.
FIRST-EPSS: 0.023560000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-9498
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-9498. ManageEngine Applications Manager 12 and 13 before build 13200, allows unserialization of unsafe Java objects. The vulnerability can be exploited by remote user without authentication and it allows to execute remote code compromising the application as well as the operating system. As Application Manager's RMI registry is running with privileges of system administrator, by exploiting this vulnerability an attacker gains highest privileges on the underlying operating system.
FIRST-EPSS: 0.023560000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-15381
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2018-15381. A Java deserialization vulnerability in Cisco Unity Express (CUE) could allow an unauthenticated, remote attacker to execute arbitrary shell commands with the privileges of the root user. The vulnerability is due to insecure deserialization of user-supplied content by the affected software. An attacker could exploit this vulnerability by sending a malicious serialized Java object to the listening Java Remote Method Invocation (RMI) service. A successful exploit could allow the attacker to execute arbitrary commands on the device with root privileges.
FIRST-EPSS: 0.885110000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2018-15381
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2018-15381. A Java deserialization vulnerability in Cisco Unity Express (CUE) could allow an unauthenticated, remote attacker to execute arbitrary shell commands with the privileges of the root user. The vulnerability is due to insecure deserialization of user-supplied content by the affected software. An attacker could exploit this vulnerability by sending a malicious serialized Java object to the listening Java Remote Method Invocation (RMI) service. A successful exploit could allow the attacker to execute arbitrary commands on the device with root privileges.
FIRST-EPSS: 0.885110000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-40367
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-40367. A vulnerability has been identified in syngo fastView (All versions). The affected application lacks proper validation of user-supplied data when parsing DICOM files. This could result in an out-of-bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-15097)
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2021-40367
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-40367. A vulnerability has been identified in syngo fastView (All versions). The affected application lacks proper validation of user-supplied data when parsing DICOM files. This could result in an out-of-bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-15097)
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2016-5004
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2016-5004. The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service (resource consumption) by decompressing a large file containing zeroes.
FIRST-EPSS: 0.002180000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2016-5004
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2016-5004. The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service (resource consumption) by decompressing a large file containing zeroes.
FIRST-EPSS: 0.002180000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-2003
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2016-2003. HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x before 8.4.0-00 and XP7 CVAE 7.x and 8.x before 8.4.0-00 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.003240000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-2003
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2016-2003. HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x before 8.4.0-00 and XP7 CVAE 7.x and 8.x before 8.4.0-00 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.003240000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-5229
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2016-5229. Atlassian Bamboo before 5.11.4.1 and 5.12.x before 5.12.3.1 does not properly restrict permitted deserialized classes, which allows remote attackers to execute arbitrary code via vectors related to XStream Serialization.
FIRST-EPSS: 0.041710000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5229
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2016-5229. Atlassian Bamboo before 5.11.4.1 and 5.12.x before 5.12.3.1 does not properly restrict permitted deserialized classes, which allows remote attackers to execute arbitrary code via vectors related to XStream Serialization.
FIRST-EPSS: 0.041710000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-1567
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2018-1567. IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow remote attackers to execute arbitrary Java code through the SOAP connector with a serialized object from untrusted sources. IBM X-Force ID: 143024.
FIRST-EPSS: 0.004110000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2018-1567
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2018-1567. IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow remote attackers to execute arbitrary Java code through the SOAP connector with a serialized object from untrusted sources. IBM X-Force ID: 143024.
FIRST-EPSS: 0.004110000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2015-6934
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2015-6934. Serialized-object interfaces in VMware vRealize Orchestrator 6.x, vCenter Orchestrator 5.x, vRealize Operations 6.x, vCenter Operations 5.x, and vCenter Application Discovery Manager (vADM) 7.x allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.
FIRST-EPSS: 0.002910000
NVD-IS: 3.4
NVD-ES: 3.9
CVE-2015-6934
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2015-6934. Serialized-object interfaces in VMware vRealize Orchestrator 6.x, vCenter Orchestrator 5.x, vRealize Operations 6.x, vCenter Operations 5.x, and vCenter Application Discovery Manager (vADM) 7.x allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.
FIRST-EPSS: 0.002910000
NVD-IS: 3.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-11518
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-11518. Zoho ManageEngine ADSelfService Plus before 5815 allows unauthenticated remote code execution.
FIRST-EPSS: 0.004950000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-11518
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-11518. Zoho ManageEngine ADSelfService Plus before 5815 allows unauthenticated remote code execution.
FIRST-EPSS: 0.004950000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-3642
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-3642. The RMI service in SolarWinds Virtualization Manager 6.3.1 and earlier allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.006610000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-3642
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-3642. The RMI service in SolarWinds Virtualization Manager 6.3.1 and earlier allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.006610000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-4448
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-4448. IBM WebSphere Application Server Network Deployment 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 181228.
FIRST-EPSS: 0.019910000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-4448
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-4448. IBM WebSphere Application Server Network Deployment 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 181228.
FIRST-EPSS: 0.019910000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-3461
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-3461. Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitoring: Server.
FIRST-EPSS: 0.001460000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2016-3461
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-3461. Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitoring: Server.
FIRST-EPSS: 0.001460000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2023-51812
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-51812. Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList.
CVE-2023-51812
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-51812. Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList.
#ExploitObserverAlert
CVE-2020-10740
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-10740. A vulnerability was found in Wildfly in versions before 20.0.0.Final, where a remote deserialization attack is possible in the Enterprise Application Beans(EJB) due to lack of validation/filtering capabilities in wildfly.
FIRST-EPSS: 0.003330000
NVD-IS: 5.9
NVD-ES: 1.6
CVE-2020-10740
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-10740. A vulnerability was found in Wildfly in versions before 20.0.0.Final, where a remote deserialization attack is possible in the Enterprise Application Beans(EJB) due to lack of validation/filtering capabilities in wildfly.
FIRST-EPSS: 0.003330000
NVD-IS: 5.9
NVD-ES: 1.6
#ExploitObserverAlert
CVE-2020-27131
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2020-27131. Multiple vulnerabilities in the Java deserialization function that is used by Cisco Security Manager could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. These vulnerabilities are due to insecure deserialization of user-supplied content by the affected software. An attacker could exploit these vulnerabilities by sending a malicious serialized Java object to a specific listener on an affected system. A successful exploit could allow the attacker to execute arbitrary commands on the device with the privileges of NT AUTHORITY\SYSTEM on the Windows target host. Cisco has not released software updates that address these vulnerabilities.
FIRST-EPSS: 0.932440000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-27131
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2020-27131. Multiple vulnerabilities in the Java deserialization function that is used by Cisco Security Manager could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. These vulnerabilities are due to insecure deserialization of user-supplied content by the affected software. An attacker could exploit these vulnerabilities by sending a malicious serialized Java object to a specific listener on an affected system. A successful exploit could allow the attacker to execute arbitrary commands on the device with the privileges of NT AUTHORITY\SYSTEM on the Windows target host. Cisco has not released software updates that address these vulnerabilities.
FIRST-EPSS: 0.932440000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-14625
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-14625. Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP, T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
FIRST-EPSS: 0.693400000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-14625
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-14625. Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP, T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
FIRST-EPSS: 0.693400000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-52266
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-52266. ehttp 1.0.6 before 17405b9 has an epoll_socket.cpp read_func use-after-free. An attacker can make many connections over a short time to trigger this.
FIRST-EPSS: 0.000500000
CVE-2023-52266
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-52266. ehttp 1.0.6 before 17405b9 has an epoll_socket.cpp read_func use-after-free. An attacker can make many connections over a short time to trigger this.
FIRST-EPSS: 0.000500000
#ExploitObserverAlert
CVE-2017-3523
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2017-3523. Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.40 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. While the vulnerability is in MySQL Connectors, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of MySQL Connectors. CVSS 3.0 Base Score 8.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H).
FIRST-EPSS: 0.001470000
NVD-IS: 6.0
NVD-ES: 1.8
CVE-2017-3523
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2017-3523. Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.40 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. While the vulnerability is in MySQL Connectors, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of MySQL Connectors. CVSS 3.0 Base Score 8.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H).
FIRST-EPSS: 0.001470000
NVD-IS: 6.0
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2020-12760
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-12760. An issue was discovered in OpenNMS Horizon before 26.0.1, and Meridian before 2018.1.19 and 2019 before 2019.1.7. The ActiveMQ channel configuration allowed for arbitrary deserialization of Java objects (aka ActiveMQ Minion payload deserialization), leading to remote code execution for any authenticated channel user regardless of its assigned permissions.
FIRST-EPSS: 0.003460000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-12760
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-12760. An issue was discovered in OpenNMS Horizon before 26.0.1, and Meridian before 2018.1.19 and 2019 before 2019.1.7. The ActiveMQ channel configuration allowed for arbitrary deserialization of Java objects (aka ActiveMQ Minion payload deserialization), leading to remote code execution for any authenticated channel user regardless of its assigned permissions.
FIRST-EPSS: 0.003460000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2017-12633
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2017-12633. The camel-hessian component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.
FIRST-EPSS: 0.004330000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2017-12633
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2017-12633. The camel-hessian component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.
FIRST-EPSS: 0.004330000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2015-8360
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2015-8360. An unspecified resource in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0 allows remote attackers to execute arbitrary Java code via serialized data to the JMS port.
FIRST-EPSS: 0.006510000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2015-8360
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2015-8360. An unspecified resource in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0 allows remote attackers to execute arbitrary Java code via serialized data to the JMS port.
FIRST-EPSS: 0.006510000
NVD-IS: 5.9
NVD-ES: 3.9