#ExploitObserverAlert
CVE-2024-21907
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2024-21907. Newtonsoft.Json before version 13.0.1 is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the JsonConvert.DeserializeObject method may trigger a StackOverflow exception resulting in denial of service. Depending on the usage of the library, an unauthenticated and remote attacker may be able to cause the denial of service condition.
CVE-2024-21907
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2024-21907. Newtonsoft.Json before version 13.0.1 is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the JsonConvert.DeserializeObject method may trigger a StackOverflow exception resulting in denial of service. Depending on the usage of the library, an unauthenticated and remote attacker may be able to cause the denial of service condition.
#ExploitObserverAlert
CVE-2021-36765
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-36765. In CODESYS EtherNetIP before 4.1.0.0, specific EtherNet/IP requests may cause a null pointer dereference in the downloaded vulnerable EtherNet/IP stack that is executed by the CODESYS Control runtime system.
FIRST-EPSS: 0.001500000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2021-36765
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-36765. In CODESYS EtherNetIP before 4.1.0.0, specific EtherNet/IP requests may cause a null pointer dereference in the downloaded vulnerable EtherNet/IP stack that is executed by the CODESYS Control runtime system.
FIRST-EPSS: 0.001500000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-2851
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-2851. Vulnerability in the Oracle Solaris product of Oracle Systems (component: Common Desktop Environment). Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While the vulnerability is in Oracle Solaris, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle Solaris. CVSS 3.0 Base Score 7.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H).
FIRST-EPSS: 0.000910000
NVD-IS: 6.0
NVD-ES: 1.1
CVE-2020-2851
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-2851. Vulnerability in the Oracle Solaris product of Oracle Systems (component: Common Desktop Environment). Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While the vulnerability is in Oracle Solaris, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle Solaris. CVSS 3.0 Base Score 7.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H).
FIRST-EPSS: 0.000910000
NVD-IS: 6.0
NVD-ES: 1.1
#ExploitObserverAlert
CVE-2022-1310
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-1310. Use after free in regular expressions in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
FIRST-EPSS: 0.002390000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2022-1310
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-1310. Use after free in regular expressions in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
FIRST-EPSS: 0.002390000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2021-20594
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-20594. Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to acquire legitimate user names registered in the module via brute-force attack on user names.
FIRST-EPSS: 0.002510000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2021-20594
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-20594. Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to acquire legitimate user names registered in the module via brute-force attack on user names.
FIRST-EPSS: 0.002510000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-17086
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-17086. Raw Image Extension Remote Code Execution Vulnerability
FIRST-EPSS: 0.100700000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2020-17086
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-17086. Raw Image Extension Remote Code Execution Vulnerability
FIRST-EPSS: 0.100700000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2021-20597
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-20597. Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to login to the target unauthorizedly by sniffing network traffic and obtaining credentials when registering user information in the target or changing a password.
FIRST-EPSS: 0.003190000
NVD-IS: 5.2
NVD-ES: 3.9
CVE-2021-20597
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-20597. Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to login to the target unauthorizedly by sniffing network traffic and obtaining credentials when registering user information in the target or changing a password.
FIRST-EPSS: 0.003190000
NVD-IS: 5.2
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-1337
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-1337. Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly. These vulnerabilities are due to improper validation of user-supplied input in the web-based management interface. An attacker could exploit these vulnerabilities by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system or cause the device to reload, resulting in a denial of service (DoS) condition. To exploit these vulnerabilities, an attacker would need to have valid administrator credentials on the affected device.
FIRST-EPSS: 0.002210000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2021-1337
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-1337. Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly. These vulnerabilities are due to improper validation of user-supplied input in the web-based management interface. An attacker could exploit these vulnerabilities by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system or cause the device to reload, resulting in a denial of service (DoS) condition. To exploit these vulnerabilities, an attacker would need to have valid administrator credentials on the affected device.
FIRST-EPSS: 0.002210000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2022-39299
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2022-39299. Passport-SAML is a SAML 2.0 authentication provider for Passport, the Node.js authentication library. A remote attacker may be able to bypass SAML authentication on a website using passport-saml. A successful attack requires that the attacker is in possession of an arbitrary IDP signed XML element. Depending on the IDP used, fully unauthenticated attacks (e.g without access to a valid user) might also be feasible if generation of a signed message can be triggered. Users should upgrade to passport-saml version 3.2.2 or newer. The issue was also present in the beta releases of `node-saml` before version 4.0.0-beta.5. If you cannot upgrade, disabling SAML authentication may be done as a workaround.
FIRST-EPSS: 0.007470000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2022-39299
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2022-39299. Passport-SAML is a SAML 2.0 authentication provider for Passport, the Node.js authentication library. A remote attacker may be able to bypass SAML authentication on a website using passport-saml. A successful attack requires that the attacker is in possession of an arbitrary IDP signed XML element. Depending on the IDP used, fully unauthenticated attacks (e.g without access to a valid user) might also be feasible if generation of a signed message can be triggered. Users should upgrade to passport-saml version 3.2.2 or newer. The issue was also present in the beta releases of `node-saml` before version 4.0.0-beta.5. If you cannot upgrade, disabling SAML authentication may be done as a workaround.
FIRST-EPSS: 0.007470000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2022-31459
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2022-31459. Owl Labs Meeting Owl 5.2.0.15 allows attackers to retrieve the passcode hash via a certain c 10 value over Bluetooth.
FIRST-EPSS: 0.000650000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2022-31459
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2022-31459. Owl Labs Meeting Owl 5.2.0.15 allows attackers to retrieve the passcode hash via a certain c 10 value over Bluetooth.
FIRST-EPSS: 0.000650000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2019-9710
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2019-9710. An issue was discovered in webargs before 5.1.3, as used with marshmallow and other products. JSON parsing uses a short-lived cache to store the parsed JSON body. This cache is not thread-safe, meaning that incorrect JSON payloads could have been parsed for concurrent requests.
FIRST-EPSS: 0.002240000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2019-9710
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2019-9710. An issue was discovered in webargs before 5.1.3, as used with marshmallow and other products. JSON parsing uses a short-lived cache to store the parsed JSON body. This cache is not thread-safe, meaning that incorrect JSON payloads could have been parsed for concurrent requests.
FIRST-EPSS: 0.002240000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2024-0260
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2024-0260. A vulnerability, which was classified as problematic, was found in SourceCodester Engineers Online Portal 1.0. Affected is an unknown function of the file change_password_teacher.php of the component Password Change. The manipulation leads to session expiration. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249816.
CVE-2024-0260
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2024-0260. A vulnerability, which was classified as problematic, was found in SourceCodester Engineers Online Portal 1.0. Affected is an unknown function of the file change_password_teacher.php of the component Password Change. The manipulation leads to session expiration. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249816.
#ExploitObserverAlert
CVE-2021-3447
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2021-3447. A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the no_log feature. An attacker can take advantage of this information to steal those credentials, provided when they have access to the log files containing them. The highest threat from this vulnerability is to data confidentiality. This flaw affects Red Hat Ansible Automation Platform in versions before 1.2.2 and Ansible Tower in versions before 3.8.2.
FIRST-EPSS: 0.000470000
NVD-IS: 3.6
NVD-ES: 1.8
CVE-2021-3447
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2021-3447. A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the no_log feature. An attacker can take advantage of this information to steal those credentials, provided when they have access to the log files containing them. The highest threat from this vulnerability is to data confidentiality. This flaw affects Red Hat Ansible Automation Platform in versions before 1.2.2 and Ansible Tower in versions before 3.8.2.
FIRST-EPSS: 0.000470000
NVD-IS: 3.6
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2019-17351
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2019-17351. An issue was discovered in drivers/xen/balloon.c in the Linux kernel before 5.2.3, as used in Xen through 4.12.x, allowing guest OS users to cause a denial of service because of unrestricted resource consumption during the mapping of guest memory, aka CID-6ef36ab967c7.
FIRST-EPSS: 0.000450000
NVD-IS: 4.0
NVD-ES: 2.0
CVE-2019-17351
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2019-17351. An issue was discovered in drivers/xen/balloon.c in the Linux kernel before 5.2.3, as used in Xen through 4.12.x, allowing guest OS users to cause a denial of service because of unrestricted resource consumption during the mapping of guest memory, aka CID-6ef36ab967c7.
FIRST-EPSS: 0.000450000
NVD-IS: 4.0
NVD-ES: 2.0
#ExploitObserverAlert
CVE-2019-13768
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2019-13768. Use after free in FileAPI in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chrome security severity: High)
FIRST-EPSS: 0.000740000
NVD-IS: 4.0
NVD-ES: 2.8
CVE-2019-13768
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2019-13768. Use after free in FileAPI in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chrome security severity: High)
FIRST-EPSS: 0.000740000
NVD-IS: 4.0
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-5752
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-5752. When installing a package from a Mercurial VCS URL (ie "pip install hg+...") with pip prior to v23.3, the specified Mercurial revision could be used to inject arbitrary configuration options to the "hg clone" call (ie "--config"). Controlling the Mercurial configuration can modify how and which repository is installed. This vulnerability does not affect users who aren't installing from Mercurial.
FIRST-EPSS: 0.000430000
NVD-IS: 1.4
NVD-ES: 1.8
CVE-2023-5752
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-5752. When installing a package from a Mercurial VCS URL (ie "pip install hg+...") with pip prior to v23.3, the specified Mercurial revision could be used to inject arbitrary configuration options to the "hg clone" call (ie "--config"). Controlling the Mercurial configuration can modify how and which repository is installed. This vulnerability does not affect users who aren't installing from Mercurial.
FIRST-EPSS: 0.000430000
NVD-IS: 1.4
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2022-1180
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-1180. Reflected Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
FIRST-EPSS: 0.002900000
NVD-IS: 2.5
NVD-ES: 0.9
CVE-2022-1180
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-1180. Reflected Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
FIRST-EPSS: 0.002900000
NVD-IS: 2.5
NVD-ES: 0.9
#ExploitObserverAlert
CVE-2024-21633
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2024-21633. Apktool is a tool for reverse engineering Android APK files. In versions 2.9.1 and prior, Apktool infers resource files' output path according to their resource names which can be manipulated by attacker to place files at desired location on the system Apktool runs on. Affected environments are those in which an attacker may write/overwrite any file that user has write access, and either user name is known or cwd is under user folder. Commit d348c43b24a9de350ff6e5bd610545a10c1fc712 contains a patch for this issue.
CVE-2024-21633
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2024-21633. Apktool is a tool for reverse engineering Android APK files. In versions 2.9.1 and prior, Apktool infers resource files' output path according to their resource names which can be manipulated by attacker to place files at desired location on the system Apktool runs on. Affected environments are those in which an attacker may write/overwrite any file that user has write access, and either user name is known or cwd is under user folder. Commit d348c43b24a9de350ff6e5bd610545a10c1fc712 contains a patch for this issue.
#ExploitObserverAlert
CVE-2021-25770
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-25770. In JetBrains YouTrack before 2020.5.3123, server-side template injection (SSTI) was possible, which could lead to code execution.
FIRST-EPSS: 0.008350000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-25770
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-25770. In JetBrains YouTrack before 2020.5.3123, server-side template injection (SSTI) was possible, which could lead to code execution.
FIRST-EPSS: 0.008350000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-20598
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2021-20598. Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to lockout a legitimate user by continuously trying login with incorrect password.
FIRST-EPSS: 0.001600000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2021-20598
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2021-20598. Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to lockout a legitimate user by continuously trying login with incorrect password.
FIRST-EPSS: 0.001600000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-46927
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-46927. GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size gpac/src/isomedia/isom_write.c:3403:3 in gpac/MP4Box.
FIRST-EPSS: 0.000440000
NVD-IS: 3.6
NVD-ES: 1.8
CVE-2023-46927
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-46927. GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size gpac/src/isomedia/isom_write.c:3403:3 in gpac/MP4Box.
FIRST-EPSS: 0.000440000
NVD-IS: 3.6
NVD-ES: 1.8