#ExploitObserverAlert
CVE-2022-30334
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2022-30334. Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises "Note that Private Windows with Tor Connectivity in Brave are just regular private windows that use Tor as a proxy. Brave does NOT implement most of the privacy protections from Tor Browser."
FIRST-EPSS: 0.001130000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2022-30334
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2022-30334. Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises "Note that Private Windows with Tor Connectivity in Brave are just regular private windows that use Tor as a proxy. Brave does NOT implement most of the privacy protections from Tor Browser."
FIRST-EPSS: 0.001130000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-3775
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to CVE-2022-3775. When rendering certain unicode sequences, grub2's font code doesn't proper validate if the informed glyph's width and height is constrained within bitmap size. As consequence an attacker can craft an input which will lead to a out-of-bounds write into grub2's heap, leading to memory corruption and availability issues. Although complex, arbitrary code execution could not be discarded.
FIRST-EPSS: 0.000420000
NVD-IS: 5.2
NVD-ES: 1.8
CVE-2022-3775
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to CVE-2022-3775. When rendering certain unicode sequences, grub2's font code doesn't proper validate if the informed glyph's width and height is constrained within bitmap size. As consequence an attacker can craft an input which will lead to a out-of-bounds write into grub2's heap, leading to memory corruption and availability issues. Although complex, arbitrary code execution could not be discarded.
FIRST-EPSS: 0.000420000
NVD-IS: 5.2
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2023-6538
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-6538. SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in Storage, Server or combined Server+Storage administrative roles are able to access SMU configuration backup, that would normally be barred to those specific administrative roles.
FIRST-EPSS: 0.000490000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2023-6538
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-6538. SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in Storage, Server or combined Server+Storage administrative roles are able to access SMU configuration backup, that would normally be barred to those specific administrative roles.
FIRST-EPSS: 0.000490000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
GHSA-62jr-84gf-wmg4
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-62JR-84GF-WMG4. The default configuration of fastify/swagger-ui without baseDir set will lead to all files in the module's directory being exposed via http routes served by the module.
GHSS: 5.3
GHSA-62jr-84gf-wmg4
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-62JR-84GF-WMG4. The default configuration of fastify/swagger-ui without baseDir set will lead to all files in the module's directory being exposed via http routes served by the module.
GHSS: 5.3
#ExploitObserverAlert
CVE-2023-33461
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2023-33461. iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparser_getlongint which misses check NULL for function iniparser_getstring's return.
FIRST-EPSS: 0.000440000
NVD-IS: 3.6
NVD-ES: 1.8
CVE-2023-33461
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2023-33461. iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparser_getlongint which misses check NULL for function iniparser_getstring's return.
FIRST-EPSS: 0.000440000
NVD-IS: 3.6
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2024-22362
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2024-22362. Drupal contains a vulnerability with improper handling of structural elements. If this vulnerability is exploited, an attacker may be able to cause a denial-of-service (DoS) condition.
FIRST-EPSS: 0.000450000
CVE-2024-22362
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2024-22362. Drupal contains a vulnerability with improper handling of structural elements. If this vulnerability is exploited, an attacker may be able to cause a denial-of-service (DoS) condition.
FIRST-EPSS: 0.000450000
#ExploitObserverAlert
GHSA-8rfx-6mr3-5jh3
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to GHSA-8RFX-6MR3-5JH3. This advisory has been withdrawn because it is a duplicate of GHSA-5crp-9r3c-p9vr. This link is maintained to preserve external references.
GHSA-8rfx-6mr3-5jh3
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to GHSA-8RFX-6MR3-5JH3. This advisory has been withdrawn because it is a duplicate of GHSA-5crp-9r3c-p9vr. This link is maintained to preserve external references.
#ExploitObserverAlert
PD/http/cves/2020/CVE-2020-27838
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to PD/HTTP/CVES/2020/CVE-2020-27838. A flaw was found in keycloak in versions prior to 13.0.0. The client registration endpoint allows fetching information about PUBLIC clients (like client secret) without authentication which could be an issue if the same PUBLIC client changed to CONFIDENTIAL later. The highest threat from this vulnerability is to data confidentiality.
PD/http/cves/2020/CVE-2020-27838
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to PD/HTTP/CVES/2020/CVE-2020-27838. A flaw was found in keycloak in versions prior to 13.0.0. The client registration endpoint allows fetching information about PUBLIC clients (like client secret) without authentication which could be an issue if the same PUBLIC client changed to CONFIDENTIAL later. The highest threat from this vulnerability is to data confidentiality.
#ExploitObserverAlert
CVE-2023-46303
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-46303. link_to_local_path in ebooks/conversion/plugins/html_input.py in calibre before 6.19.0 can, by default, add resources outside of the document root.
FIRST-EPSS: 0.000480000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-46303
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-46303. link_to_local_path in ebooks/conversion/plugins/html_input.py in calibre before 6.19.0 can, by default, add resources outside of the document root.
FIRST-EPSS: 0.000480000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-33242
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to CVE-2023-33242. Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature.
FIRST-EPSS: 0.000970000
NVD-IS: 5.2
NVD-ES: 2.8
CVE-2023-33242
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to CVE-2023-33242. Crypto wallets implementing the Lindell17 TSS protocol might allow an attacker to extract the full ECDSA private key by exfiltrating a single bit in every signature attempt (256 in total) because of not adhering to the paper's security proof's assumption regarding handling aborts after a failed signature.
FIRST-EPSS: 0.000970000
NVD-IS: 5.2
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2024-21320
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-21320. Windows Themes Spoofing Vulnerability
FIRST-EPSS: 0.000910000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2024-21320
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-21320. Windows Themes Spoofing Vulnerability
FIRST-EPSS: 0.000910000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-48104
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-48104. Alinto SOGo 5.8.0 is vulnerable to HTML Injection.
FIRST-EPSS: 0.000430000
CVE-2023-48104
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-48104. Alinto SOGo 5.8.0 is vulnerable to HTML Injection.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
GHSA-ppxx-5m9h-6vxf
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-PPXX-5M9H-6VXF. An attacker can cause its peer to run out of memory sending a large number of PATH_CHALLENGE frames. The receiver is supposed to respond to each PATH_CHALLENGE frame with a PATH_RESPONSE frame. The attacker can prevent the receiver from sending out (the vast majority of) these PATH_RESPONSE frames by collapsing the peers congestion window (by selectively acknowledging received packets) and by manipulating the peer's RTT estimate.
GHSS: 6.4
GHSA-ppxx-5m9h-6vxf
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-PPXX-5M9H-6VXF. An attacker can cause its peer to run out of memory sending a large number of PATH_CHALLENGE frames. The receiver is supposed to respond to each PATH_CHALLENGE frame with a PATH_RESPONSE frame. The attacker can prevent the receiver from sending out (the vast majority of) these PATH_RESPONSE frames by collapsing the peers congestion window (by selectively acknowledging received packets) and by manipulating the peer's RTT estimate.
GHSS: 6.4
#ExploitObserverAlert
CVE-2023-6915
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-6915. A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cause a denial of service problem due to a missing check at a function return.
FIRST-EPSS: 0.000450000
CVE-2023-6915
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-6915. A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cause a denial of service problem due to a missing check at a function return.
FIRST-EPSS: 0.000450000
#ExploitObserverAlert
CVE-2023-5808
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-5808. SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in a Storage administrative role are able to access HNAS configuration backup and diagnostic data, that would normally be barred to that specific administrative role.
FIRST-EPSS: 0.000490000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2023-5808
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-5808. SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in a Storage administrative role are able to access HNAS configuration backup and diagnostic data, that would normally be barred to that specific administrative role.
FIRST-EPSS: 0.000490000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-51257
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-51257. An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code.
FIRST-EPSS: 0.000420000
CVE-2023-51257
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-51257. An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code.
FIRST-EPSS: 0.000420000
#ExploitObserverAlert
CVE-2023-51059
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-51059. An issue in MOKO TECHNOLOGY LTD MOKOSmart MKGW1 BLE Gateway v.1.1.1 and before allows a remote attacker to escalate privileges via the session management component of the administrative web interface.
FIRST-EPSS: 0.000470000
CVE-2023-51059
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-51059. An issue in MOKO TECHNOLOGY LTD MOKOSmart MKGW1 BLE Gateway v.1.1.1 and before allows a remote attacker to escalate privileges via the session management component of the administrative web interface.
FIRST-EPSS: 0.000470000
#ExploitObserverAlert
CVE-2023-21266
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-21266. In killBackgroundProcesses of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-21266
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-21266. In killBackgroundProcesses of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2024-21305
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-21305. Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
FIRST-EPSS: 0.000480000
NVD-IS: 3.6
NVD-ES: 0.8
CVE-2024-21305
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-21305. Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
FIRST-EPSS: 0.000480000
NVD-IS: 3.6
NVD-ES: 0.8
#ExploitObserverAlert
GHSA-vwv2-9wcj-64vx
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-VWV2-9WCJ-64VX. Firefly III (aka firefly-iii) before 6.1.1 allows webhooks HTML Injection.
GHSS: 6.5
GHSA-vwv2-9wcj-64vx
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-VWV2-9WCJ-64VX. Firefly III (aka firefly-iii) before 6.1.1 allows webhooks HTML Injection.
GHSS: 6.5
#ExploitObserverAlert
CVE-2023-41619
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-41619. Emlog Pro v2.1.14 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/article.php?action=write.
FIRST-EPSS: 0.000430000
CVE-2023-41619
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-41619. Emlog Pro v2.1.14 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/article.php?action=write.
FIRST-EPSS: 0.000430000