#ExploitObserverAlert
CVE-2021-4133
DESCRIPTION: Exploit Observer has 5 entries in 4 file formats related to CVE-2021-4133. A flaw was found in Keycloak in versions from 12.0.0 and before 15.1.1 which allows an attacker with any existing user account to create new default user accounts via the administrative REST API even when new user registration is disabled.
FIRST-EPSS: 0.002360000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-4133
DESCRIPTION: Exploit Observer has 5 entries in 4 file formats related to CVE-2021-4133. A flaw was found in Keycloak in versions from 12.0.0 and before 15.1.1 which allows an attacker with any existing user account to create new default user accounts via the administrative REST API even when new user registration is disabled.
FIRST-EPSS: 0.002360000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-31419
DESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to CVE-2023-31419. A flaw was discovered in Elasticsearch, affecting the _search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.
FIRST-EPSS: 0.000810000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-31419
DESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to CVE-2023-31419. A flaw was discovered in Elasticsearch, affecting the _search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.
FIRST-EPSS: 0.000810000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-22137
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2021-22137. In Elasticsearch versions before 7.11.2 and 6.8.15 a document disclosure flaw was found when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain cross-cluster search queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.
FIRST-EPSS: 0.000900000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2021-22137
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2021-22137. In Elasticsearch versions before 7.11.2 and 6.8.15 a document disclosure flaw was found when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain cross-cluster search queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.
FIRST-EPSS: 0.000900000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-22976
DESCRIPTION: Exploit Observer has 8 entries in 5 file formats related to CVE-2022-22976. Spring Security versions 5.5.x prior to 5.5.7, 5.6.x prior to 5.6.4, and earlier unsupported versions contain an integer overflow vulnerability. When using the BCrypt class with the maximum work factor (31), the encoder does not perform any salt rounds, due to an integer overflow error. The default settings are not affected by this CVE.
FIRST-EPSS: 0.001530000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2022-22976
DESCRIPTION: Exploit Observer has 8 entries in 5 file formats related to CVE-2022-22976. Spring Security versions 5.5.x prior to 5.5.7, 5.6.x prior to 5.6.4, and earlier unsupported versions contain an integer overflow vulnerability. When using the BCrypt class with the maximum work factor (31), the encoder does not perform any salt rounds, due to an integer overflow error. The default settings are not affected by this CVE.
FIRST-EPSS: 0.001530000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-jpr7-q523-hx25
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-jpr7-q523-hx25. In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively large degrees in binary fields can lead to a denial of service.
GHSA-jpr7-q523-hx25
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-jpr7-q523-hx25. In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively large degrees in binary fields can lead to a denial of service.
#ExploitObserverAlert
GHSA-8j28-ccxg-gg78
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-8j28-ccxg-gg78. A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. This vulnerability affects unknown code of the file /admin/makehtml_freelist_action.php. The manipulation of the argument startid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-250726 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
GHSA-8j28-ccxg-gg78
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-8j28-ccxg-gg78. A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. This vulnerability affects unknown code of the file /admin/makehtml_freelist_action.php. The manipulation of the argument startid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-250726 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
#ExploitObserverAlert
PSS-176790
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to PSS-176790. CloudLinux CageFS 7.1.1-1 Token Disclosure. CloudLinux CageFS versions 7.1.1-1 and below pass the authentication token as a command line argument. In some configurations this allows local users to view the authentication token via the process list and gain code execution as another user.
PSS-176790
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to PSS-176790. CloudLinux CageFS 7.1.1-1 Token Disclosure. CloudLinux CageFS versions 7.1.1-1 and below pass the authentication token as a command line argument. In some configurations this allows local users to view the authentication token via the process list and gain code execution as another user.
#ExploitObserverAlert
GHSA-8cwm-wr6q-x76p
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-8cwm-wr6q-x76p. darkhttpd before 1.15 uses strcmp (which is not constant time) to verify authentication, which makes it easier for remote attackers to bypass authentication via a timing side channel.
GHSA-8cwm-wr6q-x76p
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-8cwm-wr6q-x76p. darkhttpd before 1.15 uses strcmp (which is not constant time) to verify authentication, which makes it easier for remote attackers to bypass authentication via a timing side channel.
#ExploitObserverAlert
GHSA-8f6j-9hh3-9c9x
DESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to GHSA-8f6j-9hh3-9c9x. In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.
GHSA-8f6j-9hh3-9c9x
DESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to GHSA-8f6j-9hh3-9c9x. In imap_scan_tree_recursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree.
#ExploitObserverAlert
CVE-2021-22135
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to CVE-2021-22135. Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.
FIRST-EPSS: 0.000900000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2021-22135
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to CVE-2021-22135. Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.
FIRST-EPSS: 0.000900000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
WLB-2024010078
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024010078. Vinchin Backup And Recovery 7.2 setNetworkCardInfo Command Injection.
WLB-2024010078
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024010078. Vinchin Backup And Recovery 7.2 setNetworkCardInfo Command Injection.
#ExploitObserverAlert
CVE-2020-14302
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2020-14302. A flaw was found in Keycloak before 13.0.0 where an external identity provider, after successful authentication, redirects to a Keycloak endpoint that accepts multiple invocations with the use of the same "state" parameter. This flaw allows a malicious user to perform replay attacks.
FIRST-EPSS: 0.000540000
NVD-IS: 3.6
NVD-ES: 1.2
CVE-2020-14302
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2020-14302. A flaw was found in Keycloak before 13.0.0 where an external identity provider, after successful authentication, redirects to a Keycloak endpoint that accepts multiple invocations with the use of the same "state" parameter. This flaw allows a malicious user to perform replay attacks.
FIRST-EPSS: 0.000540000
NVD-IS: 3.6
NVD-ES: 1.2
#ExploitObserverAlert
PSS-176795
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-176795. Vinchin Backup And Recovery 7.2 Default Root Credentials. Vinchin Backup and Recovery version 7.2 has been identified as being configured with default root credentials, posing a significant security vulnerability.
PSS-176795
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-176795. Vinchin Backup And Recovery 7.2 Default Root Credentials. Vinchin Backup and Recovery version 7.2 has been identified as being configured with default root credentials, posing a significant security vulnerability.
#ExploitObserverAlert
PSS-176782
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-176782. Ubuntu Security Notice USN-6605-1. Ubuntu Security Notice 6605-1 - Lin Ma discovered that the netfilter subsystem in the Linux kernel did not properly validate network family support while creating a new netfilter table. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly validate the server frame size in certain situation, leading to an out-of-bounds read vulnerability. An attacker could use this to construct a malicious CIFS image that, when operated on, could cause a denial of service or possibly expose sensitive information.
PSS-176782
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-176782. Ubuntu Security Notice USN-6605-1. Ubuntu Security Notice 6605-1 - Lin Ma discovered that the netfilter subsystem in the Linux kernel did not properly validate network family support while creating a new netfilter table. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly validate the server frame size in certain situation, leading to an out-of-bounds read vulnerability. An attacker could use this to construct a malicious CIFS image that, when operated on, could cause a denial of service or possibly expose sensitive information.
#ExploitObserverAlert
CVE-2023-46673
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to CVE-2023-46673. It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
FIRST-EPSS: 0.000460000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-46673
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to CVE-2023-46673. It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
FIRST-EPSS: 0.000460000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-32532
DESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-32532. Apache Shiro before 1.9.1, A RegexRequestMatcher can be misconfigured to be bypassed on some servlet containers. Applications using RegExPatternMatcher with `.` in the regular expression are possibly vulnerable to an authorization bypass.
FIRST-EPSS: 0.039680000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-32532
DESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-32532. Apache Shiro before 1.9.1, A RegexRequestMatcher can be misconfigured to be bypassed on some servlet containers. Applications using RegExPatternMatcher with `.` in the regular expression are possibly vulnerable to an authorization bypass.
FIRST-EPSS: 0.039680000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
PSS-176787
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-176787. Ubuntu Security Notice USN-6609-1. Ubuntu Security Notice 6609-1 - Lin Ma discovered that the netfilter subsystem in the Linux kernel did not properly validate network family support while creating a new netfilter table. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly validate the server frame size in certain situation, leading to an out-of-bounds read vulnerability. An attacker could use this to construct a malicious CIFS image that, when operated on, could cause a denial of service or possibly expose sensitive information.
PSS-176787
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-176787. Ubuntu Security Notice USN-6609-1. Ubuntu Security Notice 6609-1 - Lin Ma discovered that the netfilter subsystem in the Linux kernel did not properly validate network family support while creating a new netfilter table. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly validate the server frame size in certain situation, leading to an out-of-bounds read vulnerability. An attacker could use this to construct a malicious CIFS image that, when operated on, could cause a denial of service or possibly expose sensitive information.
#ExploitObserverAlert
GHSA-hrgc-cr5f-pw7v
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-hrgc-cr5f-pw7v. Microsoft Edge for Android Spoofing Vulnerability
GHSA-hrgc-cr5f-pw7v
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-hrgc-cr5f-pw7v. Microsoft Edge for Android Spoofing Vulnerability
#ExploitObserverAlert
CVE-2022-26850
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2022-26850. When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system temporary directory has global read permissions. NiFi immediately moved the temporary file to the final configuration directory, which significantly limited the window of opportunity for access. NiFi 1.16.0 includes updates to replace the Login Identity Providers configuration without writing a file to the operating system temporary directory.
FIRST-EPSS: 0.000460000
NVD-IS: 1.4
NVD-ES: 2.8
CVE-2022-26850
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2022-26850. When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system temporary directory has global read permissions. NiFi immediately moved the temporary file to the final configuration directory, which significantly limited the window of opportunity for access. NiFi 1.16.0 includes updates to replace the Login Identity Providers configuration without writing a file to the operating system temporary directory.
FIRST-EPSS: 0.000460000
NVD-IS: 1.4
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2021-43859
DESCRIPTION: Exploit Observer has 11 entries in 5 file formats related to CVE-2021-43859. XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulating the processed input stream. XStream 1.4.19 monitors and accumulates the time it takes to add elements to collections and throws an exception if a set threshold is exceeded. Users are advised to upgrade as soon as possible. Users unable to upgrade may set the NO_REFERENCE mode to prevent recursion. See GHSA-rmr5-cpv2-vgjf for further details on a workaround if an upgrade is not possible.
FIRST-EPSS: 0.012320000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2021-43859
DESCRIPTION: Exploit Observer has 11 entries in 5 file formats related to CVE-2021-43859. XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulating the processed input stream. XStream 1.4.19 monitors and accumulates the time it takes to add elements to collections and throws an exception if a set threshold is exceeded. Users are advised to upgrade as soon as possible. Users unable to upgrade may set the NO_REFERENCE mode to prevent recursion. See GHSA-rmr5-cpv2-vgjf for further details on a workaround if an upgrade is not possible.
FIRST-EPSS: 0.012320000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-40664
DESCRIPTION: Exploit Observer has 9 entries in 5 file formats related to CVE-2022-40664. Apache Shiro before 1.10.0, Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher.
FIRST-EPSS: 0.013150000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-40664
DESCRIPTION: Exploit Observer has 9 entries in 5 file formats related to CVE-2022-40664. Apache Shiro before 1.10.0, Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher.
FIRST-EPSS: 0.013150000
NVD-IS: 5.9
NVD-ES: 3.9