#ExploitObserverAlert
CVE-2024-25718
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-25718. In the Samly package before 1.4.0 for Elixir, Samly.State.Store.get_assertion/3 can return an expired session, which interferes with access control because Samly.AuthHandler uses a cached session and does not replace it, even after expiry.
FIRST-EPSS: 0.000440000
CVE-2024-25718
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-25718. In the Samly package before 1.4.0 for Elixir, Samly.State.Store.get_assertion/3 can return an expired session, which interferes with access control because Samly.AuthHandler uses a cached session and does not replace it, even after expiry.
FIRST-EPSS: 0.000440000
#ExploitObserverAlert
TALOS-2016-0173
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to TALOS-2016-0173. LexMark Perceptive Document Filters Bzip2 Convert Out of Bounds Write Vulnerability. An exploitable out of bounds write exists in the Bzip2 parsing of the Perspective Document Filters conversion functionality. A crafted Bzip2 document can lead to a stack based buffer overflow causing an out of bounds write which under the right circumstance could potentially be leveraged by an attacker to gain arbitrary code execution.
TALOS-2016-0173
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to TALOS-2016-0173. LexMark Perceptive Document Filters Bzip2 Convert Out of Bounds Write Vulnerability. An exploitable out of bounds write exists in the Bzip2 parsing of the Perspective Document Filters conversion functionality. A crafted Bzip2 document can lead to a stack based buffer overflow causing an out of bounds write which under the right circumstance could potentially be leveraged by an attacker to gain arbitrary code execution.
#ExploitObserverAlert
CVE-2024-21875
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-21875. Allocation of Resources Without Limits or Throttling vulnerability in Badge leading to a denial of service attack.Team Hacker Hotel Badge 2024 on risc-v (billboard modules) allows Flooding.This issue affects Hacker Hotel Badge 2024: from 0.1.0 through 0.1.3.
FIRST-EPSS: 0.000430000
CVE-2024-21875
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-21875. Allocation of Resources Without Limits or Throttling vulnerability in Badge leading to a denial of service attack.Team Hacker Hotel Badge 2024 on risc-v (billboard modules) allows Flooding.This issue affects Hacker Hotel Badge 2024: from 0.1.0 through 0.1.3.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
CVE-2024-23724
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-23724. Ghost through 5.76.0 allows stored XSS, and resultant privilege escalation in which a contributor can take over any account, via an SVG profile picture that contains JavaScript code to interact with the API on localhost TCP port 3001. NOTE: The discoverer reports that "The vendor does not view this as a valid vector."
FIRST-EPSS: 0.000450000
CVE-2024-23724
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to CVE-2024-23724. Ghost through 5.76.0 allows stored XSS, and resultant privilege escalation in which a contributor can take over any account, via an SVG profile picture that contains JavaScript code to interact with the API on localhost TCP port 3001. NOTE: The discoverer reports that "The vendor does not view this as a valid vector."
FIRST-EPSS: 0.000450000
#ExploitObserverAlert
WLB-2024020046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024020046. iCT Sky SQL Injection.
WLB-2024020046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024020046. iCT Sky SQL Injection.
#ExploitObserverAlert
TALOS-2018-0614
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to TALOS-2018-0614. Apple IntelHD5000 Graphics Delete Resource Privilege Escalation Vulnerability. A memory corruption vulnerability exists in the IntelHD5000 kernel extension when dealing with graphics resources inside of OSX 10.13.4. A library inserted into the VLC media application can cause an out-of-bounds access inside of the KEXT leading to a use after free and invalid memory access in the context of the kernel. This can be used for privilege escalation.
TALOS-2018-0614
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to TALOS-2018-0614. Apple IntelHD5000 Graphics Delete Resource Privilege Escalation Vulnerability. A memory corruption vulnerability exists in the IntelHD5000 kernel extension when dealing with graphics resources inside of OSX 10.13.4. A library inserted into the VLC media application can cause an out-of-bounds access inside of the KEXT leading to a use after free and invalid memory access in the context of the kernel. This can be used for privilege escalation.
#ExploitObserverAlert
TALOS-2022-1508
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to TALOS-2022-1508. Google Chrome WebGPU DoBufferDestroy kDirect allocation use-after-free vulnerability. A use-after-free vulnerability exists in the WebGPU functionality of Google Chrome 102.0.4956.0 (Build) (64-bit) and 99.0.4844.82 (Build) (64-bit). A specially-crafted web page can lead to a use-after-free. An attacker can provide a crafted URL to trigger this vulnerability.
TALOS-2022-1508
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to TALOS-2022-1508. Google Chrome WebGPU DoBufferDestroy kDirect allocation use-after-free vulnerability. A use-after-free vulnerability exists in the WebGPU functionality of Google Chrome 102.0.4956.0 (Build) (64-bit) and 99.0.4844.82 (Build) (64-bit). A specially-crafted web page can lead to a use-after-free. An attacker can provide a crafted URL to trigger this vulnerability.
#ExploitObserverAlert
TALOS-2019-0968
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to TALOS-2019-0968. Microsoft Office Excel Ordinal43 code execution vulnerability. An exploitable use-after-free vulnerability exists in Excel in Microsoft Office Professional Plus 2016 x86, version 1909, build 12026.20334 and Microsoft Office 365 ProPlus x86, version 1902, build 11328.20480. A specially crafted XLS file can cause a use after free condition, resulting in a remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability.
TALOS-2019-0968
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to TALOS-2019-0968. Microsoft Office Excel Ordinal43 code execution vulnerability. An exploitable use-after-free vulnerability exists in Excel in Microsoft Office Professional Plus 2016 x86, version 1909, build 12026.20334 and Microsoft Office 365 ProPlus x86, version 1902, build 11328.20480. A specially crafted XLS file can cause a use after free condition, resulting in a remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability.
#ExploitObserverAlert
TALOS-2021-1300
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to TALOS-2021-1300. CODESYS Development System ComponentModel Profile.FromFile() Unsafe Deserialization vulnerability. An unsafe deserialization vulnerability exists in the ComponentModel Profile.FromFile() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability.
TALOS-2021-1300
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to TALOS-2021-1300. CODESYS Development System ComponentModel Profile.FromFile() Unsafe Deserialization vulnerability. An unsafe deserialization vulnerability exists in the ComponentModel Profile.FromFile() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability.
#ExploitObserverAlert
TALOS-2019-0867
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to TALOS-2019-0867. Schneider Electric Modicon M580 UMAS REST API getcominfo information disclosure vulnerability. An exploitable information disclosure vulnerability exists in the UMAS REST API getcominfo functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.80. A specially crafted HTTP request can cause the device to return arbitrary memory, resulting in the potential disclosure of system addresses. An attacker can send unauthenticated commands to trigger this vulnerability.
TALOS-2019-0867
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to TALOS-2019-0867. Schneider Electric Modicon M580 UMAS REST API getcominfo information disclosure vulnerability. An exploitable information disclosure vulnerability exists in the UMAS REST API getcominfo functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.80. A specially crafted HTTP request can cause the device to return arbitrary memory, resulting in the potential disclosure of system addresses. An attacker can send unauthenticated commands to trigger this vulnerability.
#ExploitObserverAlert
BDU:2024-01111
DESCRIPTION: Exploit Observer has 4 entries in 1 file formats related to BDU:2024-01111.
BDU:2024-01111
DESCRIPTION: Exploit Observer has 4 entries in 1 file formats related to BDU:2024-01111.
#CyberNewsAlert
The National Critical Information Infrastructure Protection Centre (NCIIPC) of India is seeking top quality Indian Cyber Security Researchers, Ethical Hackers, and Pentesters to participate in a 10 to 20-day exercise aimed at testing the security posture of Critical Information Infrastructure (CII) systems.
Participants, whether individual or team-based, will be rewarded up to Rs. 10 lakhs and given Commendation Certificates based on the severity/impact of vulnerabilities discovered. NCIIPC will cover expenses for travel, boarding, and lodging during the exercise, and top performers may be considered for further cyber security assignments.
Interested participants can enroll by emailing contact details to cii.assessment@nciipc.gov.in and will undergo a selection process based on previous experience and performance in the domain.
Official Announcements -
https://twitter.com/NCIIPC/status/1756256398176903335
https://nciipc.gov.in/NCIIPCPenTestingOfCIIs.html
The National Critical Information Infrastructure Protection Centre (NCIIPC) of India is seeking top quality Indian Cyber Security Researchers, Ethical Hackers, and Pentesters to participate in a 10 to 20-day exercise aimed at testing the security posture of Critical Information Infrastructure (CII) systems.
Participants, whether individual or team-based, will be rewarded up to Rs. 10 lakhs and given Commendation Certificates based on the severity/impact of vulnerabilities discovered. NCIIPC will cover expenses for travel, boarding, and lodging during the exercise, and top performers may be considered for further cyber security assignments.
Interested participants can enroll by emailing contact details to cii.assessment@nciipc.gov.in and will undergo a selection process based on previous experience and performance in the domain.
Official Announcements -
https://twitter.com/NCIIPC/status/1756256398176903335
https://nciipc.gov.in/NCIIPCPenTestingOfCIIs.html
X (formerly Twitter)
NCIIPC India (@NCIIPC) on X
#NCIIPC is looking for expert pen-testers, security researchers and ethical hackers to secure nation's CIIs. Join NCIIPC scheme for Crowdsourcing of Pen Testing of CIIs.
#ExploitObserverAlert
PSS-177189
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177189. Proxmark3 4.18218 Custom Firmware. This is a custom firmware written for the Proxmark3 device. It extends the currently available firmware. This release is nicknamed "DEFCON is Cancelled".
PSS-177189
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177189. Proxmark3 4.18218 Custom Firmware. This is a custom firmware written for the Proxmark3 device. It extends the currently available firmware. This release is nicknamed "DEFCON is Cancelled".
#ExploitObserverAlert
PSS-177178
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177178. Gentoo Linux Security Advisory 202402-20. Gentoo Linux Security Advisory 202402-20 - A vulnerability has been discovered in Thunar which may lead to arbitrary code execution Versions greater than or equal to 4.17.3 are affected.
PSS-177178
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177178. Gentoo Linux Security Advisory 202402-20. Gentoo Linux Security Advisory 202402-20 - A vulnerability has been discovered in Thunar which may lead to arbitrary code execution Versions greater than or equal to 4.17.3 are affected.
#ExploitObserverAlert
PSS-177172
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177172. Chrome chrome.pageCapture.saveAsMHTML() Extension API Blocked Origin Bypass. Chrome has an issue where the chrome.pageCapture.saveAsMHTML() extension API can be used on blocked origins due to a racy access check.
PSS-177172
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177172. Chrome chrome.pageCapture.saveAsMHTML() Extension API Blocked Origin Bypass. Chrome has an issue where the chrome.pageCapture.saveAsMHTML() extension API can be used on blocked origins due to a racy access check.
#ExploitObserverAlert
CVE-2024-26328
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26328. An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c does not set NumVFs to PCI_SRIOV_TOTAL_VF, and thus interaction with hw/nvme/ctrl.c is mishandled.
FIRST-EPSS: 0.000430000
CVE-2024-26328
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26328. An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c does not set NumVFs to PCI_SRIOV_TOTAL_VF, and thus interaction with hw/nvme/ctrl.c is mishandled.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
PSS-177181
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177181. Gentoo Linux Security Advisory 202402-23. Gentoo Linux Security Advisory 202402-23 - Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution. Versions greater than or equal to 121.0.6167.139 are affected.
PSS-177181
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177181. Gentoo Linux Security Advisory 202402-23. Gentoo Linux Security Advisory 202402-23 - Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution. Versions greater than or equal to 121.0.6167.139 are affected.
#ExploitObserverAlert
CVE-2020-36774
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2020-36774. plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service (application crash).
FIRST-EPSS: 0.000430000
CVE-2020-36774
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2020-36774. plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service (application crash).
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
PSS-177171
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177171. Gentoo Linux Security Advisory 202402-16. Gentoo Linux Security Advisory 202402-16 - Multiple vulnerabilities have been discovered in Apache Log4j, the worst of which can lead to remote code execution. Versions less than or equal to 1.2.17 are affected.
PSS-177171
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177171. Gentoo Linux Security Advisory 202402-16. Gentoo Linux Security Advisory 202402-16 - Multiple vulnerabilities have been discovered in Apache Log4j, the worst of which can lead to remote code execution. Versions less than or equal to 1.2.17 are affected.
#ExploitObserverAlert
PSS-177170
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177170. Gentoo Linux Security Advisory 202402-15. Gentoo Linux Security Advisory 202402-15 - A vulnerability has been discovered in e2fsprogs which can lead to arbitrary code execution. Versions greater than or equal to 1.46.6 are affected.
PSS-177170
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177170. Gentoo Linux Security Advisory 202402-15. Gentoo Linux Security Advisory 202402-15 - A vulnerability has been discovered in e2fsprogs which can lead to arbitrary code execution. Versions greater than or equal to 1.46.6 are affected.
#ExploitObserverAlert
CVE-2024-25710
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25710. Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.3 through 1.25.0. Users are recommended to upgrade to version 1.26.0 which fixes the issue.
CVE-2024-25710
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25710. Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.3 through 1.25.0. Users are recommended to upgrade to version 1.26.0 which fixes the issue.