#ExploitObserverAlert
PSS-177197
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177197. Red Hat Security Advisory 2024-0876-03. Red Hat Security Advisory 2024-0876-03 - An update for kpatch-patch is now available for Red Hat Enterprise Linux 8. Issues addressed include a use-after-free vulnerability.
PSS-177197
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177197. Red Hat Security Advisory 2024-0876-03. Red Hat Security Advisory 2024-0876-03 - An update for kpatch-patch is now available for Red Hat Enterprise Linux 8. Issues addressed include a use-after-free vulnerability.
#ExploitObserverAlert
CVE-2023-50270
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-50270. Session Fixation Apache DolphinScheduler before version 3.2.0, which session is still valid after the password change. Users are recommended to upgrade to version 3.2.1, which fixes this issue.
CVE-2023-50270
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-50270. Session Fixation Apache DolphinScheduler before version 3.2.0, which session is still valid after the password change. Users are recommended to upgrade to version 3.2.1, which fixes this issue.
#ExploitObserverAlert
PSS-177195
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177195. Red Hat Security Advisory 2024-0863-03. Red Hat Security Advisory 2024-0863-03 - An update for the gimp:2.8 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
PSS-177195
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177195. Red Hat Security Advisory 2024-0863-03. Red Hat Security Advisory 2024-0863-03 - An update for the gimp:2.8 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
#ExploitObserverAlert
CVE-2023-6397
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-6397. A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1 and USG FLEX series firmware versions from 4.50 through 5.37 Patch 1 could allow a LAN-based attacker to cause denial-of-service (DoS) conditions by downloading a crafted RAR compressed file onto a LAN-side host if the firewall has the “Anti-Malware” feature enabled.
FIRST-EPSS: 0.000440000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2023-6397
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-6397. A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1 and USG FLEX series firmware versions from 4.50 through 5.37 Patch 1 could allow a LAN-based attacker to cause denial-of-service (DoS) conditions by downloading a crafted RAR compressed file onto a LAN-side host if the firewall has the “Anti-Malware” feature enabled.
FIRST-EPSS: 0.000440000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2024-25607
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25607. The default password hashing algorithm (PBKDF2-HMAC-SHA1) in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 17, and older unsupported versions defaults to a low work factor, which allows attackers to quickly crack password hashes.
CVE-2024-25607
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25607. The default password hashing algorithm (PBKDF2-HMAC-SHA1) in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 17, and older unsupported versions defaults to a low work factor, which allows attackers to quickly crack password hashes.
#ExploitObserverAlert
CVE-2024-1647
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-1647. Pyhtml2pdf version 0.0.6 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the HTML content entered by the user.
FIRST-EPSS: 0.000870000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2024-1647
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-1647. Pyhtml2pdf version 0.0.6 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the HTML content entered by the user.
FIRST-EPSS: 0.000870000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2024-25974
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25974. The Frentix GmbH OpenOlat LMS is affected by stored a Cross-Site Scripting (XSS) vulnerability. It is possible to upload files within the Media Center of OpenOlat version 18.1.5 (or lower) as an authenticated user without any other rights. Although the filetypes are limited, an SVG image containing an XSS payload can be uploaded. After a successful upload the file can be shared with groups of users (including admins) who can be attacked with the JavaScript payload.
CVE-2024-25974
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25974. The Frentix GmbH OpenOlat LMS is affected by stored a Cross-Site Scripting (XSS) vulnerability. It is possible to upload files within the Media Center of OpenOlat version 18.1.5 (or lower) as an authenticated user without any other rights. Although the filetypes are limited, an SVG image containing an XSS payload can be uploaded. After a successful upload the file can be shared with groups of users (including admins) who can be attacked with the JavaScript payload.
#ExploitObserverAlert
CVE-2023-51770
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-51770. Arbitrary File Read Vulnerability in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: before 3.2.1. We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue.
CVE-2023-51770
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-51770. Arbitrary File Read Vulnerability in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: before 3.2.1. We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue.
#ExploitObserverAlert
PD/javascript/misconfiguration/smb/smb-anonymous-access
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PD/javascript/misconfiguration/smb/smb-anonymous-access. Detects anonymous access to SMB shares on a remote server.
PD/javascript/misconfiguration/smb/smb-anonymous-access
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PD/javascript/misconfiguration/smb/smb-anonymous-access. Detects anonymous access to SMB shares on a remote server.
#ExploitObserverAlert
CVE-2024-25606
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25606. XXE vulnerability in Liferay Portal 7.2.0 through 7.4.3.7, and older unsupported versions, and Liferay DXP 7.4 before update 4, 7.3 before update 12, 7.2 before fix pack 20, and older unsupported versions allows attackers with permission to deploy widgets/portlets/extensions to obtain sensitive information or consume system resources via the Java2WsddTask._format method.
CVE-2024-25606
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25606. XXE vulnerability in Liferay Portal 7.2.0 through 7.4.3.7, and older unsupported versions, and Liferay DXP 7.4 before update 4, 7.3 before update 12, 7.2 before fix pack 20, and older unsupported versions allows attackers with permission to deploy widgets/portlets/extensions to obtain sensitive information or consume system resources via the Java2WsddTask._format method.
#ExploitObserverAlert
CVE-2024-25605
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25605. The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and Liferay DXP 7.4.13, 7.3 before service pack 3, 7.2 before fix pack 17, and older unsupported versions grants guest users view permission to web content templates by default, which allows remote attackers to view any template via the UI or API.
CVE-2024-25605
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25605. The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and Liferay DXP 7.4.13, 7.3 before service pack 3, 7.2 before fix pack 17, and older unsupported versions grants guest users view permission to web content templates by default, which allows remote attackers to view any template via the UI or API.
#ExploitObserverAlert
GHSA-3w4h-r27h-4r2w
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-3w4h-r27h-4r2w. TYPO3 Image Processing susceptible to Code Execution
GHSA-3w4h-r27h-4r2w
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-3w4h-r27h-4r2w. TYPO3 Image Processing susceptible to Code Execution
#ExploitObserverAlert
TALOS-2023-1843
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to TALOS-2023-1843. Contact Cisco Talos Incident Response.
TALOS-2023-1843
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to TALOS-2023-1843. Contact Cisco Talos Incident Response.
#ExploitObserverAlert
PD/javascript/misconfiguration/ssh/ssh-cbc-mode-ciphers
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PD/javascript/misconfiguration/ssh/ssh-cbc-mode-ciphers. "SSH Server CBC Mode Ciphers Enabled" signifies that the SSH server supports Cipher Block Chaining (CBC) mode ciphers, which are known for potential vulnerabilities. This configuration poses a security risk, and it's recommended to disable CBC ciphers in favor of more secure alternatives for enhanced protection during data transmission.
PD/javascript/misconfiguration/ssh/ssh-cbc-mode-ciphers
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PD/javascript/misconfiguration/ssh/ssh-cbc-mode-ciphers. "SSH Server CBC Mode Ciphers Enabled" signifies that the SSH server supports Cipher Block Chaining (CBC) mode ciphers, which are known for potential vulnerabilities. This configuration poses a security risk, and it's recommended to disable CBC ciphers in favor of more secure alternatives for enhanced protection during data transmission.
#ExploitObserverAlert
CVE-2023-49109
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-49109. Exposure of Remote Code Execution in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: before 3.2.1. We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue.
CVE-2023-49109
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-49109. Exposure of Remote Code Execution in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: before 3.2.1. We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue.
#ExploitObserverAlert
CVE-2024-25608
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25608. HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.18, and older unsupported versions, and Liferay DXP 7.4 before update 19, 7.3 before update 4, 7.2 before fix pack 19, and older unsupported versions can be circumvented by using the 'REPLACEMENT CHARACTER' (U+FFFD), which allows remote attackers to redirect users to arbitrary external URLs via the (1) 'redirect` parameter (2) `FORWARD_URL` parameter, (3) `noSuchEntryRedirect` parameter, and (4) others parameters that rely on HtmlUtil.escapeRedirect.
CVE-2024-25608
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25608. HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.18, and older unsupported versions, and Liferay DXP 7.4 before update 19, 7.3 before update 4, 7.2 before fix pack 19, and older unsupported versions can be circumvented by using the 'REPLACEMENT CHARACTER' (U+FFFD), which allows remote attackers to redirect users to arbitrary external URLs via the (1) 'redirect` parameter (2) `FORWARD_URL` parameter, (3) `noSuchEntryRedirect` parameter, and (4) others parameters that rely on HtmlUtil.escapeRedirect.
#ExploitObserverAlert
GHSA-5jjq-8cvj-v6m9
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-5jjq-8cvj-v6m9. Cross-site Scripting in Serenity
GHSA-5jjq-8cvj-v6m9
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-5jjq-8cvj-v6m9. Cross-site Scripting in Serenity
#ExploitObserverAlert
CVE-2023-52433
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-52433. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction New elements in this transaction might expired before such transaction ends. Skip sync GC for such elements otherwise commit path might walk over an already released object. Once transaction is finished, async GC will collect such expired element.
CVE-2023-52433
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-52433. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction New elements in this transaction might expired before such transaction ends. Skip sync GC for such elements otherwise commit path might walk over an already released object. Once transaction is finished, async GC will collect such expired element.
#ExploitObserverAlert
CVE-2023-50306
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-50306. IBM Common Licensing 9.0 could allow a local user to enumerate usernames due to an observable response discrepancy. IBM X-Force ID: 273337.
CVE-2023-50306
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-50306. IBM Common Licensing 9.0 could allow a local user to enumerate usernames due to an observable response discrepancy. IBM X-Force ID: 273337.
#ExploitObserverAlert
GHSA-7496-fgv9-xw82
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-7496-fgv9-xw82. Unencrypted ingress/health traffic when using Wireguard transparent encryption
GHSA-7496-fgv9-xw82
DESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-7496-fgv9-xw82. Unencrypted ingress/health traffic when using Wireguard transparent encryption
#ExploitObserverAlert
CVE-2024-23606
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-23606. An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2024-23606
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-23606. An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
NVD-IS: 5.9
NVD-ES: 3.9