#ExploitObserverAlert
CVE-2024-24793
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-24793. A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigger this vulnerability, an attacker would need to induce the vulnerable application to process a malicious DICOM image.The Use-After-Free happens in the `parse_meta_element_create()` parsing the elements in the File Meta Information header.
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2024-24793
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-24793. A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigger this vulnerability, an attacker would need to induce the vulnerable application to process a malicious DICOM image.The Use-After-Free happens in the `parse_meta_element_create()` parsing the elements in the File Meta Information header.
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2024-23114
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-23114. Deserialization of Untrusted Data vulnerability in Apache Camel CassandraQL Component AggregationRepository which is vulnerable to unsafe deserialization. Under specific conditions it is possible to deserialize malicious payload.This issue affects Apache Camel: from 3.0.0 before 3.21.4, from 3.22.0 before 3.22.1, from 4.0.0 before 4.0.4, from 4.1.0 before 4.4.0. Users are recommended to upgrade to version 4.4.0, which fixes the issue. If users are on the 4.0.x LTS releases stream, then they are suggested to upgrade to 4.0.4. If users are on 3.x, they are suggested to move to 3.21.4 or 3.22.1
CVE-2024-23114
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-23114. Deserialization of Untrusted Data vulnerability in Apache Camel CassandraQL Component AggregationRepository which is vulnerable to unsafe deserialization. Under specific conditions it is possible to deserialize malicious payload.This issue affects Apache Camel: from 3.0.0 before 3.21.4, from 3.22.0 before 3.22.1, from 4.0.0 before 4.0.4, from 4.1.0 before 4.4.0. Users are recommended to upgrade to version 4.4.0, which fixes the issue. If users are on the 4.0.x LTS releases stream, then they are suggested to upgrade to 4.0.4. If users are on 3.x, they are suggested to move to 3.21.4 or 3.22.1
#ExploitObserverAlert
CVE-2024-21795
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-21795. A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .egi file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2024-21795
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-21795. A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .egi file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2024-25260
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25260. elfutils v0.189 was discovered to contain a NULL pointer dereference via the handle_verdef() function at readelf.c.
CVE-2024-25260
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25260. elfutils v0.189 was discovered to contain a NULL pointer dereference via the handle_verdef() function at readelf.c.
#ExploitObserverAlert
CVE-2024-25196
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25196. Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a buffer overflow via the nav2_controller process. This vulnerability is triggerd via sending a crafted .yaml file.
CVE-2024-25196
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25196. Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a buffer overflow via the nav2_controller process. This vulnerability is triggerd via sending a crafted .yaml file.
#ExploitObserverAlert
CVE-2023-47635
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-47635. Decidim is a participatory democracy framework. Starting in version 0.23.0 and prior to versions 0.27.5 and 0.28.0, the CSRF authenticity token check is disabled for the questionnaire templates preview. The issue does not imply a serious security thread as you need to have access also to the session cookie in order to see this resource. This URL does not allow modifying the resource but it may allow attackers to gain access to information which was not meant to be public. The issue is fixed in version 0.27.5 and 0.28.0. As a workaround, disable the templates functionality or remove all available templates.
CVE-2023-47635
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-47635. Decidim is a participatory democracy framework. Starting in version 0.23.0 and prior to versions 0.27.5 and 0.28.0, the CSRF authenticity token check is disabled for the questionnaire templates preview. The issue does not imply a serious security thread as you need to have access also to the session cookie in order to see this resource. This URL does not allow modifying the resource but it may allow attackers to gain access to information which was not meant to be public. The issue is fixed in version 0.27.5 and 0.28.0. As a workaround, disable the templates functionality or remove all available templates.
#ExploitObserverAlert
TALOS-2024-1925
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to TALOS-2024-1925. Contact Cisco Talos Incident Response.
TALOS-2024-1925
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to TALOS-2024-1925. Contact Cisco Talos Incident Response.
#ExploitObserverAlert
CVE-2023-39541
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-39541. A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv6 ICMPv6 packet.
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2023-39541
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-39541. A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv6 ICMPv6 packet.
NVD-IS: 3.6
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2024-26267
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26267. In Liferay Portal 7.2.0 through 7.4.3.25, and older unsupported versions, and Liferay DXP 7.4 before update 26, 7.3 before update 5, 7.2 before fix pack 19, and older unsupported versions the default value of the portal property `http.header.version.verbosity` is set to `full`, which allows remote attackers to easily identify the version of the application that is running and the vulnerabilities that affect that version via 'Liferay-Portal` response header.
CVE-2024-26267
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26267. In Liferay Portal 7.2.0 through 7.4.3.25, and older unsupported versions, and Liferay DXP 7.4 before update 26, 7.3 before update 5, 7.2 before fix pack 19, and older unsupported versions the default value of the portal property `http.header.version.verbosity` is set to `full`, which allows remote attackers to easily identify the version of the application that is running and the vulnerabilities that affect that version via 'Liferay-Portal` response header.
#ExploitObserverAlert
GHSA-8h95-jcp5-pjpr
DESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to GHSA-8h95-jcp5-pjpr. Improper Validation of Array Index in github.com/greenpau/caddy-security
GHSA-8h95-jcp5-pjpr
DESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to GHSA-8h95-jcp5-pjpr. Improper Validation of Array Index in github.com/greenpau/caddy-security
#ExploitObserverAlert
CVE-2023-45318
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-45318. A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004. A specially crafted network packet can lead to arbitrary code execution. An attacker can send a malicious packet to trigger this vulnerability.
NVD-IS: 6.0
NVD-ES: 3.9
CVE-2023-45318
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-45318. A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004. A specially crafted network packet can lead to arbitrary code execution. An attacker can send a malicious packet to trigger this vulnerability.
NVD-IS: 6.0
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-4g9r-vxhx-9pgx
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to GHSA-4g9r-vxhx-9pgx. Apache Commons Compress: Denial of service caused by an infinite loop for a corrupted DUMP file
GHSA-4g9r-vxhx-9pgx
DESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to GHSA-4g9r-vxhx-9pgx. Apache Commons Compress: Denial of service caused by an infinite loop for a corrupted DUMP file
#ExploitObserverAlert
CVE-2024-25197
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25197. Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent() function at /src/layered_costmap.cpp.
CVE-2024-25197
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25197. Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent() function at /src/layered_costmap.cpp.
#ExploitObserverAlert
GHSA-w3w6-26f2-p474
DESCRIPTION: Exploit Observer has 4 entries in 4 file formats related to GHSA-w3w6-26f2-p474. Broken Access Control in Spring Security With Direct Use of isFullyAuthenticated
GHSA-w3w6-26f2-p474
DESCRIPTION: Exploit Observer has 4 entries in 4 file formats related to GHSA-w3w6-26f2-p474. Broken Access Control in Spring Security With Direct Use of isFullyAuthenticated
#ExploitObserverAlert
GHSA-ff2w-wm48-jhqj
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-ff2w-wm48-jhqj. Arbitrary File Read Vulnerability in Apache Dolphinscheduler
GHSA-ff2w-wm48-jhqj
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-ff2w-wm48-jhqj. Arbitrary File Read Vulnerability in Apache Dolphinscheduler
#ExploitObserverAlert
GHSA-cp68-qrhr-g9h8
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to GHSA-cp68-qrhr-g9h8. MeshCentral cross-site websocket hijacking (CSWSH) vulnerability
GHSA-cp68-qrhr-g9h8
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to GHSA-cp68-qrhr-g9h8. MeshCentral cross-site websocket hijacking (CSWSH) vulnerability
#ExploitObserverAlert
GHSA-qwxx-xww6-8q8m
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-qwxx-xww6-8q8m. Remote Code Execution in Apache Dolphinscheduler
GHSA-qwxx-xww6-8q8m
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-qwxx-xww6-8q8m. Remote Code Execution in Apache Dolphinscheduler
#ExploitObserverAlert
GHSA-c9vv-fhgv-cjc3
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-c9vv-fhgv-cjc3. agent-js: Insecure Key Generation in `Ed25519KeyIdentity.generate`
GHSA-c9vv-fhgv-cjc3
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-c9vv-fhgv-cjc3. agent-js: Insecure Key Generation in `Ed25519KeyIdentity.generate`
#ExploitObserverAlert
PD/http/cves/2024/CVE-2024-1209
DESCRIPTION: Exploit Observer has 8 entries in 5 file formats related to PD/http/cves/2024/CVE-2024-1209. The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.1 via direct file access due to insufficient protection of uploaded assignments. This makes it possible for unauthenticated attackers to obtain those uploads.
PD/http/cves/2024/CVE-2024-1209
DESCRIPTION: Exploit Observer has 8 entries in 5 file formats related to PD/http/cves/2024/CVE-2024-1209. The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.1 via direct file access due to insufficient protection of uploaded assignments. This makes it possible for unauthenticated attackers to obtain those uploads.
#ExploitObserverAlert
GHSA-vjqc-g788-f378
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-vjqc-g788-f378. Session Fixation Apache DolphinScheduler
GHSA-vjqc-g788-f378
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-vjqc-g788-f378. Session Fixation Apache DolphinScheduler
#ExploitObserverAlert
GHSA-p3rv-qj56-2fqx
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-p3rv-qj56-2fqx. Cross-site Scripting in Pyhtml2pdf
GHSA-p3rv-qj56-2fqx
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-p3rv-qj56-2fqx. Cross-site Scripting in Pyhtml2pdf