#ExploitObserverAlert
GHSA-pqjm-xcp8-wgmm
DESCRIPTION: Exploit Observer has 8 entries in 6 file formats related to GHSA-pqjm-xcp8-wgmm. Ez Platform and Legacy are prone to an insecure interpretation of PHP/PHAR uploads
ARPS-PRIORITY: 0.7050617
GHSA-pqjm-xcp8-wgmm
DESCRIPTION: Exploit Observer has 8 entries in 6 file formats related to GHSA-pqjm-xcp8-wgmm. Ez Platform and Legacy are prone to an insecure interpretation of PHP/PHAR uploads
ARPS-PRIORITY: 0.7050617
#ExploitObserverAlert
CVE-2022-23793
DESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-23793. An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.
FIRST-EPSS: 0.002000000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.8713574
CVE-2022-23793
DESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-23793. An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.
FIRST-EPSS: 0.002000000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.8713574
❤1
#ARPSArticleAlert
Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia didn’t.
https://blog.arpsyndicate.io/over-a-1000-vulnerabilities-that-mitre-nist-might-have-missed-but-china-or-russia-did-not-871b2364a526
Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia didn’t.
https://blog.arpsyndicate.io/over-a-1000-vulnerabilities-that-mitre-nist-might-have-missed-but-china-or-russia-did-not-871b2364a526
Medium
Over a 1000 vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia did not.
Exploit Observer is The World’s Largest Exploit & Vulnerability Intelligence Database that collects global exploits & vulnerabilities.
#ExploitObserverAlert
CVE-2023-52722
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2023-52722. An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.7563918
CVE-2023-52722
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2023-52722. An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.7563918
#ExploitObserverAlert
CVE-2024-25642
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2024-25642. Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the availability of the system.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8582365
CVE-2024-25642
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2024-25642. Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the availability of the system.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8582365
#ExploitObserverAlert
CVE-2024-28180
DESCRIPTION: Exploit Observer has 34 entries in 5 file formats related to CVE-2024-28180. Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.
FIRST-EPSS: 0.000450000
ARPS-PRIORITY: 0.7524723
CVE-2024-28180
DESCRIPTION: Exploit Observer has 34 entries in 5 file formats related to CVE-2024-28180. Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.
FIRST-EPSS: 0.000450000
ARPS-PRIORITY: 0.7524723
#ExploitObserverAlert
WLB-2024050045
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050045. VSP Softtech - Blind Sql Injection.
ARPS-PRIORITY: 0.8512449
WLB-2024050045
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050045. VSP Softtech - Blind Sql Injection.
ARPS-PRIORITY: 0.8512449
#ExploitObserverAlert
CVE-2023-52486
DESCRIPTION: Exploit Observer has 1193 entries in 22 file formats related to CVE-2023-52486. In the Linux kernel, the following vulnerability has been resolved: drm: Don't unref the same fb many times by mistake due to deadlock handling If we get a deadlock after the fb lookup in drm_mode_page_flip_ioctl() we proceed to unref the fb and then retry the whole thing from the top. But we forget to reset the fb pointer back to NULL, and so if we then get another error during the retry, before the fb lookup, we proceed the unref the same fb again without having gotten another reference. The end result is that the fb will (eventually) end up being freed while it's still in use. Reset fb to NULL once we've unreffed it to avoid doing it again until we've done another fb lookup. This turned out to be pretty easy to hit on a DG2 when doing async flips (and CONFIG_DEBUG_WW_MUTEX_SLOWPATH=y). The first symptom I saw that drm_closefb() simply got stuck in a busy loop while walking the framebuffer list. Fortunately I was able to convince it to oops instead, and from there it was easier to track down the culprit.
FIRST-EPSS: 0.000440000
ARPS-PRIORITY: 0.9685313
CVE-2023-52486
DESCRIPTION: Exploit Observer has 1193 entries in 22 file formats related to CVE-2023-52486. In the Linux kernel, the following vulnerability has been resolved: drm: Don't unref the same fb many times by mistake due to deadlock handling If we get a deadlock after the fb lookup in drm_mode_page_flip_ioctl() we proceed to unref the fb and then retry the whole thing from the top. But we forget to reset the fb pointer back to NULL, and so if we then get another error during the retry, before the fb lookup, we proceed the unref the same fb again without having gotten another reference. The end result is that the fb will (eventually) end up being freed while it's still in use. Reset fb to NULL once we've unreffed it to avoid doing it again until we've done another fb lookup. This turned out to be pretty easy to hit on a DG2 when doing async flips (and CONFIG_DEBUG_WW_MUTEX_SLOWPATH=y). The first symptom I saw that drm_closefb() simply got stuck in a busy loop while walking the framebuffer list. Fortunately I was able to convince it to oops instead, and from there it was easier to track down the culprit.
FIRST-EPSS: 0.000440000
ARPS-PRIORITY: 0.9685313
#ExploitObserverAlert
WLB-2024050046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050046. Zope 5.9 Command Injection.
ARPS-PRIORITY: 0.8512426
WLB-2024050046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050046. Zope 5.9 Command Injection.
ARPS-PRIORITY: 0.8512426
#ExploitObserverAlert
CVE-2022-0001
DESCRIPTION: Exploit Observer has 1120 entries in 30 file formats related to CVE-2022-0001. Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
FIRST-EPSS: 0.000480000
NVD-IS: 4.0
NVD-ES: 2.0
ARPS-PRIORITY: 0.9542576
CVE-2022-0001
DESCRIPTION: Exploit Observer has 1120 entries in 30 file formats related to CVE-2022-0001. Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
FIRST-EPSS: 0.000480000
NVD-IS: 4.0
NVD-ES: 2.0
ARPS-PRIORITY: 0.9542576
#ExploitObserverAlert
WLB-2024050049
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050049. CrushFTP Directory Traversal.
ARPS-PRIORITY: 0.8512426
WLB-2024050049
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050049. CrushFTP Directory Traversal.
ARPS-PRIORITY: 0.8512426
#ExploitObserverAlert
CVE-2024-25832
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25832. F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
CVE-2024-25832
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25832. F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
#ExploitObserverAlert
WLB-2024050050
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050050. TrojanSpy.Win64.EMOTET.A MVID-2024-0684 Code Execution.
ARPS-PRIORITY: 0.8512175
WLB-2024050050
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050050. TrojanSpy.Win64.EMOTET.A MVID-2024-0684 Code Execution.
ARPS-PRIORITY: 0.8512175
#ExploitObserverAlert
CVE-2024-25830
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25830. F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
CVE-2024-25830
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25830. F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
#ExploitObserverAlert
CVE-2024-31819
DESCRIPTION: Exploit Observer has 11 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.7528162
CVE-2024-31819
DESCRIPTION: Exploit Observer has 11 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.7528162
#ExploitObserverAlert
CVE-2024-31839
DESCRIPTION: Exploit Observer has 17 entries in 6 file formats related to CVE-2024-31839. Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.87189
CVE-2024-31839
DESCRIPTION: Exploit Observer has 17 entries in 6 file formats related to CVE-2024-31839. Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.87189
#ExploitObserverAlert
CVE-2024-30850
DESCRIPTION: Exploit Observer has 20 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.876415
CVE-2024-30850
DESCRIPTION: Exploit Observer has 20 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.876415
#ExploitObserverAlert
CVE-2024-28741
DESCRIPTION: Exploit Observer has 16 entries in 6 file formats related to CVE-2024-28741. Cross Site Scripting vulnerability in EginDemirbilek NorthStar C2 v1 allows a remote attacker to execute arbitrary code via the login.php component.
FIRST-EPSS: 0.001630000
ARPS-PRIORITY: 0.8511741
CVE-2024-28741
DESCRIPTION: Exploit Observer has 16 entries in 6 file formats related to CVE-2024-28741. Cross Site Scripting vulnerability in EginDemirbilek NorthStar C2 v1 allows a remote attacker to execute arbitrary code via the login.php component.
FIRST-EPSS: 0.001630000
ARPS-PRIORITY: 0.8511741
#ExploitObserverAlert
CVE-2024-31819
DESCRIPTION: Exploit Observer has 12 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.8368503
CVE-2024-31819
DESCRIPTION: Exploit Observer has 12 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.8368503
#ExploitObserverAlert
CVE-2024-30850
DESCRIPTION: Exploit Observer has 17 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.850763
CVE-2024-30850
DESCRIPTION: Exploit Observer has 17 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.850763
#ExploitObserverAlert
CVE-2024-33559
DESCRIPTION: Exploit Observer has 11 entries in 5 file formats related to CVE-2024-33559. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore allows SQL Injection.This issue affects XStore: from n/a through 9.3.5.
FIRST-EPSS: 0.000850000
ARPS-PRIORITY: 0.9323837
CVE-2024-33559
DESCRIPTION: Exploit Observer has 11 entries in 5 file formats related to CVE-2024-33559. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore allows SQL Injection.This issue affects XStore: from n/a through 9.3.5.
FIRST-EPSS: 0.000850000
ARPS-PRIORITY: 0.9323837