#ExploitObserverAlert
CVE-2024-28180
DESCRIPTION: Exploit Observer has 34 entries in 5 file formats related to CVE-2024-28180. Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.
FIRST-EPSS: 0.000450000
ARPS-PRIORITY: 0.7524723
CVE-2024-28180
DESCRIPTION: Exploit Observer has 34 entries in 5 file formats related to CVE-2024-28180. Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.
FIRST-EPSS: 0.000450000
ARPS-PRIORITY: 0.7524723
#ExploitObserverAlert
WLB-2024050045
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050045. VSP Softtech - Blind Sql Injection.
ARPS-PRIORITY: 0.8512449
WLB-2024050045
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050045. VSP Softtech - Blind Sql Injection.
ARPS-PRIORITY: 0.8512449
#ExploitObserverAlert
CVE-2023-52486
DESCRIPTION: Exploit Observer has 1193 entries in 22 file formats related to CVE-2023-52486. In the Linux kernel, the following vulnerability has been resolved: drm: Don't unref the same fb many times by mistake due to deadlock handling If we get a deadlock after the fb lookup in drm_mode_page_flip_ioctl() we proceed to unref the fb and then retry the whole thing from the top. But we forget to reset the fb pointer back to NULL, and so if we then get another error during the retry, before the fb lookup, we proceed the unref the same fb again without having gotten another reference. The end result is that the fb will (eventually) end up being freed while it's still in use. Reset fb to NULL once we've unreffed it to avoid doing it again until we've done another fb lookup. This turned out to be pretty easy to hit on a DG2 when doing async flips (and CONFIG_DEBUG_WW_MUTEX_SLOWPATH=y). The first symptom I saw that drm_closefb() simply got stuck in a busy loop while walking the framebuffer list. Fortunately I was able to convince it to oops instead, and from there it was easier to track down the culprit.
FIRST-EPSS: 0.000440000
ARPS-PRIORITY: 0.9685313
CVE-2023-52486
DESCRIPTION: Exploit Observer has 1193 entries in 22 file formats related to CVE-2023-52486. In the Linux kernel, the following vulnerability has been resolved: drm: Don't unref the same fb many times by mistake due to deadlock handling If we get a deadlock after the fb lookup in drm_mode_page_flip_ioctl() we proceed to unref the fb and then retry the whole thing from the top. But we forget to reset the fb pointer back to NULL, and so if we then get another error during the retry, before the fb lookup, we proceed the unref the same fb again without having gotten another reference. The end result is that the fb will (eventually) end up being freed while it's still in use. Reset fb to NULL once we've unreffed it to avoid doing it again until we've done another fb lookup. This turned out to be pretty easy to hit on a DG2 when doing async flips (and CONFIG_DEBUG_WW_MUTEX_SLOWPATH=y). The first symptom I saw that drm_closefb() simply got stuck in a busy loop while walking the framebuffer list. Fortunately I was able to convince it to oops instead, and from there it was easier to track down the culprit.
FIRST-EPSS: 0.000440000
ARPS-PRIORITY: 0.9685313
#ExploitObserverAlert
WLB-2024050046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050046. Zope 5.9 Command Injection.
ARPS-PRIORITY: 0.8512426
WLB-2024050046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050046. Zope 5.9 Command Injection.
ARPS-PRIORITY: 0.8512426
#ExploitObserverAlert
CVE-2022-0001
DESCRIPTION: Exploit Observer has 1120 entries in 30 file formats related to CVE-2022-0001. Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
FIRST-EPSS: 0.000480000
NVD-IS: 4.0
NVD-ES: 2.0
ARPS-PRIORITY: 0.9542576
CVE-2022-0001
DESCRIPTION: Exploit Observer has 1120 entries in 30 file formats related to CVE-2022-0001. Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
FIRST-EPSS: 0.000480000
NVD-IS: 4.0
NVD-ES: 2.0
ARPS-PRIORITY: 0.9542576
#ExploitObserverAlert
WLB-2024050049
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050049. CrushFTP Directory Traversal.
ARPS-PRIORITY: 0.8512426
WLB-2024050049
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050049. CrushFTP Directory Traversal.
ARPS-PRIORITY: 0.8512426
#ExploitObserverAlert
CVE-2024-25832
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25832. F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
CVE-2024-25832
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25832. F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
#ExploitObserverAlert
WLB-2024050050
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050050. TrojanSpy.Win64.EMOTET.A MVID-2024-0684 Code Execution.
ARPS-PRIORITY: 0.8512175
WLB-2024050050
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050050. TrojanSpy.Win64.EMOTET.A MVID-2024-0684 Code Execution.
ARPS-PRIORITY: 0.8512175
#ExploitObserverAlert
CVE-2024-25830
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25830. F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
CVE-2024-25830
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25830. F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
#ExploitObserverAlert
CVE-2024-31819
DESCRIPTION: Exploit Observer has 11 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.7528162
CVE-2024-31819
DESCRIPTION: Exploit Observer has 11 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.7528162
#ExploitObserverAlert
CVE-2024-31839
DESCRIPTION: Exploit Observer has 17 entries in 6 file formats related to CVE-2024-31839. Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.87189
CVE-2024-31839
DESCRIPTION: Exploit Observer has 17 entries in 6 file formats related to CVE-2024-31839. Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.87189
#ExploitObserverAlert
CVE-2024-30850
DESCRIPTION: Exploit Observer has 20 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.876415
CVE-2024-30850
DESCRIPTION: Exploit Observer has 20 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.876415
#ExploitObserverAlert
CVE-2024-28741
DESCRIPTION: Exploit Observer has 16 entries in 6 file formats related to CVE-2024-28741. Cross Site Scripting vulnerability in EginDemirbilek NorthStar C2 v1 allows a remote attacker to execute arbitrary code via the login.php component.
FIRST-EPSS: 0.001630000
ARPS-PRIORITY: 0.8511741
CVE-2024-28741
DESCRIPTION: Exploit Observer has 16 entries in 6 file formats related to CVE-2024-28741. Cross Site Scripting vulnerability in EginDemirbilek NorthStar C2 v1 allows a remote attacker to execute arbitrary code via the login.php component.
FIRST-EPSS: 0.001630000
ARPS-PRIORITY: 0.8511741
#ExploitObserverAlert
CVE-2024-31819
DESCRIPTION: Exploit Observer has 12 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.8368503
CVE-2024-31819
DESCRIPTION: Exploit Observer has 12 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.8368503
#ExploitObserverAlert
CVE-2024-30850
DESCRIPTION: Exploit Observer has 17 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.850763
CVE-2024-30850
DESCRIPTION: Exploit Observer has 17 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.850763
#ExploitObserverAlert
CVE-2024-33559
DESCRIPTION: Exploit Observer has 11 entries in 5 file formats related to CVE-2024-33559. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore allows SQL Injection.This issue affects XStore: from n/a through 9.3.5.
FIRST-EPSS: 0.000850000
ARPS-PRIORITY: 0.9323837
CVE-2024-33559
DESCRIPTION: Exploit Observer has 11 entries in 5 file formats related to CVE-2024-33559. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore allows SQL Injection.This issue affects XStore: from n/a through 9.3.5.
FIRST-EPSS: 0.000850000
ARPS-PRIORITY: 0.9323837
#ExploitObserverAlert
PSS-178877
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178877. Online Payment Hub System 1.0 SQL Injection. Online Payment Hub System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
ARPS-PRIORITY: 0.88
PSS-178877
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178877. Online Payment Hub System 1.0 SQL Injection. Online Payment Hub System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
ARPS-PRIORITY: 0.88
#ExploitObserverAlert
PSS-178886
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178886. Red Hat Security Advisory 2024-3501-03. Red Hat Security Advisory 2024-3501-03 - An update for nghttp2 is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
ARPS-PRIORITY: 0.88
PSS-178886
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178886. Red Hat Security Advisory 2024-3501-03. Red Hat Security Advisory 2024-3501-03 - An update for nghttp2 is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
ARPS-PRIORITY: 0.88
#ExploitObserverAlert
PSS-178879
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178879. Ubuntu Security Notice USN-6802-1. Ubuntu Security Notice 6802-1 - Lukas Fittl discovered that PostgreSQL incorrectly performed authorization in the built-in pg_stats_ext and pg_stats_ext_exprs views. An unprivileged database user can use this issue to read most common values and other statistics from CREATE STATISTICS commands of other users.
ARPS-PRIORITY: 0.88
PSS-178879
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178879. Ubuntu Security Notice USN-6802-1. Ubuntu Security Notice 6802-1 - Lukas Fittl discovered that PostgreSQL incorrectly performed authorization in the built-in pg_stats_ext and pg_stats_ext_exprs views. An unprivileged database user can use this issue to read most common values and other statistics from CREATE STATISTICS commands of other users.
ARPS-PRIORITY: 0.88
#ExploitObserverAlert
PSS-178873
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178873. iMLog Cross Site Scripting. iMLog versions prior to 1.307 suffer from a persistent cross site scripting vulnerability.
ARPS-PRIORITY: 0.88
PSS-178873
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178873. iMLog Cross Site Scripting. iMLog versions prior to 1.307 suffer from a persistent cross site scripting vulnerability.
ARPS-PRIORITY: 0.88
#ExploitObserverAlert
PSS-178889
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178889. RansomLord Anti-Ransomware Exploit Tool 3.1. RansomLord is a proof-of-concept tool that automates the creation of PE files, used to compromise ransomware pre-encryption. This tool uses dll hijacking to defeat ransomware by placing PE files in the x32 or x64 directories where the program is run from.
ARPS-PRIORITY: 0.88
PSS-178889
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-178889. RansomLord Anti-Ransomware Exploit Tool 3.1. RansomLord is a proof-of-concept tool that automates the creation of PE files, used to compromise ransomware pre-encryption. This tool uses dll hijacking to defeat ransomware by placing PE files in the x32 or x64 directories where the program is run from.
ARPS-PRIORITY: 0.88