#ExploitObserverAlert
CVE-2021-21315
DESCRIPTION: Exploit Observer has 41 entries related to CVE-2021-21315. The System Information Library for Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation before version 5.3.1 there is a command injection vulnerability. Problem was fixed in version 5.3.1. As a workaround instead of upgrading, be sure to check or sanitize service parameters that are passed to si.inetLatency(), si.inetChecksite(), si.services(), si.processLoad() ... do only allow strings, reject any arrays. String sanitation works as expected.
FIRST-EPSS: 0.968640000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2021-21315
DESCRIPTION: Exploit Observer has 41 entries related to CVE-2021-21315. The System Information Library for Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation before version 5.3.1 there is a command injection vulnerability. Problem was fixed in version 5.3.1. As a workaround instead of upgrading, be sure to check or sanitize service parameters that are passed to si.inetLatency(), si.inetChecksite(), si.services(), si.processLoad() ... do only allow strings, reject any arrays. String sanitation works as expected.
FIRST-EPSS: 0.968640000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2004-0210
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2004-0210. The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.
FIRST-EPSS: 0.001210000
NVD-IS: 10.0
NVD-ES: 3.9
CVE-2004-0210
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2004-0210. The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.
FIRST-EPSS: 0.001210000
NVD-IS: 10.0
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2012-4969
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2012-4969. Use-after-free vulnerability in the CMshtmlEd::Exec function in mshtml.dll in Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code via a crafted web site, as exploited in the wild in September 2012.
FIRST-EPSS: 0.847520000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2012-4969
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2012-4969. Use-after-free vulnerability in the CMshtmlEd::Exec function in mshtml.dll in Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code via a crafted web site, as exploited in the wild in September 2012.
FIRST-EPSS: 0.847520000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2019-8394
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2019-8394. Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization.
FIRST-EPSS: 0.969620000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2019-8394
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2019-8394. Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization.
FIRST-EPSS: 0.969620000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-4655
DESCRIPTION: Exploit Observer has 37 entries related to CVE-2016-4655. The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory via a crafted app.
FIRST-EPSS: 0.865630000
NVD-IS: 3.6
NVD-ES: 1.8
CVE-2016-4655
DESCRIPTION: Exploit Observer has 37 entries related to CVE-2016-4655. The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory via a crafted app.
FIRST-EPSS: 0.865630000
NVD-IS: 3.6
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2019-5544
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2019-5544. OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
FIRST-EPSS: 0.042850000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2019-5544
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2019-5544. OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
FIRST-EPSS: 0.042850000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-5410
DESCRIPTION: Exploit Observer has 55 entries related to CVE-2020-5410. Spring Cloud Config, versions 2.2.x prior to 2.2.3, versions 2.1.x prior to 2.1.9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead to a directory traversal attack.
FIRST-EPSS: 0.967940000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2020-5410
DESCRIPTION: Exploit Observer has 55 entries related to CVE-2020-5410. Spring Cloud Config, versions 2.2.x prior to 2.2.3, versions 2.1.x prior to 2.1.9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead to a directory traversal attack.
FIRST-EPSS: 0.967940000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-24489
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2023-24489. A vulnerability has been discovered in the customer-managed ShareFile storage zones controller which, if exploited, could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.
FIRST-EPSS: 0.969450000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-24489
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2023-24489. A vulnerability has been discovered in the customer-managed ShareFile storage zones controller which, if exploited, could allow an unauthenticated attacker to remotely compromise the customer-managed ShareFile storage zones controller.
FIRST-EPSS: 0.969450000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-38180
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-38180. .NET and Visual Studio Denial of Service Vulnerability
FIRST-EPSS: 0.007880000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-38180
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-38180. .NET and Visual Studio Denial of Service Vulnerability
FIRST-EPSS: 0.007880000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-26500
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-26500. Improper limitation of path names in Veeam Backup
CVE-2022-26500
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-26500. Improper limitation of path names in Veeam Backup
#ExploitObserverAlert
CVE-2021-25297
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2021-25297. Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.
FIRST-EPSS: 0.888680000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-25297
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2021-25297. Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.
FIRST-EPSS: 0.888680000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-2868
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2023-2868. A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.
FIRST-EPSS: 0.027520000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-2868
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2023-2868. A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.
FIRST-EPSS: 0.027520000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-3393
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2016-3393. Graphics Device Interface (aka GDI or GDI ) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted web site, aka "Windows Graphics Component RCE Vulnerability."
FIRST-EPSS: 0.462950000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2016-3393
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2016-3393. Graphics Device Interface (aka GDI or GDI ) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted web site, aka "Windows Graphics Component RCE Vulnerability."
FIRST-EPSS: 0.462950000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2020-6855
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2020-6855. A large or infinite loop vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to parameterize housekeeping jobs in a way that exhausts system resources and results in a denial of service.
FIRST-EPSS: 0.000680000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2020-6855
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2020-6855. A large or infinite loop vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to parameterize housekeeping jobs in a way that exhausts system resources and results in a denial of service.
FIRST-EPSS: 0.000680000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-26925
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-26925. Windows LSA Spoofing Vulnerability.
FIRST-EPSS: 0.969890000
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2022-26925
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-26925. Windows LSA Spoofing Vulnerability.
FIRST-EPSS: 0.969890000
NVD-IS: 3.6
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2020-29583
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2020-29583. Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.
FIRST-EPSS: 0.962190000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-29583
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2020-29583. Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.
FIRST-EPSS: 0.962190000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-5591
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2019-5591. A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the LDAP server.
FIRST-EPSS: 0.002340000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2019-5591
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2019-5591. A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the LDAP server.
FIRST-EPSS: 0.002340000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-20708
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-20708. Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.010830000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-20708
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-20708. Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.010830000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-22620
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2022-22620. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.002380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2022-22620
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2022-22620. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.002380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-2388
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2016-2388. The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.
FIRST-EPSS: 0.012900000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2016-2388
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2016-2388. The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.
FIRST-EPSS: 0.012900000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8