#ExploitObserverAlert
CVE-2023-38180
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-38180. .NET and Visual Studio Denial of Service Vulnerability
FIRST-EPSS: 0.007880000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-38180
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-38180. .NET and Visual Studio Denial of Service Vulnerability
FIRST-EPSS: 0.007880000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-26500
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-26500. Improper limitation of path names in Veeam Backup
CVE-2022-26500
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2022-26500. Improper limitation of path names in Veeam Backup
#ExploitObserverAlert
CVE-2021-25297
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2021-25297. Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.
FIRST-EPSS: 0.888680000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-25297
DESCRIPTION: Exploit Observer has 12 entries related to CVE-2021-25297. Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.
FIRST-EPSS: 0.888680000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-2868
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2023-2868. A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.
FIRST-EPSS: 0.027520000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-2868
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2023-2868. A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape archives). The vulnerability stems from incomplete input validation of a user-supplied .tar file as it pertains to the names of the files contained within the archive. As a consequence, a remote attacker can specifically format these file names in a particular manner that will result in remotely executing a system command through Perl's qx operator with the privileges of the Email Security Gateway product. This issue was fixed as part of BNSF-36456 patch. This patch was automatically applied to all customer appliances.
FIRST-EPSS: 0.027520000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-3393
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2016-3393. Graphics Device Interface (aka GDI or GDI ) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted web site, aka "Windows Graphics Component RCE Vulnerability."
FIRST-EPSS: 0.462950000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2016-3393
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2016-3393. Graphics Device Interface (aka GDI or GDI ) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted web site, aka "Windows Graphics Component RCE Vulnerability."
FIRST-EPSS: 0.462950000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2020-6855
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2020-6855. A large or infinite loop vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to parameterize housekeeping jobs in a way that exhausts system resources and results in a denial of service.
FIRST-EPSS: 0.000680000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2020-6855
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2020-6855. A large or infinite loop vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to parameterize housekeeping jobs in a way that exhausts system resources and results in a denial of service.
FIRST-EPSS: 0.000680000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-26925
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-26925. Windows LSA Spoofing Vulnerability.
FIRST-EPSS: 0.969890000
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2022-26925
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2022-26925. Windows LSA Spoofing Vulnerability.
FIRST-EPSS: 0.969890000
NVD-IS: 3.6
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2020-29583
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2020-29583. Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.
FIRST-EPSS: 0.962190000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-29583
DESCRIPTION: Exploit Observer has 21 entries related to CVE-2020-29583. Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.
FIRST-EPSS: 0.962190000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-5591
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2019-5591. A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the LDAP server.
FIRST-EPSS: 0.002340000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2019-5591
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2019-5591. A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the LDAP server.
FIRST-EPSS: 0.002340000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-20708
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-20708. Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.010830000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-20708
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-20708. Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.010830000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-22620
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2022-22620. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.002380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2022-22620
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2022-22620. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.002380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-2388
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2016-2388. The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.
FIRST-EPSS: 0.012900000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2016-2388
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2016-2388. The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.
FIRST-EPSS: 0.012900000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2017-5070
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-5070. Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
FIRST-EPSS: 0.226460000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2017-5070
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-5070. Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
FIRST-EPSS: 0.226460000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-11261
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-11261. Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice
CVE-2020-11261
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-11261. Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice
#ExploitObserverAlert
CVE-2020-25506
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-25506. D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.
FIRST-EPSS: 0.974240000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-25506
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-25506. D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.
FIRST-EPSS: 0.974240000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-8414
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2018-8414. A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
FIRST-EPSS: 0.966380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2018-8414
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2018-8414. A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
FIRST-EPSS: 0.966380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2021-27059
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-27059. Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24108, CVE-2021-27057.
FIRST-EPSS: 0.021490000
NVD-IS: 5.9
NVD-ES: 0.9
CVE-2021-27059
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-27059. Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24108, CVE-2021-27057.
FIRST-EPSS: 0.021490000
NVD-IS: 5.9
NVD-ES: 0.9
#ExploitObserverAlert
CVE-2020-13927
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2020-13927. The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses security risks to users who miss this fact. From Airflow 1.10.11 the default has been changed to deny all requests by default and is documented at https://airflow.apache.org/docs/1.10.11/security.html
CVE-2020-13927
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2020-13927. The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses security risks to users who miss this fact. From Airflow 1.10.11 the default has been changed to deny all requests by default and is documented at https://airflow.apache.org/docs/1.10.11/security.html
#ExploitObserverAlert
CVE-2021-27860
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27860. A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.
FIRST-EPSS: 0.049340000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-27860
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27860. A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.
FIRST-EPSS: 0.049340000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-11978
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2020-11978. An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow which would allow any authenticated user to run arbitrary commands as the user running airflow worker/scheduler (depending on the executor in use). If you already have examples disabled by setting load_examples=False in the config then you are not vulnerable.
FIRST-EPSS: 0.971560000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-11978
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2020-11978. An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow which would allow any authenticated user to run arbitrary commands as the user running airflow worker/scheduler (depending on the executor in use). If you already have examples disabled by setting load_examples=False in the config then you are not vulnerable.
FIRST-EPSS: 0.971560000
NVD-IS: 5.9
NVD-ES: 2.8