#ExploitObserverAlert
CVE-2022-20708
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-20708. Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.010830000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-20708
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-20708. Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.
FIRST-EPSS: 0.010830000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-22620
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2022-22620. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.002380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2022-22620
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2022-22620. A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
FIRST-EPSS: 0.002380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-2388
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2016-2388. The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.
FIRST-EPSS: 0.012900000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2016-2388
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2016-2388. The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request, aka SAP Security Note 2256846.
FIRST-EPSS: 0.012900000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2017-5070
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-5070. Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
FIRST-EPSS: 0.226460000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2017-5070
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-5070. Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
FIRST-EPSS: 0.226460000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-11261
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-11261. Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice
CVE-2020-11261
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-11261. Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice
#ExploitObserverAlert
CVE-2020-25506
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-25506. D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.
FIRST-EPSS: 0.974240000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-25506
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-25506. D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.
FIRST-EPSS: 0.974240000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-8414
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2018-8414. A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
FIRST-EPSS: 0.966380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2018-8414
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2018-8414. A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
FIRST-EPSS: 0.966380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2021-27059
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-27059. Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24108, CVE-2021-27057.
FIRST-EPSS: 0.021490000
NVD-IS: 5.9
NVD-ES: 0.9
CVE-2021-27059
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-27059. Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24108, CVE-2021-27057.
FIRST-EPSS: 0.021490000
NVD-IS: 5.9
NVD-ES: 0.9
#ExploitObserverAlert
CVE-2020-13927
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2020-13927. The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses security risks to users who miss this fact. From Airflow 1.10.11 the default has been changed to deny all requests by default and is documented at https://airflow.apache.org/docs/1.10.11/security.html
CVE-2020-13927
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2020-13927. The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses security risks to users who miss this fact. From Airflow 1.10.11 the default has been changed to deny all requests by default and is documented at https://airflow.apache.org/docs/1.10.11/security.html
#ExploitObserverAlert
CVE-2021-27860
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27860. A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.
FIRST-EPSS: 0.049340000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-27860
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27860. A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.
FIRST-EPSS: 0.049340000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-11978
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2020-11978. An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow which would allow any authenticated user to run arbitrary commands as the user running airflow worker/scheduler (depending on the executor in use). If you already have examples disabled by setting load_examples=False in the config then you are not vulnerable.
FIRST-EPSS: 0.971560000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-11978
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2020-11978. An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow which would allow any authenticated user to run arbitrary commands as the user running airflow worker/scheduler (depending on the executor in use). If you already have examples disabled by setting load_examples=False in the config then you are not vulnerable.
FIRST-EPSS: 0.971560000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-26143
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2022-26143. The TP-240 (aka tp240dvr) component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 allows remote attackers to obtain sensitive information and cause a denial of service (performance degradation and excessive outbound traffic). This was exploited in the wild in February and March 2022 for the TP240PhoneHome DDoS attack.
FIRST-EPSS: 0.059170000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-26143
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2022-26143. The TP-240 (aka tp240dvr) component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 allows remote attackers to obtain sensitive information and cause a denial of service (performance degradation and excessive outbound traffic). This was exploited in the wild in February and March 2022 for the TP240PhoneHome DDoS attack.
FIRST-EPSS: 0.059170000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2012-0151
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2012-0151. The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable (PE) file, which allows user-assisted remote attackers to execute arbitrary code via a modified file with additional content, aka "WinVerifyTrust Signature Validation Vulnerability."
FIRST-EPSS: 0.951940000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2012-0151
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2012-0151. The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable (PE) file, which allows user-assisted remote attackers to execute arbitrary code via a modified file with additional content, aka "WinVerifyTrust Signature Validation Vulnerability."
FIRST-EPSS: 0.951940000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2016-4656
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2016-4656. The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
FIRST-EPSS: 0.004560000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2016-4656
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2016-4656. The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
FIRST-EPSS: 0.004560000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2020-35730
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2020-35730. An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkref_addindex in rcube_string_replacer.php.
FIRST-EPSS: 0.004620000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2020-35730
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2020-35730. An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkref_addindex in rcube_string_replacer.php.
FIRST-EPSS: 0.004620000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-0167
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-0167. The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0143 and CVE-2016-0165.
FIRST-EPSS: 0.000620000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2016-0167
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-0167. The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0143 and CVE-2016-0165.
FIRST-EPSS: 0.000620000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2018-0179
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2018-0179. Multiple vulnerabilities in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition. These vulnerabilities affect Cisco devices that are running Cisco IOS Software Release 15.4(2)T, 15.4(3)M, or 15.4(2)CG and later. Cisco Bug IDs: CSCuy32360, CSCuz60599.
FIRST-EPSS: 0.001610000
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2018-0179
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2018-0179. Multiple vulnerabilities in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition. These vulnerabilities affect Cisco devices that are running Cisco IOS Software Release 15.4(2)T, 15.4(3)M, or 15.4(2)CG and later. Cisco Bug IDs: CSCuy32360, CSCuz60599.
FIRST-EPSS: 0.001610000
NVD-IS: 3.6
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2020-11738
DESCRIPTION: Exploit Observer has 29 entries related to CVE-2020-11738. The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.
FIRST-EPSS: 0.974300000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2020-11738
DESCRIPTION: Exploit Observer has 29 entries related to CVE-2020-11738. The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.
FIRST-EPSS: 0.974300000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-7609
DESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-7609. Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.
FIRST-EPSS: 0.963650000
NVD-IS: 6.0
NVD-ES: 3.9
CVE-2019-7609
DESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-7609. Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.
FIRST-EPSS: 0.963650000
NVD-IS: 6.0
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-21551
DESCRIPTION: Exploit Observer has 56 entries related to CVE-2021-21551. Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.
FIRST-EPSS: 0.001540000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2021-21551
DESCRIPTION: Exploit Observer has 56 entries related to CVE-2021-21551. Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.
FIRST-EPSS: 0.001540000
NVD-IS: 5.9
NVD-ES: 1.8