AttackerKB
attackerkb
New assessment for topic: CVE-2025-30406
Topic description: "Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025 ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/25edbe02-53c3-4f7b-9993-e57282580766
Topic description: "Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025 ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/25edbe02-53c3-4f7b-9993-e57282580766
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-38475
Topic description: "Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure ..."
"SonicWall [updated a 2024 advisory](https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018) to note that this third-party vulnerability is being exploited in the wild in their SMA100 devices ..."
Link: https://attackerkb.com/assessments/306036ec-fc18-46f2-91b8-d8c5391031c5
Topic description: "Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure ..."
"SonicWall [updated a 2024 advisory](https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018) to note that this third-party vulnerability is being exploited in the wild in their SMA100 devices ..."
Link: https://attackerkb.com/assessments/306036ec-fc18-46f2-91b8-d8c5391031c5
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-3935
Topic description: "ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code injection attack ..."
"On the 24th April 2025 Connectwise released an advisory warning that ScreenConnect versions before `25.2.3` were susceptible to ViewState code injection attacks, if an attacker had privileged access and hence access to the machine keys defined in application config ..."
Link: https://attackerkb.com/assessments/cd141f73-7686-4848-b0cd-2893225b446b
Topic description: "ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code injection attack ..."
"On the 24th April 2025 Connectwise released an advisory warning that ScreenConnect versions before `25.2.3` were susceptible to ViewState code injection attacks, if an attacker had privileged access and hence access to the machine keys defined in application config ..."
Link: https://attackerkb.com/assessments/cd141f73-7686-4848-b0cd-2893225b446b
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-31324
Topic description: "SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system ..."
"Rapid7 MDR has observed exploitation of this zero-day vulnerability in multiple customer environments ..."
Link: https://attackerkb.com/assessments/462e2d0c-2cf2-4306-94f5-901badbb072d
Topic description: "SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system ..."
"Rapid7 MDR has observed exploitation of this zero-day vulnerability in multiple customer environments ..."
Link: https://attackerkb.com/assessments/462e2d0c-2cf2-4306-94f5-901badbb072d
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-6235
Topic description: "Sensitive information disclosure in NetScaler Console ..."
"On July 9, 2024, Citrix [disclosed](https://support.citrix.com/s/article/CTX677998-netscaler-console-agent-and-sdx-svm-security-bulletin-for-cve20246235-and-cve20246236?language=en_US) CVE-2024-6235, a sensitive information disclosure vulnerability affecting NetScaler Console ..."
Link: https://attackerkb.com/assessments/3bf5c123-41fa-47c5-9eb1-d139317061b8
Topic description: "Sensitive information disclosure in NetScaler Console ..."
"On July 9, 2024, Citrix [disclosed](https://support.citrix.com/s/article/CTX677998-netscaler-console-agent-and-sdx-svm-security-bulletin-for-cve20246235-and-cve20246236?language=en_US) CVE-2024-6235, a sensitive information disclosure vulnerability affecting NetScaler Console ..."
Link: https://attackerkb.com/assessments/3bf5c123-41fa-47c5-9eb1-d139317061b8
0
1
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-32433
Topic description: "Erlang/OTP is a set of libraries for the Erlang programming language ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/697e0085-6e15-4860-8967-de67ec8f0cfa
Topic description: "Erlang/OTP is a set of libraries for the Erlang programming language ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/697e0085-6e15-4860-8967-de67ec8f0cfa
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-30406
Topic description: "Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025 ..."
"CVE-2025-30406 is a critical remote code execution (RCE) vulnerability affecting Gladinet's CentreStack and Triofox platforms ..."
Link: https://attackerkb.com/assessments/2bb4e3bd-b6fd-4241-a58b-9067960e0375
Topic description: "Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025 ..."
"CVE-2025-30406 is a critical remote code execution (RCE) vulnerability affecting Gladinet's CentreStack and Triofox platforms ..."
Link: https://attackerkb.com/assessments/2bb4e3bd-b6fd-4241-a58b-9067960e0375
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-38809
Topic description: "Applications that parse ETags from "If-Match" or "If-None-Match" request headers are vulnerable to DoS attack. ..."
"For successful exploitation of the vulnerability, applications must process or parse ETags in the following HTTP headers: 'If-Match' or 'If-None-Match' ..."
Link: https://attackerkb.com/assessments/173a9051-0955-4b4e-8bae-de52c949b516
Topic description: "Applications that parse ETags from "If-Match" or "If-None-Match" request headers are vulnerable to DoS attack. ..."
"For successful exploitation of the vulnerability, applications must process or parse ETags in the following HTTP headers: 'If-Match' or 'If-None-Match' ..."
Link: https://attackerkb.com/assessments/173a9051-0955-4b4e-8bae-de52c949b516
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-30065
Topic description: "Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code ..."
"[Apache Parquet](https://parquet.apache.org/) is a popular data storage format that was originally developed in the early 2010s as part of the Apache Hadoop ecosystem ..."
Link: https://attackerkb.com/assessments/3c043281-25a1-44fc-a361-00e02ec2bc60
Topic description: "Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code ..."
"[Apache Parquet](https://parquet.apache.org/) is a popular data storage format that was originally developed in the early 2010s as part of the Apache Hadoop ecosystem ..."
Link: https://attackerkb.com/assessments/3c043281-25a1-44fc-a361-00e02ec2bc60
0
1
2
AttackerKB
attackerkb
New assessment for topic: CVE-2025-22457
Topic description: "A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution. ..."
"Based on writing the [Rapid7 Analysis](https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis) and developing a [PoC exploit script](https://github.com/sfewer-r7/CVE-2025-22457), I am rating the `Attacker Value` for this vulnerability as `Very High`, as Ivanti Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA Gateways are high profile targets for state-sponsored threat actors and have been regularly exploited in the wild in the past (including this vulnerability CVE-2025-22457) ..."
Link: https://attackerkb.com/assessments/fa985251-6adb-46fd-b1c6-9a84dbffb823
Topic description: "A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution. ..."
"Based on writing the [Rapid7 Analysis](https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis) and developing a [PoC exploit script](https://github.com/sfewer-r7/CVE-2025-22457), I am rating the `Attacker Value` for this vulnerability as `Very High`, as Ivanti Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA Gateways are high profile targets for state-sponsored threat actors and have been regularly exploited in the wild in the past (including this vulnerability CVE-2025-22457) ..."
Link: https://attackerkb.com/assessments/fa985251-6adb-46fd-b1c6-9a84dbffb823
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-2945
Topic description: "Remote Code Execution security vulnerability in pgAdmin 4 (Query Tool and Cloud Deployment modules). ..."
"On April 4th, 2025 pgAdmin released version 9.2, of “pgAdmin 4”, which included a fix for CVE-2025-2945, an authenticated RCE vulnerability affecting versions `8.10` through to `9.1` ..."
Link: https://attackerkb.com/assessments/05eb1108-f51a-40b9-bfdd-34885be6d785
Topic description: "Remote Code Execution security vulnerability in pgAdmin 4 (Query Tool and Cloud Deployment modules). ..."
"On April 4th, 2025 pgAdmin released version 9.2, of “pgAdmin 4”, which included a fix for CVE-2025-2945, an authenticated RCE vulnerability affecting versions `8.10` through to `9.1` ..."
Link: https://attackerkb.com/assessments/05eb1108-f51a-40b9-bfdd-34885be6d785
0
0
0
AttackerKB
attackerkb
New Rapid7 Analysis on AttackerKB topic: CVE-2025-22457
"On April 3, 2025, Ivanti published an [advisory](https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US) for CVE-2025-22457, an unauthenticated remote code execution vulnerability due to a stack based buffer overflow ..."
Link: https://attackerkb.com/topics/77a42870-750f-41a9-97ed-07b482eac905
"On April 3, 2025, Ivanti published an [advisory](https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US) for CVE-2025-22457, an unauthenticated remote code execution vulnerability due to a stack based buffer overflow ..."
Link: https://attackerkb.com/topics/77a42870-750f-41a9-97ed-07b482eac905
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-53326
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"[CVE-2024-53326](https://trustedsec.com/blog/discovering-a-deserialization-vulnerability-in-linqpad) is a .NET deserialization vulnerability in Linqpad up to version 5.52.01 ..."
Link: https://attackerkb.com/assessments/da90857a-39e5-46c6-a30b-c9c628b3222f
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"[CVE-2024-53326](https://trustedsec.com/blog/discovering-a-deserialization-vulnerability-in-linqpad) is a .NET deserialization vulnerability in Linqpad up to version 5.52.01 ..."
Link: https://attackerkb.com/assessments/da90857a-39e5-46c6-a30b-c9c628b3222f
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-36255
Topic description: "An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrary code via the path parameter in the URL. ..."
"Eramba is open source Governance, Risk, and Compliance (GRC) software ..."
Link: https://attackerkb.com/assessments/6ad733b6-6bf1-45a3-a982-9d62dffa9c9e
Topic description: "An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrary code via the path parameter in the URL. ..."
"Eramba is open source Governance, Risk, and Compliance (GRC) software ..."
Link: https://attackerkb.com/assessments/6ad733b6-6bf1-45a3-a982-9d62dffa9c9e
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-30065
Topic description: "Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code ..."
"CVE-2025-30065 is a critical deserialization vulnerability (CWE-502: Deserialization of Untrusted Data) in Apache Parquet’s Java library (specifically in the parquet-avro module) ..."
Link: https://attackerkb.com/assessments/1227b01a-c0b5-42ad-a360-b3ce702062e8
Topic description: "Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code ..."
"CVE-2025-30065 is a critical deserialization vulnerability (CWE-502: Deserialization of Untrusted Data) in Apache Parquet’s Java library (specifically in the parquet-avro module) ..."
Link: https://attackerkb.com/assessments/1227b01a-c0b5-42ad-a360-b3ce702062e8
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-2825
Topic description: "CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access ..."
"[CVE-2025-2825](https://nvd.nist.gov/vuln/detail/CVE-2025-2825) is a critical vulnerability affecting CrushFTP 11 below 11.3.1 and 10 below 10.8.4 ..."
Link: https://attackerkb.com/assessments/4c81cb24-aafd-4753-92bb-33c1190c24a5
Topic description: "CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access ..."
"[CVE-2025-2825](https://nvd.nist.gov/vuln/detail/CVE-2025-2825) is a critical vulnerability affecting CrushFTP 11 below 11.3.1 and 10 below 10.8.4 ..."
Link: https://attackerkb.com/assessments/4c81cb24-aafd-4753-92bb-33c1190c24a5
0
1
0
AttackerKB
attackerkb
New Rapid7 Analysis on AttackerKB topic: CVE-2025-2825
"On Friday, March 21, 2025, [CrushFTP](https://www.crushftp.com/), a managed file transfer solution vendor, announced [a new vulnerability](https://www.rapid7.com/blog/post/2025/03/25/etr-notable-vulnerabilities-in-next-js-cve-2025-29927/) to customers via email ..."
Link: https://attackerkb.com/topics/a0e10b90-c471-484c-ace4-4f3ae764c183
"On Friday, March 21, 2025, [CrushFTP](https://www.crushftp.com/), a managed file transfer solution vendor, announced [a new vulnerability](https://www.rapid7.com/blog/post/2025/03/25/etr-notable-vulnerabilities-in-next-js-cve-2025-29927/) to customers via email ..."
Link: https://attackerkb.com/topics/a0e10b90-c471-484c-ace4-4f3ae764c183
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-29927
Topic description: "Next.js is a React framework for building full-stack web applications ..."
"On the 21st March 2025 Next.js released an advisory notifying users of a vulnerability affecting versions of the framework prior to 14.2.25 and 15.2.3 ..."
Link: https://attackerkb.com/assessments/9152fc92-56bf-4374-96db-9fa9b34cbbf6
Topic description: "Next.js is a React framework for building full-stack web applications ..."
"On the 21st March 2025 Next.js released an advisory notifying users of a vulnerability affecting versions of the framework prior to 14.2.25 and 15.2.3 ..."
Link: https://attackerkb.com/assessments/9152fc92-56bf-4374-96db-9fa9b34cbbf6
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2025-26633
Topic description: "Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally. ..."
"CVE-2025-26633, nicknamed “MSC EvilTwin”, is a security feature bypass vulnerability in Microsoft Management Console (MMC), discovered being exploited in the wild as early as February 2025 by the threat actor group EncryptHub ..."
Link: https://attackerkb.com/assessments/d81fa814-6af3-4d79-8b7a-f7c1049a971f
Topic description: "Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally. ..."
"CVE-2025-26633, nicknamed “MSC EvilTwin”, is a security feature bypass vulnerability in Microsoft Management Console (MMC), discovered being exploited in the wild as early as February 2025 by the threat actor group EncryptHub ..."
Link: https://attackerkb.com/assessments/d81fa814-6af3-4d79-8b7a-f7c1049a971f
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-24521
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"RansomHub affiliate observed in abusing this vulnerability including 3 files that were weaponizing this vulnerability: https://www.security.com/threat-intelligence/ransomhub-betruger-backdoor ..."
Link: https://attackerkb.com/assessments/9572a87d-9159-4573-b90d-bbacbe294965
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"RansomHub affiliate observed in abusing this vulnerability including 3 files that were weaponizing this vulnerability: https://www.security.com/threat-intelligence/ransomhub-betruger-backdoor ..."
Link: https://attackerkb.com/assessments/9572a87d-9159-4573-b90d-bbacbe294965
0
0
0