AttackerKB
attackerkb
New assessment for topic: CVE-2024-4215
Topic description: "pgAdmin <= 8.5 is affected by a multi-factor authentication bypass vulnerability ..."
"pgAdmin is vulnerable to a multi-factor authentication bypass ([CWE-287](https://cwe.mitre.org/data/definitions/287.html)) whereby an attacker with knowledge of an account’s credentials can manage files and make SQL queries regardless of whether or not the account has been configured with MFA ..."
Link: https://attackerkb.com/assessments/40f2eb9e-ea23-4efe-8af8-87efff9250d7
Topic description: "pgAdmin <= 8.5 is affected by a multi-factor authentication bypass vulnerability ..."
"pgAdmin is vulnerable to a multi-factor authentication bypass ([CWE-287](https://cwe.mitre.org/data/definitions/287.html)) whereby an attacker with knowledge of an account’s credentials can manage files and make SQL queries regardless of whether or not the account has been configured with MFA ..."
Link: https://attackerkb.com/assessments/40f2eb9e-ea23-4efe-8af8-87efff9250d7
0
1
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-2044
Topic description: "pgAdmin <= 8.3 is affected by a path-traversal vulnerability while deserializing users’ sessions in the session handling code ..."
"pgAdmin versions <=8.3 are vulnerable to a path traversal vulnerability in the session handling logic ..."
Link: https://attackerkb.com/assessments/010cd2a6-6916-4678-a313-7fe079646dfc
Topic description: "pgAdmin <= 8.3 is affected by a path-traversal vulnerability while deserializing users’ sessions in the session handling code ..."
"pgAdmin versions <=8.3 are vulnerable to a path traversal vulnerability in the session handling logic ..."
Link: https://attackerkb.com/assessments/010cd2a6-6916-4678-a313-7fe079646dfc
0
1
1
AttackerKB
attackerkb
It seems the www. subdomain of AttackerKB is gone, changed the script to generate links accordingly.
Sorry for the inconvenience!
Sorry for the inconvenience!
0
1
1
AttackerKB
attackerkb
New assessment for topic: CVE-2024-4040
Topic description: "A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server. ..."
"CVE-2024-4040 was discovered by Simon Garrelou, of Airbus CERT, and it's a server-side template injection vulnerability for the CrushFTP managed file transfer suite ..."
Link: https://www.attackerkb.com/assessments/3e0e1e02-fd8f-4036-a085-1348c36a62f8
Topic description: "A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server. ..."
"CVE-2024-4040 was discovered by Simon Garrelou, of Airbus CERT, and it's a server-side template injection vulnerability for the CrushFTP managed file transfer suite ..."
Link: https://www.attackerkb.com/assessments/3e0e1e02-fd8f-4036-a085-1348c36a62f8
0
0
0
AttackerKB
attackerkb
New Rapid7 Analysis on AttackerKB topic: CVE-2024-4040
"On Friday, April 19, 2024, managed file transfer vendor CrushFTP [released information](https://www.bleepingcomputer.com/news/security/crushftp-warns-users-to-patch-exploited-zero-day-immediately/) to a private mailing list on a new zero-day vulnerability affecting CrushFTP versions below 10.7.1 and 11.1.0 (as well as legacy 9.x versions) across all platforms ..."
Link: https://www.attackerkb.com/topics/46707820-42d9-44a3-a84a-7f8465055536
"On Friday, April 19, 2024, managed file transfer vendor CrushFTP [released information](https://www.bleepingcomputer.com/news/security/crushftp-warns-users-to-patch-exploited-zero-day-immediately/) to a private mailing list on a new zero-day vulnerability affecting CrushFTP versions below 10.7.1 and 11.1.0 (as well as legacy 9.x versions) across all platforms ..."
Link: https://www.attackerkb.com/topics/46707820-42d9-44a3-a84a-7f8465055536
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-38511
Topic description: "iTop is an IT service management platform ..."
"[php_filter_chains_oracle_exploit](https://github.com/synacktiv/php_filter_chains_oracle_exploit) makes it easy to wayponize. ..."
Link: https://www.attackerkb.com/assessments/fb17e697-4923-4bf1-8e60-b77a7bb4072a
Topic description: "iTop is an IT service management platform ..."
"[php_filter_chains_oracle_exploit](https://github.com/synacktiv/php_filter_chains_oracle_exploit) makes it easy to wayponize. ..."
Link: https://www.attackerkb.com/assessments/fb17e697-4923-4bf1-8e60-b77a7bb4072a
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-3400
Topic description: "A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. ..."
"CVE-2024-3400, which is technically a chain of two vulnerabilities, is an unauthenticated remote code execution exploit for software with a broad public attack surface ..."
Link: https://www.attackerkb.com/assessments/50f9099c-6b92-4ce1-bb60-a30de187735b
Topic description: "A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. ..."
"CVE-2024-3400, which is technically a chain of two vulnerabilities, is an unauthenticated remote code execution exploit for software with a broad public attack surface ..."
Link: https://www.attackerkb.com/assessments/50f9099c-6b92-4ce1-bb60-a30de187735b
0
0
0
AttackerKB
attackerkb
New Rapid7 Analysis on AttackerKB topic: CVE-2024-3400
"On April 12, 2024, Palo Alto Networks published an advisory for a critical unauthenticated command injection vulnerability affecting several recent versions of [PAN-OS](https://docs.paloaltonetworks.com/pan-os), the software that runs on most modern Palo Alto Networks firewall appliances ..."
Link: https://www.attackerkb.com/topics/2fff9e98-f7c9-4c36-9bae-05942516e954
"On April 12, 2024, Palo Alto Networks published an advisory for a critical unauthenticated command injection vulnerability affecting several recent versions of [PAN-OS](https://docs.paloaltonetworks.com/pan-os), the software that runs on most modern Palo Alto Networks firewall appliances ..."
Link: https://www.attackerkb.com/topics/2fff9e98-f7c9-4c36-9bae-05942516e954
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-3400
Topic description: "A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. ..."
"An OS command injection vulnerability exists within Palo Alto Global Protect effecting the following versions with an overall rating of 10/10: ..."
Link: https://www.attackerkb.com/assessments/01172dad-2c49-4d1f-b25a-e9a090b0d9ca
Topic description: "A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and distinct feature configurations may enable an unauthenticated attacker to execute arbitrary code with root privileges on the firewall. ..."
"An OS command injection vulnerability exists within Palo Alto Global Protect effecting the following versions with an overall rating of 10/10: ..."
Link: https://www.attackerkb.com/assessments/01172dad-2c49-4d1f-b25a-e9a090b0d9ca
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-48788
Topic description: "A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets. ..."
"An SQLi injection vulnerability exists in FortiNet FortiClient EMS (Endpoint Management Server) ..."
Link: https://www.attackerkb.com/assessments/580f324d-6255-4062-b508-2d0ffa1bf44c
Topic description: "A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets. ..."
"An SQLi injection vulnerability exists in FortiNet FortiClient EMS (Endpoint Management Server) ..."
Link: https://www.attackerkb.com/assessments/580f324d-6255-4062-b508-2d0ffa1bf44c
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-50386
Topic description: "Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache Solr.This issue affects Apache Solr: from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1. ..."
"Apache Solr from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1 is affected by an Unrestricted Upload of File with Dangerous Type vulnerability which can result in remote code execution in the context of the user running Apache Solr. ..."
Link: https://www.attackerkb.com/assessments/2e43413d-7cc0-46aa-a975-0609302e8815
Topic description: "Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache Solr.This issue affects Apache Solr: from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1. ..."
"Apache Solr from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1 is affected by an Unrestricted Upload of File with Dangerous Type vulnerability which can result in remote code execution in the context of the user running Apache Solr. ..."
Link: https://www.attackerkb.com/assessments/2e43413d-7cc0-46aa-a975-0609302e8815
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-3094
Topic description: "Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0 ..."
"On the one hand, it's backdoored software, so "exploitation" could arguably have already occurred (in the form of an already executed supply chain attack) ..."
Link: https://www.attackerkb.com/assessments/c9511426-7250-4e5f-bd18-d42861f3ccae
Topic description: "Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0 ..."
"On the one hand, it's backdoored software, so "exploitation" could arguably have already occurred (in the form of an already executed supply chain attack) ..."
Link: https://www.attackerkb.com/assessments/c9511426-7250-4e5f-bd18-d42861f3ccae
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-3094
Topic description: "Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0 ..."
"xz backdoor leads to authentication bypass on OpenSSH ..."
Link: https://www.attackerkb.com/assessments/12d28505-ef0b-42d3-ab4b-4854d443b6dc
Topic description: "Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0 ..."
"xz backdoor leads to authentication bypass on OpenSSH ..."
Link: https://www.attackerkb.com/assessments/12d28505-ef0b-42d3-ab4b-4854d443b6dc
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-3094
Topic description: "Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0 ..."
"This one has gained significant attention over the past few days ..."
Link: https://www.attackerkb.com/assessments/05a530d9-2cbb-4405-baec-c6ed4a9472a8
Topic description: "Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0 ..."
"This one has gained significant attention over the past few days ..."
Link: https://www.attackerkb.com/assessments/05a530d9-2cbb-4405-baec-c6ed4a9472a8
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-20269
Topic description: "A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or an authenticated, remote attacker to establish a clientless SSL VPN session with an unauthorized user. ..."
"Rapid7 observed pre-patch exploitation of this vulnerability from March through at least August of 2023 ..."
Link: https://www.attackerkb.com/assessments/d8b380b1-597a-4352-8807-975512f6cd89
Topic description: "A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or an authenticated, remote attacker to establish a clientless SSL VPN session with an unauthorized user. ..."
"Rapid7 observed pre-patch exploitation of this vulnerability from March through at least August of 2023 ..."
Link: https://www.attackerkb.com/assessments/d8b380b1-597a-4352-8807-975512f6cd89
0
1
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-24725
Topic description: "Gibbon through 26.0.00 allows remote authenticated users to conduct PHP deserialization attacks via columnOrder in a POST request to the modules/System%20Admin/import_run.php&type=externalAssessment&step=4 URI. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/51ea97f1-d279-45df-9b7a-b2fad2252273
Topic description: "Gibbon through 26.0.00 allows remote authenticated users to conduct PHP deserialization attacks via columnOrder in a POST request to the modules/System%20Admin/import_run.php&type=externalAssessment&step=4 URI. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/51ea97f1-d279-45df-9b7a-b2fad2252273
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-41724
Topic description: "An unauthenticated threat actor can execute arbitrary commands on the underlying operating system of the appliance within the same physical or logical network ..."
"Ivanti Standalone Sentry serves as a conduit, connecting devices with an organization's ActiveSync-compatible email systems (like Microsoft Exchange Server) or other backend resources (such as Microsoft SharePoint server) ..."
Link: https://www.attackerkb.com/assessments/62df9c8e-67f9-4b0a-bf01-18217ce3218b
Topic description: "An unauthenticated threat actor can execute arbitrary commands on the underlying operating system of the appliance within the same physical or logical network ..."
"Ivanti Standalone Sentry serves as a conduit, connecting devices with an organization's ActiveSync-compatible email systems (like Microsoft Exchange Server) or other backend resources (such as Microsoft SharePoint server) ..."
Link: https://www.attackerkb.com/assessments/62df9c8e-67f9-4b0a-bf01-18217ce3218b
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-20767
Topic description: "ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control vulnerability that could lead to arbitrary file system read ..."
"CVE-2024-20767 highlights a vulnerability in a ColdFusion application, specifically within a server management component (`/CFIDE/adminapi/_servermanager/servermanager.cfc`) ..."
Link: https://www.attackerkb.com/assessments/c8f6490e-19ef-4780-9f2e-2092da6f0f8b
Topic description: "ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control vulnerability that could lead to arbitrary file system read ..."
"CVE-2024-20767 highlights a vulnerability in a ColdFusion application, specifically within a server management component (`/CFIDE/adminapi/_servermanager/servermanager.cfc`) ..."
Link: https://www.attackerkb.com/assessments/c8f6490e-19ef-4780-9f2e-2092da6f0f8b
0
1
1
AttackerKB
attackerkb
New assessment for topic: CVE-2024-23759
Topic description: "Deserialization of Untrusted Data in Gambio through 4.9.2.0 allows attackers to run arbitrary code via "search" parameter of the Parcelshopfinder/AddAddressBookEntry" function. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/eb1a9fc0-e1ae-4953-88b8-541a251a0263
Topic description: "Deserialization of Untrusted Data in Gambio through 4.9.2.0 allows attackers to run arbitrary code via "search" parameter of the Parcelshopfinder/AddAddressBookEntry" function. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/eb1a9fc0-e1ae-4953-88b8-541a251a0263
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-48788
Topic description: "A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/bd0a0b70-bf0b-4079-a334-c636135a39cc
Topic description: "A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/bd0a0b70-bf0b-4079-a334-c636135a39cc
0
0
0