AttackerKB
attackerkb
New assessment for topic: CVE-2023-46805
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"CVE-2023-46805 is an authentication bypass vulnerability found in the web component of Ivanti Connect Secure (ICS), which was previously known as Pulse Connect Secure and Ivanti Policy Secure ..."
Link: https://www.attackerkb.com/assessments/5199772a-a6f1-486c-b961-5ea1b01f3a5f
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"CVE-2023-46805 is an authentication bypass vulnerability found in the web component of Ivanti Connect Secure (ICS), which was previously known as Pulse Connect Secure and Ivanti Policy Secure ..."
Link: https://www.attackerkb.com/assessments/5199772a-a6f1-486c-b961-5ea1b01f3a5f
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-21887
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"CVE-2024-21887 is a command injection vulnerability in the web component of Ivanti Connect Secure (ICS) and Ivanti Policy Secure ..."
Link: https://www.attackerkb.com/assessments/8ab073cf-5e59-456d-9ac7-a54585f6a444
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"CVE-2024-21887 is a command injection vulnerability in the web component of Ivanti Connect Secure (ICS) and Ivanti Policy Secure ..."
Link: https://www.attackerkb.com/assessments/8ab073cf-5e59-456d-9ac7-a54585f6a444
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-21650
Topic description: "XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it ..."
"XWiki is a Java-based, highly customizable and extensible enterprise-level Wiki platform, offering cross-database support, a powerful plugin system, a flexible template engine, and comprehensive security management, suitable for knowledge management and collaboration across various business needs. ..."
Link: https://www.attackerkb.com/assessments/cd0d2dd8-7716-4d16-b30a-4c470e9d57ed
Topic description: "XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it ..."
"XWiki is a Java-based, highly customizable and extensible enterprise-level Wiki platform, offering cross-database support, a powerful plugin system, a flexible template engine, and comprehensive security management, suitable for knowledge management and collaboration across various business needs. ..."
Link: https://www.attackerkb.com/assessments/cd0d2dd8-7716-4d16-b30a-4c470e9d57ed
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-4911
Topic description: "A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable ..."
"This is a privilege escalation vulnerability in the dynamic loader of glibc ..."
Link: https://www.attackerkb.com/assessments/bb155c59-1ee8-4dd0-a23e-830763217741
Topic description: "A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable ..."
"This is a privilege escalation vulnerability in the dynamic loader of glibc ..."
Link: https://www.attackerkb.com/assessments/bb155c59-1ee8-4dd0-a23e-830763217741
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-7102
Topic description: "Use of a Third Party library produced a vulnerability in Barracuda Networks Inc ..."
"Rapid7 has confirmed indicators of compromise from this zero-day attack in multiple customer environments ..."
Link: https://www.attackerkb.com/assessments/c8000a4e-9d28-4272-b895-486c41b09cda
Topic description: "Use of a Third Party library produced a vulnerability in Barracuda Networks Inc ..."
"Rapid7 has confirmed indicators of compromise from this zero-day attack in multiple customer environments ..."
Link: https://www.attackerkb.com/assessments/c8000a4e-9d28-4272-b895-486c41b09cda
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-50445
Topic description: "Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.6, AXT1800 v4.4.6, MT3000 v4.4.6, MT2500 v4.4.6, MT6000 v4.5.0, MT1300 v4.3.7, MT300N-V2 v4.3.7, AR750S v4.3.7, AR750 v4.3.7, AR300M v4.3.7, and B1300 v4.3.7., allows local attackers to execute arbitrary code via the get_system_log and get_crash_log functions of the logread module, as well as the upgrade_online function of the upgrade module. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/c7795d26-0464-417f-88e9-64268a6d10c0
Topic description: "Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.6, AXT1800 v4.4.6, MT3000 v4.4.6, MT2500 v4.4.6, MT6000 v4.5.0, MT1300 v4.3.7, MT300N-V2 v4.3.7, AR750S v4.3.7, AR750 v4.3.7, AR300M v4.3.7, and B1300 v4.3.7., allows local attackers to execute arbitrary code via the get_system_log and get_crash_log functions of the logread module, as well as the upgrade_online function of the upgrade module. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/c7795d26-0464-417f-88e9-64268a6d10c0
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-50919
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/ae4e1e4a-8775-4d8d-adc9-bcf6e9546117
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/ae4e1e4a-8775-4d8d-adc9-bcf6e9546117
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-49070
Topic description: " ..."
"CVE-2023-49070 is a critical security vulnerability in Apache OFBiz, a comprehensive open-source enterprise resource planning (ERP) system ..."
Link: https://www.attackerkb.com/assessments/7bf5ccde-3d3c-49a0-af90-f061a69cb092
Topic description: " ..."
"CVE-2023-49070 is a critical security vulnerability in Apache OFBiz, a comprehensive open-source enterprise resource planning (ERP) system ..."
Link: https://www.attackerkb.com/assessments/7bf5ccde-3d3c-49a0-af90-f061a69cb092
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-7102
Topic description: "Use of a Third Party library produced a vulnerability in Barracuda Networks Inc ..."
"During an investigation by Barracuda, it has been found that an attacker exploited a vulnerability known as Arbitrary Code Execution (ACE) in a third-party library called Spreadsheet::ParseExcel ..."
Link: https://www.attackerkb.com/assessments/c29a266b-2fc6-4bf4-a4e0-b75c64af6f55
Topic description: "Use of a Third Party library produced a vulnerability in Barracuda Networks Inc ..."
"During an investigation by Barracuda, it has been found that an attacker exploited a vulnerability known as Arbitrary Code Execution (ACE) in a third-party library called Spreadsheet::ParseExcel ..."
Link: https://www.attackerkb.com/assessments/c29a266b-2fc6-4bf4-a4e0-b75c64af6f55
0
1
1
AttackerKB
attackerkb
New assessment for topic: CVE-2023-46604
Topic description: "Apache ActiveMQ is vulnerable to Remote Code Execution.The vulnerability may allow a remote attacker with network access to a broker to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath. ..."
"Based on [vendor assessment](https://activemq.apache.org/news/cve-2023-46604) the vulnerability (deserialization of untrusted data) is present in Active MQ *Artemis* too, but the Spring class used in the public exploit is not available in this flavor of the software (only works against ActiveMQ *Classic*) ..."
Link: https://www.attackerkb.com/assessments/6391e374-1e7f-4b15-b299-bc3b47128d9d
Topic description: "Apache ActiveMQ is vulnerable to Remote Code Execution.The vulnerability may allow a remote attacker with network access to a broker to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath. ..."
"Based on [vendor assessment](https://activemq.apache.org/news/cve-2023-46604) the vulnerability (deserialization of untrusted data) is present in Active MQ *Artemis* too, but the Spring class used in the public exploit is not available in this flavor of the software (only works against ActiveMQ *Classic*) ..."
Link: https://www.attackerkb.com/assessments/6391e374-1e7f-4b15-b299-bc3b47128d9d
0
1
1
AttackerKB
attackerkb
New assessment for topic: CVE-2023-28303
Topic description: "Windows Snipping Tool Information Disclosure Vulnerability ..."
"This can be used to recover secret information (Qr codes, passwords, etc.) from a cropped image with Microsoft Windows snipping tool abusing the Acropalypse vulnerability. ..."
Link: https://www.attackerkb.com/assessments/a1a1fdcc-eaf6-4bb6-94a7-edb0cb69ca09
Topic description: "Windows Snipping Tool Information Disclosure Vulnerability ..."
"This can be used to recover secret information (Qr codes, passwords, etc.) from a cropped image with Microsoft Windows snipping tool abusing the Acropalypse vulnerability. ..."
Link: https://www.attackerkb.com/assessments/a1a1fdcc-eaf6-4bb6-94a7-edb0cb69ca09
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-0126
Topic description: "Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory. ..."
"SonicWall Secure Mobile Access (SMA) 1000 series contains a pre-authentication path traversal vulnerability ..."
Link: https://www.attackerkb.com/assessments/68342ac4-8437-4340-aced-84d86ea40df0
Topic description: "Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory. ..."
"SonicWall Secure Mobile Access (SMA) 1000 series contains a pre-authentication path traversal vulnerability ..."
Link: https://www.attackerkb.com/assessments/68342ac4-8437-4340-aced-84d86ea40df0
0
1
1
AttackerKB
attackerkb
New assessment for topic: CVE-2023-41892
Topic description: "Craft CMS is a platform for creating digital experiences ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/80fbfcd6-7447-4b85-8fd8-05deb060d9d0
Topic description: "Craft CMS is a platform for creating digital experiences ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/80fbfcd6-7447-4b85-8fd8-05deb060d9d0
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-50164
Topic description: "An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. ..."
"Based on our [Rapid7 Analysis](https://attackerkb.com/topics/pe3CCtOE81/cve-2023-50164/rapid7-analysis), the attacker value of this vulnerability is High, as successful exploitation can result in remote code execution via arbitrary file uploads, such as uploading a web shell or similar ..."
Link: https://www.attackerkb.com/assessments/f3d2f8fe-aa83-48e4-b3bf-f2f11af61e9c
Topic description: "An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. ..."
"Based on our [Rapid7 Analysis](https://attackerkb.com/topics/pe3CCtOE81/cve-2023-50164/rapid7-analysis), the attacker value of this vulnerability is High, as successful exploitation can result in remote code execution via arbitrary file uploads, such as uploading a web shell or similar ..."
Link: https://www.attackerkb.com/assessments/f3d2f8fe-aa83-48e4-b3bf-f2f11af61e9c
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-50164
Topic description: "An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. ..."
"Despite the buzz on this one, so far we haven't been able to identify any real-world applications that are vulnerable and exploitable out of the box, though that doesn't mean they don't exist ..."
Link: https://www.attackerkb.com/assessments/c4eef41a-bcab-44d3-9154-922a7d699370
Topic description: "An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. ..."
"Despite the buzz on this one, so far we haven't been able to identify any real-world applications that are vulnerable and exploitable out of the box, though that doesn't mean they don't exist ..."
Link: https://www.attackerkb.com/assessments/c4eef41a-bcab-44d3-9154-922a7d699370
0
0
0
AttackerKB
attackerkb
New Rapid7 Analysis on AttackerKB topic: CVE-2023-50164
"[Apache Struts](https://struts.apache.org/) is a popular Java web application framework ..."
Link: https://www.attackerkb.com/topics/fc6a2171-de79-425d-b682-6d95d0f8e42d
"[Apache Struts](https://struts.apache.org/) is a popular Java web application framework ..."
Link: https://www.attackerkb.com/topics/fc6a2171-de79-425d-b682-6d95d0f8e42d
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-36745
Topic description: "Microsoft Exchange Server Remote Code Execution Vulnerability ..."
"I've marked this as difficult to exploit due to the number of conditions that must be met for an attacker to successfully leverage it. ..."
Link: https://www.attackerkb.com/assessments/e1c6305b-67cb-405c-8d76-26f1247c3c63
Topic description: "Microsoft Exchange Server Remote Code Execution Vulnerability ..."
"I've marked this as difficult to exploit due to the number of conditions that must be met for an attacker to successfully leverage it. ..."
Link: https://www.attackerkb.com/assessments/e1c6305b-67cb-405c-8d76-26f1247c3c63
0
1
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-6448
Topic description: "Unitronics Vision Series PLCs and HMIs use default administrative passwords ..."
"The Cybersecurity and Infrastructure Security Agency (CISA) is actively addressing a situation involving the unauthorized use of Unitronics programmable logic controllers (PLCs), specifically in the Water and Wastewater Systems (WWS) Sector ..."
Link: https://www.attackerkb.com/assessments/f728e029-837a-4460-9570-b4d540e59425
Topic description: "Unitronics Vision Series PLCs and HMIs use default administrative passwords ..."
"The Cybersecurity and Infrastructure Security Agency (CISA) is actively addressing a situation involving the unauthorized use of Unitronics programmable logic controllers (PLCs), specifically in the Water and Wastewater Systems (WWS) Sector ..."
Link: https://www.attackerkb.com/assessments/f728e029-837a-4460-9570-b4d540e59425
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2021-26899
Topic description: "Windows UPnP Device Host Elevation of Privilege Vulnerability ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/a36fc4de-cab6-44cb-832c-da6b26a6fa27
Topic description: "Windows UPnP Device Host Elevation of Privilege Vulnerability ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/a36fc4de-cab6-44cb-832c-da6b26a6fa27
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2016-7048
Topic description: "The interactive installer in PostgreSQL before 9.3.15, 9.4.x before 9.4.10, and 9.5.x before 9.5.5 might allow remote attackers to execute arbitrary code by leveraging use of HTTP to download software. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/6f077787-e575-427b-a214-6d1340e6aa4b
Topic description: "The interactive installer in PostgreSQL before 9.3.15, 9.4.x before 9.4.10, and 9.5.x before 9.5.5 might allow remote attackers to execute arbitrary code by leveraging use of HTTP to download software. ..."
"[metadata only] ..."
Link: https://www.attackerkb.com/assessments/6f077787-e575-427b-a214-6d1340e6aa4b
0
0
0