AttackerKB
attackerkb
New assessment for topic: CVE-2024-30080
Topic description: "Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/00f64473-c826-4bb2-b199-25069dd56068
Topic description: "Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/00f64473-c826-4bb2-b199-25069dd56068
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-28995
Topic description: " ..."
"Based upon our [Rapid7 Analysis](https://attackerkb.com/topics/2k7UrkHyl3/cve-2024-28995/rapid7-analysis), I have rated the attacker value of this vulnerability as Very High, as an unauthenticated attacker can read files from a server, and the vulnerable product is a file tranfser solution ..."
Link: https://attackerkb.com/assessments/a8ea00b2-323b-4d09-b313-3cfc404d8542
Topic description: " ..."
"Based upon our [Rapid7 Analysis](https://attackerkb.com/topics/2k7UrkHyl3/cve-2024-28995/rapid7-analysis), I have rated the attacker value of this vulnerability as Very High, as an unauthenticated attacker can read files from a server, and the vulnerable product is a file tranfser solution ..."
Link: https://attackerkb.com/assessments/a8ea00b2-323b-4d09-b313-3cfc404d8542
0
0
0
AttackerKB
attackerkb
New Rapid7 Analysis on AttackerKB topic: CVE-2024-28995
"On June 5, 2024, SolarWinds published an [advisory](https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28995) for CVE-2024-28995, a high-severity directory traversal vulnerability affecting their file transfer solution Serv-U ..."
Link: https://attackerkb.com/topics/ec88a622-e23a-4ed4-b4bd-adca7bee9acf
"On June 5, 2024, SolarWinds published an [advisory](https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28995) for CVE-2024-28995, a high-severity directory traversal vulnerability affecting their file transfer solution Serv-U ..."
Link: https://attackerkb.com/topics/ec88a622-e23a-4ed4-b4bd-adca7bee9acf
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-4577
Topic description: "In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use "Best-Fit" behavior to replace characters in command line given to Win32 API functions ..."
"I have rated the attacker value as high, as if the requirement to exploitation are met the attacker can get remote unauthenticated RCE on the target Windows server ..."
Link: https://attackerkb.com/assessments/04d81142-6675-4a32-8d7f-e573b8f7ddde
Topic description: "In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use "Best-Fit" behavior to replace characters in command line given to Win32 API functions ..."
"I have rated the attacker value as high, as if the requirement to exploitation are met the attacker can get remote unauthenticated RCE on the target Windows server ..."
Link: https://attackerkb.com/assessments/04d81142-6675-4a32-8d7f-e573b8f7ddde
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-23692
Topic description: "Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability ..."
"The Rejetto HTTP File Server (HFS) version 2.x is vulnerable to an unauthenticated server side template injection (SSTI) vulnerability ..."
Link: https://attackerkb.com/assessments/f5c5359d-2446-4e33-a1a2-6a66aa2fb5f6
Topic description: "Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability ..."
"The Rejetto HTTP File Server (HFS) version 2.x is vulnerable to an unauthenticated server side template injection (SSTI) vulnerability ..."
Link: https://attackerkb.com/assessments/f5c5359d-2446-4e33-a1a2-6a66aa2fb5f6
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-4358
Topic description: "In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability. ..."
"So far, 2024 has seen a few notable vulnerabilities, such as [CVE-2024-1709](https://www.rapid7.com/blog/post/2024/02/20/etr-high-risk-vulnerabilities-in-connectwise-screenconnect/), that attack setup wizard flows for authentication bypass ..."
Link: https://attackerkb.com/assessments/20d30f34-ff47-402d-9991-678b34b3fbb4
Topic description: "In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability. ..."
"So far, 2024 has seen a few notable vulnerabilities, such as [CVE-2024-1709](https://www.rapid7.com/blog/post/2024/02/20/etr-high-risk-vulnerabilities-in-connectwise-screenconnect/), that attack setup wizard flows for authentication bypass ..."
Link: https://attackerkb.com/assessments/20d30f34-ff47-402d-9991-678b34b3fbb4
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-22026
Topic description: "A local privilege escalation vulnerability in EPMM before 12.1.0.0 allows an authenticated local user to bypass shell restriction and execute arbitrary commands on the appliance. ..."
"Ivanti EPMM (previously known as MobileIron Core) is vulnerable to a local privilege escalation vulnerability ..."
Link: https://attackerkb.com/assessments/8e941ab8-690f-4125-b598-9a8ff7d935f0
Topic description: "A local privilege escalation vulnerability in EPMM before 12.1.0.0 allows an authenticated local user to bypass shell restriction and execute arbitrary commands on the appliance. ..."
"Ivanti EPMM (previously known as MobileIron Core) is vulnerable to a local privilege escalation vulnerability ..."
Link: https://attackerkb.com/assessments/8e941ab8-690f-4125-b598-9a8ff7d935f0
0
0
1
AttackerKB
attackerkb
New assessment for topic: CVE-2024-24919
Topic description: "Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades ..."
"This is trivial to exploit ..."
Link: https://attackerkb.com/assessments/ad36fea3-37bf-43b3-a5d3-1e4715d23ecb
Topic description: "Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades ..."
"This is trivial to exploit ..."
Link: https://attackerkb.com/assessments/ad36fea3-37bf-43b3-a5d3-1e4715d23ecb
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-24919
Topic description: "Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades ..."
"On May 28, 2024, Check Point published an advisory for an unauthenticated information disclosure vulnerability affecting Check Point Security Gateway devices configured with either the “IPSec VPN” or “Mobile Access” software blade ..."
Link: https://attackerkb.com/assessments/1b3e554c-47a1-40f1-a09a-ea867bb4f8a4
Topic description: "Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades ..."
"On May 28, 2024, Check Point published an advisory for an unauthenticated information disclosure vulnerability affecting Check Point Security Gateway devices configured with either the “IPSec VPN” or “Mobile Access” software blade ..."
Link: https://attackerkb.com/assessments/1b3e554c-47a1-40f1-a09a-ea867bb4f8a4
0
1
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-21683
Topic description: "This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. ..."
"This vulnerability can be leveraged by an authenticated attacker to execute OS commands within the context of the Confluence application server ..."
Link: https://attackerkb.com/assessments/5ad314a1-9fd7-47d7-835f-f29680b3961d
Topic description: "This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of Confluence Data Center and Server. ..."
"This vulnerability can be leveraged by an authenticated attacker to execute OS commands within the context of the Confluence application server ..."
Link: https://attackerkb.com/assessments/5ad314a1-9fd7-47d7-835f-f29680b3961d
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-28741
Topic description: "Cross Site Scripting vulnerability in EginDemirbilek NorthStar C2 v1 allows a remote attacker to execute arbitrary code via the login.php component. ..."
" [NorthStarC2]([https://github.com/EnginDemirbilek/NorthStarC2](https://github.com/EnginDemirbilek/NorthStarC2)) is an open source web based command and control framework used by real world threat actors including [UNC3890](https://www.mandiant.com/resources/blog/suspected-iranian-actor-targeting-israeli-shipping](https://www.mandiant.com/resources/blog/suspected-iranian-actor-targeting-israeli-shipping), [APT33](https://exchange.xforce.ibmcloud.com/collection/Recent-Hive0016-Infrastructure-and-Use-of-NorthStarC2-Pentest-Framework-77196fe57bb122088c210286da5d5b20) and [Patchwork/APT-Q-36](https://www.sangfor.com/farsight-labs-threat-intelligence/cybersecurity/may-hot-apt-security-events-techniques-tracker) to name a few ..."
Link: https://attackerkb.com/assessments/0e9af56e-90c5-4900-8384-9d33bdfe7e26
Topic description: "Cross Site Scripting vulnerability in EginDemirbilek NorthStar C2 v1 allows a remote attacker to execute arbitrary code via the login.php component. ..."
" [NorthStarC2]([https://github.com/EnginDemirbilek/NorthStarC2](https://github.com/EnginDemirbilek/NorthStarC2)) is an open source web based command and control framework used by real world threat actors including [UNC3890](https://www.mandiant.com/resources/blog/suspected-iranian-actor-targeting-israeli-shipping](https://www.mandiant.com/resources/blog/suspected-iranian-actor-targeting-israeli-shipping), [APT33](https://exchange.xforce.ibmcloud.com/collection/Recent-Hive0016-Infrastructure-and-Use-of-NorthStarC2-Pentest-Framework-77196fe57bb122088c210286da5d5b20) and [Patchwork/APT-Q-36](https://www.sangfor.com/farsight-labs-threat-intelligence/cybersecurity/may-hot-apt-security-events-techniques-tracker) to name a few ..."
Link: https://attackerkb.com/assessments/0e9af56e-90c5-4900-8384-9d33bdfe7e26
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-31819
Topic description: "An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component. ..."
"[WWNB AVideo](https://github.com/WWBN/AVideo) is a versatile and advanced video streaming platform tailored for individual content creators, businesses, and developers alike ..."
Link: https://attackerkb.com/assessments/982c48b6-69a7-4c4b-aa08-5c4ca5a482a3
Topic description: "An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component. ..."
"[WWNB AVideo](https://github.com/WWBN/AVideo) is a versatile and advanced video streaming platform tailored for individual content creators, businesses, and developers alike ..."
Link: https://attackerkb.com/assessments/982c48b6-69a7-4c4b-aa08-5c4ca5a482a3
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-43177
Topic description: "CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes. ..."
"CVE-2023-43177: Critical Unauthenticated Remote Code Execution in CrushFTP ..."
Link: https://attackerkb.com/assessments/372ce344-cefb-4da1-8ba7-faf072bf4841
Topic description: "CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes. ..."
"CVE-2023-43177: Critical Unauthenticated Remote Code Execution in CrushFTP ..."
Link: https://attackerkb.com/assessments/372ce344-cefb-4da1-8ba7-faf072bf4841
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2023-43177
Topic description: "CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes. ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/80d7954e-d072-468f-8a9f-9788e8b02af8
Topic description: "CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes. ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/80d7954e-d072-468f-8a9f-9788e8b02af8
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-22729
Topic description: "NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter on the login page. ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/1671c0a1-d996-4224-8034-3782acdb3bad
Topic description: "NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter on the login page. ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/1671c0a1-d996-4224-8034-3782acdb3bad
0
1
0
AttackerKB
attackerkb
New assessment for topic: CVE-2019-1068
Topic description: "A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'. ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/46f2ab9e-5758-48a6-8c91-50f57afef149
Topic description: "A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'. ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/46f2ab9e-5758-48a6-8c91-50f57afef149
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-22026
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"CVE-2024-22026 is a local privilege escalation vulnerability in Ivanti EPMM (formerly MobileIron) server versions prior to 12.1.0.0, 12.0.0.0, and 11.12.0.1 ..."
Link: https://attackerkb.com/assessments/7f7b046e-eae8-4ef0-940e-eb49334c203e
Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."
"CVE-2024-22026 is a local privilege escalation vulnerability in Ivanti EPMM (formerly MobileIron) server versions prior to 12.1.0.0, 12.0.0.0, and 11.12.0.1 ..."
Link: https://attackerkb.com/assessments/7f7b046e-eae8-4ef0-940e-eb49334c203e
0
1
1
AttackerKB
attackerkb
New assessment for topic: CVE-2023-50386
Topic description: "Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache Solr.This issue affects Apache Solr: from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1. ..."
"Rapid7 pen testers have noted they have encountered vulnerable versions of this software on engagements ..."
Link: https://attackerkb.com/assessments/4a8895bf-6532-45bf-bdbb-fea7a9705d34
Topic description: "Improper Control of Dynamically-Managed Code Resources, Unrestricted Upload of File with Dangerous Type, Inclusion of Functionality from Untrusted Control Sphere vulnerability in Apache Solr.This issue affects Apache Solr: from 6.0.0 through 8.11.2, from 9.0.0 before 9.4.1. ..."
"Rapid7 pen testers have noted they have encountered vulnerable versions of this software on engagements ..."
Link: https://attackerkb.com/assessments/4a8895bf-6532-45bf-bdbb-fea7a9705d34
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-21793
Topic description: " ..."
"An unauthenticated attacker can exploit this vulnerability to execute malicious SQL statements through the BIG-IP NEXT Central Manager API (URI). ..."
Link: https://attackerkb.com/assessments/90432b58-a844-4901-94ba-16109b65f110
Topic description: " ..."
"An unauthenticated attacker can exploit this vulnerability to execute malicious SQL statements through the BIG-IP NEXT Central Manager API (URI). ..."
Link: https://attackerkb.com/assessments/90432b58-a844-4901-94ba-16109b65f110
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-26026
Topic description: " ..."
"BIG-IP Next is “a completely new incarnation” of F5’s BIG-IP devices/modules, which are used for managing and inspecting network and application traffic ..."
Link: https://attackerkb.com/assessments/a5768ee9-8573-4b48-8ad0-b0a97df0458c
Topic description: " ..."
"BIG-IP Next is “a completely new incarnation” of F5’s BIG-IP devices/modules, which are used for managing and inspecting network and application traffic ..."
Link: https://attackerkb.com/assessments/a5768ee9-8573-4b48-8ad0-b0a97df0458c
0
0
0