AttackerKB
attackerkb
New assessment for topic: CVE-2024-20399
Topic description: "A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. ..."
"This vulnerability is highly technical in that it is closer to a jailbreak than a traditional exploit ..."
Link: https://attackerkb.com/assessments/9a60ce65-b2d9-48fc-8323-02717400391b
Topic description: "A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. ..."
"This vulnerability is highly technical in that it is closer to a jailbreak than a traditional exploit ..."
Link: https://attackerkb.com/assessments/9a60ce65-b2d9-48fc-8323-02717400391b
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-23897
Topic description: "Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system. ..."
"There seems to only be [one main (public) report of exploitation](https://x.com/shoucccc/status/1750601321831633026) that folks are [quoting](https://www.securityweek.com/45000-exposed-jenkins-instances-found-amid-reports-of-in-the-wild-exploitation/) for this CVE, but the UC Berkeley researcher's statement indicated fairly high confidence that they were seeing actual exploitation against honeypots, not just scanning ..."
Link: https://attackerkb.com/assessments/980d6913-83fe-4b34-9e70-394eeee7e004
Topic description: "Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system. ..."
"There seems to only be [one main (public) report of exploitation](https://x.com/shoucccc/status/1750601321831633026) that folks are [quoting](https://www.securityweek.com/45000-exposed-jenkins-instances-found-amid-reports-of-in-the-wild-exploitation/) for this CVE, but the UC Berkeley researcher's statement indicated fairly high confidence that they were seeing actual exploitation against honeypots, not just scanning ..."
Link: https://attackerkb.com/assessments/980d6913-83fe-4b34-9e70-394eeee7e004
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2021-20038
Topic description: "A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a 'nobody' user in the appliance ..."
"Exploited by North Korean state-sponsored attackers according to a July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/4a34d4ee-97c7-40c9-86e4-796897b05604
Topic description: "A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a 'nobody' user in the appliance ..."
"Exploited by North Korean state-sponsored attackers according to a July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/4a34d4ee-97c7-40c9-86e4-796897b05604
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2021-43226
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/0b19cfac-2381-412b-8c94-19799a0871d8
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/0b19cfac-2381-412b-8c94-19799a0871d8
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2021-43207
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/b529bb61-2f0f-44dc-9036-25b331f656cb
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/b529bb61-2f0f-44dc-9036-25b331f656cb
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2021-36955
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/a3131568-d600-4ab7-9a98-7601ae987f9d
Topic description: "Windows Common Log File System Driver Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/a3131568-d600-4ab7-9a98-7601ae987f9d
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2021-44142
Topic description: "The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/d4f26b63-fa52-41c2-b13c-ae0515aac663
Topic description: "The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/d4f26b63-fa52-41c2-b13c-ae0515aac663
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-37085
Topic description: "VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions can gain full access to an ESXi host that was previously configured to use AD for user management https://blogs.vmware.com/vsphere/2012/09/joining-vsphere-hosts-to-active-directory.html by re-creating the configured AD group ('ESXi Admins' by default) after it was deleted from AD. ..."
"CVE-2024-37085, a vulnerability affecting domain-joined VMWare ESXi, was first published on June 25, 2024 ..."
Link: https://attackerkb.com/assessments/1fd9c4e9-1487-45ae-974b-82567a68434a
Topic description: "VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions can gain full access to an ESXi host that was previously configured to use AD for user management https://blogs.vmware.com/vsphere/2012/09/joining-vsphere-hosts-to-active-directory.html by re-creating the configured AD group ('ESXi Admins' by default) after it was deleted from AD. ..."
"CVE-2024-37085, a vulnerability affecting domain-joined VMWare ESXi, was first published on June 25, 2024 ..."
Link: https://attackerkb.com/assessments/1fd9c4e9-1487-45ae-974b-82567a68434a
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-28255
Topic description: "OpenMetadata is a unified platform for discovery, observability, and governance powered by a central metadata repository, in-depth lineage, and seamless team collaboration ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/3d5a0aa2-46be-42a3-acbf-2a3164d5da08
Topic description: "OpenMetadata is a unified platform for discovery, observability, and governance powered by a central metadata repository, in-depth lineage, and seamless team collaboration ..."
"[metadata only] ..."
Link: https://attackerkb.com/assessments/3d5a0aa2-46be-42a3-acbf-2a3164d5da08
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2024-27348
Topic description: "RCE-Remote Command Execution vulnerability in Apache HugeGraph-Server.This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.3.0 in Java8 & Java11 ..."
"Remote command execution vuln in [Apache HugeGraph-Server](https://hugegraph.apache.org/), an open-source graph database project ..."
Link: https://attackerkb.com/assessments/872583f2-49f8-4434-9d48-da38fa333763
Topic description: "RCE-Remote Command Execution vulnerability in Apache HugeGraph-Server.This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.3.0 in Java8 & Java11 ..."
"Remote command execution vuln in [Apache HugeGraph-Server](https://hugegraph.apache.org/), an open-source graph database project ..."
Link: https://attackerkb.com/assessments/872583f2-49f8-4434-9d48-da38fa333763
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-24665
Topic description: "PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via a WordPress gutenberg block by any user able to edit posts. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/d9b74f51-fa75-4f86-8181-46667c7e8140
Topic description: "PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via a WordPress gutenberg block by any user able to edit posts. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/d9b74f51-fa75-4f86-8181-46667c7e8140
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-24664
Topic description: "PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress metaboxes, which could be used by any user able to edit posts. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/b8155ecf-90f0-49bc-b6ca-4c605fd3e200
Topic description: "PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress metaboxes, which could be used by any user able to edit posts. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/b8155ecf-90f0-49bc-b6ca-4c605fd3e200
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-24663
Topic description: "PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress shortcodes, which can be used by any authenticated user. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/f84de06a-d4b0-496a-a1b6-32583623c54e
Topic description: "PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress shortcodes, which can be used by any authenticated user. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/f84de06a-d4b0-496a-a1b6-32583623c54e
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-22947
Topic description: "In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/e35b4ffa-fff3-4d1e-a4df-af54aff6dd26
Topic description: "In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/e35b4ffa-fff3-4d1e-a4df-af54aff6dd26
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-22005
Topic description: "Microsoft SharePoint Server Remote Code Execution Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/bb544b28-0e48-40d5-9787-dc00a072d081
Topic description: "Microsoft SharePoint Server Remote Code Execution Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/bb544b28-0e48-40d5-9787-dc00a072d081
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-21882
Topic description: "Win32k Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/759bb95e-f4e9-4379-a578-228f447786cb
Topic description: "Win32k Elevation of Privilege Vulnerability ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/759bb95e-f4e9-4379-a578-228f447786cb
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-24785
Topic description: "Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/0879983d-d4b8-4864-be14-5dae200c3a40
Topic description: "Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/0879983d-d4b8-4864-be14-5dae200c3a40
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-24990
Topic description: "TerraMaster NAS 4.2.29 and earlier allows remote attackers to discover the administrative password by sending "User-Agent: TNAS" to module/api.php?mobile/webNasIPS and then reading the PWD field in the response. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/365cd645-8444-4197-af8b-f95c62d0a983
Topic description: "TerraMaster NAS 4.2.29 and earlier allows remote attackers to discover the administrative password by sending "User-Agent: TNAS" to module/api.php?mobile/webNasIPS and then reading the PWD field in the response. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/365cd645-8444-4197-af8b-f95c62d0a983
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2021-45837
Topic description: "It is possible to execute arbitrary commands as root in Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517) by sending a specifically crafted input to /tos/index.php?app/del. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/360fdb26-52f1-44b6-8d64-ca9b67e2bfc4
Topic description: "It is possible to execute arbitrary commands as root in Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517) by sending a specifically crafted input to /tos/index.php?app/del. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/360fdb26-52f1-44b6-8d64-ca9b67e2bfc4
0
0
0
AttackerKB
attackerkb
New assessment for topic: CVE-2022-25064
Topic description: "TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE) vulnerability via the function oal_wan6_setIpAddr. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/8fab5317-8dd4-4b46-83f2-dde0ee6d0848
Topic description: "TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE) vulnerability via the function oal_wan6_setIpAddr. ..."
"A July 2024 bulletin from multiple U.S ..."
Link: https://attackerkb.com/assessments/8fab5317-8dd4-4b46-83f2-dde0ee6d0848
0
0
0