Posts
218
Following
Hidden
Followers
53
AttackerKB bot (Unofficial)
New assessment for topic: CVE-2024-44000

Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."

"CVE-2024-44000 is an unauthenticated account takeover vulnerability in LiteSpeed Cache, a Wordpress plugin that currently has around 6 million active installations ..."

Link: https://attackerkb.com/assessments/5558a403-7673-4b3c-913b-f2ae6ddcc5fd
0
0
0
New assessment for topic: CVE-2024-40766

Topic description: "An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash ..."

"Many reports have been made of the Akira and/or Fog ransomware group abusing this vulnerability ..."

Link: https://attackerkb.com/assessments/bf26a127-61bc-4142-a2c4-ade9dd595c66
0
0
0
New assessment for topic: CVE-2024-21060

Topic description: "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Data Dictionary) ..."

"[metadata only] ..."

Link: https://attackerkb.com/assessments/ee7b24cb-1d62-4f3b-b7b7-a785510a1d19
0
0
0
New assessment for topic: CVE-2021-33044

Topic description: "The identity authentication bypass vulnerability found in some Dahua products during the login process ..."

"On September 5th 2024, CISA released a security bulletin highlighting the cyber-attacks from a Russian actor ..."

Link: https://attackerkb.com/assessments/3171642d-f89e-41bd-9ebe-75c267602634
0
0
0
New assessment for topic: CVE-2021-33045

Topic description: "The identity authentication bypass vulnerability found in some Dahua products during the login process ..."

"On September 5th 2024, CISA released a security bulletin highlighting the cyber-attacks from a Russian actor ..."

Link: https://attackerkb.com/assessments/b363ab32-d16a-4ed2-b720-67a9ac625ef9
0
0
0
New assessment for topic: CVE-2022-26134

Topic description: "In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance ..."

"On September 5th 2024, CISA released a security bulletin highlighting the cyber-attacks from a Russian actor ..."

Link: https://attackerkb.com/assessments/c466c1e4-b5eb-43b5-bd9c-3b86b8c2663e
0
0
0
New assessment for topic: CVE-2021-26138

Topic description: "The Atlassian Questions For Confluence app for Confluence Server and Data Center creates a Confluence user account in the confluence-users group with the username disabledsystemuser and a hardcoded password ..."

"On September 5th 2024, CISA released a security bulletin highlighting the cyber-attacks from a Russian actor ..."

Link: https://attackerkb.com/assessments/4bb352f3-5c69-4acc-a27f-7ce2b03fb199
0
0
0
New assessment for topic: CVE-2022-3236

Topic description: "A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v19.0 MR1 and older. ..."

"On September 5th 2024, CISA released a security bulletin highlighting the cyber-attacks from a Russian actor ..."

Link: https://attackerkb.com/assessments/9a9d108b-b1c1-4c52-afb3-e9d99b7a416b
0
0
0
New assessment for topic: CVE-2024-30088

Topic description: "Windows Kernel Elevation of Privilege Vulnerability ..."

"CVE-2024-30088 is a Windows Kernel Elevation of Privilege Vulnerability which affects many recent versions of Windows 10, Windows 11 and Windows Server 2016, 2019 and 2022 ..."

Link: https://attackerkb.com/assessments/320a5ebf-9140-4fd8-8348-566f25c54ac7
0
0
0
New assessment for topic: CVE-2024-40766

Topic description: "An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash ..."

"On August 22, 2024, SonicWall published [an advisory](https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0015) for an improper access control vulnerability affecting multiple models in their Next Generation Firewall (NGFW) series of devices, specifically those running SonicOS v5, v6 and the latest version v7: ..."

Link: https://attackerkb.com/assessments/85106b81-693e-4e27-bddf-4ae992d7dea3
0
0
0
New assessment for topic: CVE-2024-43044

Topic description: "Jenkins 2.470 and earlier, LTS 2.452.3 and earlier allows agent processes to read arbitrary files from the Jenkins controller file system by using the `ClassLoaderProxy#fetchJar` method in the Remoting library. ..."

"[CVE-2024-43044](https://nvd.nist.gov/vuln/detail/CVE-2024-43044) is an arbitrary file read vulnerability in Jenkins Automation Server, and it's exploitable via [Jenkins Remoting](https://github.com/jenkinsci/remoting) ..."

Link: https://attackerkb.com/assessments/37724f7c-2b1d-43ef-9d31-48fff258f4d3
0
0
0
New assessment for topic: CVE-2024-38063

Topic description: "Windows TCP/IP Remote Code Execution Vulnerability ..."

"As a quick addendum to @sfewer-r7's excellent assessment, I've seen this vulnerability compared with [CVE-2020-16898](https://attackerkb.com/topics/17lFRTT1DO/cve-2020-16898-aka-bad-neighbor-ping-of-death-redux) in a few news articles, alongside the dreaded "w" word ("wormable") ..."

Link: https://attackerkb.com/assessments/675ac514-4a44-4197-af6c-38b33d372455
0
0
0
New assessment for topic: CVE-2024-38063

Topic description: "Windows TCP/IP Remote Code Execution Vulnerability ..."

"On August 13, 2024, Microsoft disclosed CVE-2024-38063, an integer underflow vulnerability ([CWE-191](https://cwe.mitre.org/data/definitions/191.html)) affecting the IPv6 component of the Windows TCP/IP networking stack ..."

Link: https://attackerkb.com/assessments/92c8c4df-81fd-426e-bf53-60a08563d643
0
1
1
New assessment for topic: CVE-2024-30080

Topic description: "Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability ..."

"This vulnerability flew under my radar until I saw the results of the 2024 pwnie awards and couldn’t help but notice how it won the award for "Best RCE" ..."

Link: https://attackerkb.com/assessments/64e56b2e-4eba-4924-ac08-df5fa0c133c3
0
0
0
New assessment for topic: CVE-2024-27348

Topic description: "RCE-Remote Command Execution vulnerability in Apache HugeGraph-Server.This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.3.0 in Java8 & Java11 ..."

"This is a Remote Code Execution vulnerability Apache HugeGraph in versions before 1.3.0 which are running on Java 8 or Java 11 ..."

Link: https://attackerkb.com/assessments/8bd428f4-d4e9-4f07-851f-490b66809dfc
0
0
0
New assessment for topic: CVE-2024-30055

Topic description: "Microsoft Edge (Chromium-based) Spoofing Vulnerability ..."

"WARNING: This is an example of the Microsoft Defender missing when you need it! Do not do this ..."

Link: https://attackerkb.com/assessments/1a237dae-c995-4d6d-a693-079713a04a6e
0
0
0
New assessment for topic: CVE-2024-29510

Topic description: "Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device. ..."

"Ghostscript is vulnerable to a critical format string vulnerability that affects versions before 10.03.1 ..."

Link: https://attackerkb.com/assessments/8a51907b-0645-440a-bbcb-88da0069a274
0
0
0
New assessment for topic: CVE-2024-5217

Topic description: "ServiceNow has addressed an input validation vulnerability that was identified in the Washington DC, Vancouver, and earlier Now Platform releases ..."

"CVE-2024-5217 is an unauthenticated vulnerability in the input validation checks for GlideExpression scripts that results in remote code execution ..."

Link: https://attackerkb.com/assessments/81acf030-5fa9-42f8-b4fd-9489237c46fb
0
0
1
New assessment for topic: CVE-2024-6327

Topic description: "In Progress® Telerik® Report Server versions prior to 2024 Q2 (10.1.24.709), a remote code execution attack is possible through an insecure deserialization vulnerability. ..."

"CVE-2024-6327 is a critical unauthenticated deserialization vulnerability within Progress Telerik Report Server before 10.1.24.709 ..."

Link: https://attackerkb.com/assessments/6deb1089-45f5-4edc-869a-6c2a24cf6045
0
0
0
New assessment for topic: CVE-2024-4879

Topic description: "ServiceNow has addressed an input validation vulnerability that was identified in Vancouver and Washington DC Now Platform releases ..."

"CVE-2024-4879 is a Jelly Template injection vulnerability in ServiceNow resulting from incomplete input validation ..."

Link: https://attackerkb.com/assessments/75ffad32-e5b2-4b89-a163-7286268b57ad
0
0
0
Show older