Arctic Strike KEV Catalog
CVE ID Vendor/Project Product Vulnerability Name Date Added Short Description Notes
CVE-2024-3400Palo Alto NetworksPAN-OSPalo Alto Networks PAN-OS Command Injection Vulnerability2024-04-12Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticated attacker to execute commands with root privileges on the firewall.https://security.paloaltonetworks.com/CVE-2024-3400
CVE-2024-3273D-LinkMultiple NAS DevicesD-Link Multiple NAS Devices Command Injection Vulnerability2024-04-11D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contain a command injection vulnerability. When combined with CVE-2024-3272, this can lead to remote, unauthorized code execution.https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10383
CVE-2024-3272D-LinkMultiple NAS DevicesD-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability2024-04-11D-Link DNS-320L, DNS-325, DNS-327L, and DNS-340L contains a hard-coded credential that allows an attacker to conduct authenticated command injection, leading to remote, unauthorized code execution.https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10383
CVE-2024-29745AndroidPixelAndroid Pixel Information Disclosure Vulnerability2024-04-04Android Pixel contains an information disclosure vulnerability in the fastboot firmware used to support unlocking, flashing, and locking affected devices.https://source.android.com/docs/security/bulletin/pixel/2024-04-01
CVE-2024-29748AndroidPixelAndroid Pixel Privilege Escalation Vulnerability2024-04-04Android Pixel contains a privilege escalation vulnerability that allows an attacker to interrupt a factory reset triggered by a device admin app.https://source.android.com/docs/security/bulletin/pixel/2024-04-01
CVE-2023-24955MicrosoftSharePoint ServerMicrosoft SharePoint Server Code Injection Vulnerability2024-03-26Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955
CVE-2021-44529IvantiEndpoint Manager Cloud Service Appliance (EPM CSA)Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability 2024-03-25Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) contains a code injection vulnerability that allows an unauthenticated user to execute malicious code with limited permissions (nobody).https://forums.ivanti.com/s/article/SA-2021-12-02?language=en_US
CVE-2019-7256NiceLinear eMerge E3-SeriesNice Linear eMerge E3-Series OS Command Injection Vulnerability2024-03-25Nice Linear eMerge E3-Series contains an OS command injection vulnerability that allows an attacker to conduct remote code execution.https://linear-solutions.com/wp-content/uploads/E3-Bulletin-06-27-2023.pdf, https://www.cisa.gov/news-events/ics-advisories/icsa-24-065-01
CVE-2023-48788FortinetFortiClient EMSFortinet FortiClient EMS SQL Injection Vulnerability2024-03-25Fortinet FortiClient EMS contains a SQL injection vulnerability that allows an unauthenticated attacker to execute commands as SYSTEM via specifically crafted requests.https://www.fortiguard.com/psirt/FG-IR-24-007
CVE-2024-27198JetBrainsTeamCityJetBrains TeamCity Authentication Bypass Vulnerability2024-03-07JetBrains TeamCity contains an authentication bypass vulnerability that allows an attacker to perform admin actions.https://www.jetbrains.com/help/teamcity/teamcity-2023-11-4-release-notes.html
CVE-2024-23225AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2024-03-06Apple iOS, iPadOS, macOS, tvOS, watchOS, and visionOS kernel contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.https://support.apple.com/en-us/HT214081, https://support.apple.com/en-us/HT214082, https://support.apple.com/en-us/HT214083, https://support.apple.com/en-us/HT214084, https://support.apple.com/en-us/HT214085, https://support.apple.com/en-us/HT214086, https://support.apple.com/en-us/HT214087, https://support.apple.com/en-us/HT214088
CVE-2024-23296AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2024-03-06Apple iOS, iPadOS, macOS, tvOS, and watchOS RTKit contain a memory corruption vulnerability that allows an attacker with arbitrary kernel read and write capability to bypass kernel memory protections.https://support.apple.com/en-us/HT214081, https://support.apple.com/en-us/HT214082, https://support.apple.com/en-us/HT214084, https://support.apple.com/en-us/HT214086, https://support.apple.com/en-us/HT214088
CVE-2021-36380SunhilloSureLineSunhillo SureLine OS Command Injection Vulnerablity2024-03-05Sunhillo SureLine contains an OS command injection vulnerability that allows an attacker to cause a denial-of-service or utilize the device for persistence on the network via shell metacharacters in ipAddr or dnsAddr in /cgi/networkDiag.cgi.https://www.sunhillo.com/fb011/
CVE-2023-21237AndroidPixelAndroid Pixel Information Disclosure Vulnerability 2024-03-05Android Pixel contains a vulnerability in the Framework component, where the UI may be misleading or insufficient, providing a means to hide a foreground service notification. This could enable a local attacker to disclose sensitive information.https://source.android.com/docs/security/bulletin/pixel/2023-06-01
CVE-2024-21338MicrosoftWindowsMicrosoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability2024-03-04Microsoft Windows Kernel contains an exposed IOCTL with insufficient access control vulnerability within the IOCTL (input and output control) dispatcher in appid.sys that allows a local attacker to achieve privilege escalation.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21338
CVE-2023-29360MicrosoftStreaming ServiceMicrosoft Streaming Service Untrusted Pointer Dereference Vulnerability2024-02-29Microsoft Streaming Service contains an untrusted pointer dereference vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360
CVE-2024-1709ConnectWiseScreenConnectConnectWise ScreenConnect Authentication Bypass Vulnerability2024-02-22ConnectWise ScreenConnect contains an authentication bypass vulnerability that allows an attacker with network access to the management interface to create a new, administrator-level account on affected devices.https://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
CVE-2020-3259CiscoAdaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Cisco ASA and FTD Information Disclosure Vulnerability2024-02-15Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an information disclosure vulnerability. An attacker could retrieve memory contents on an affected device, which could lead to the disclosure of confidential information due to a buffer tracking issue when the software parses invalid URLs that are requested from the web services interface. This vulnerability affects only specific AnyConnect and WebVPN configurations.https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-info-disclose-9eJtycMB
CVE-2024-21410MicrosoftExchange ServerMicrosoft Exchange Server Privilege Escalation Vulnerability2024-02-15Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21410
CVE-2024-21351MicrosoftWindowsMicrosoft Windows SmartScreen Security Feature Bypass Vulnerability2024-02-13Microsoft Windows SmartScreen contains a security feature bypass vulnerability that allows an attacker to bypass the SmartScreen user experience and inject code to potentially gain code execution, which could lead to some data exposure, lack of system availability, or both.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-21351
CVE-2024-21412MicrosoftWindowsMicrosoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability2024-02-13Microsoft Windows Internet Shortcut Files contains an unspecified vulnerability that allows for a security feature bypass.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-21412
CVE-2023-43770RoundcubeWebmailRoundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability2024-02-12Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that can lead to information disclosure via malicious link references in plain/text messages.https://roundcube.net/news/2023/09/15/security-update-1.6.3-released
CVE-2024-21762FortinetFortiOSFortinet FortiOS Out-of-Bound Write Vulnerability2024-02-09Fortinet FortiOS contains an out-of-bound write vulnerability that allows a remote unauthenticated attacker to execute code or commands via specially crafted HTTP requests.https://fortiguard.fortinet.com/psirt/FG-IR-24-015
CVE-2023-4762GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2024-02-06Google Chromium V8 contains a type confusion vulnerability that allows a remote attacker to execute code via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop.html
CVE-2024-21893IvantiConnect Secure, Policy Secure, and NeuronsIvanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF) Vulnerability2024-01-31Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure), Ivanti Policy Secure, and Ivanti Neurons contain a server-side request forgery (SSRF) vulnerability in the SAML component that allows an attacker to access certain restricted resources without authentication.https://forums.ivanti.com/s/article/KB-CVE-2023-46805-Authentication-Bypass-CVE-2024-21887-Command-Injection-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Gateways?language=en_US
CVE-2022-48618AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2024-01-31Apple iOS, iPadOS, macOS, tvOS, and watchOS contain a time-of-check/time-of-use (TOCTOU) memory corruption vulnerability that allows an attacker with read and write capabilities to bypass Pointer Authentication.https://support.apple.com/en-us/HT213530, https://support.apple.com/en-us/HT213532, https://support.apple.com/en-us/HT213535, https://support.apple.com/en-us/HT213536
CVE-2023-22527AtlassianConfluence Data Center and ServerAtlassian Confluence Data Center and Server Template Injection Vulnerability2024-01-24Atlassian Confluence Data Center and Server contain an unauthenticated OGNL template injection vulnerability that can lead to remote code execution.https://confluence.atlassian.com/security/cve-2023-22527-rce-remote-code-execution-vulnerability-in-confluence-data-center-and-confluence-server-1333990257.html
CVE-2024-23222AppleMultiple ProductsApple Multiple Products Type Confusion Vulnerability2024-01-23Apple iOS, iPadOS, macOS, tvOS, and Safari WebKit contain a type confusion vulnerability that leads to code execution when processing maliciously crafted web content.https://support.apple.com/en-us/HT214055, https://support.apple.com/en-us/HT214056, https://support.apple.com/en-us/HT214057, https://support.apple.com/en-us/HT214058, https://support.apple.com/en-us/HT214059, https://support.apple.com/en-us/HT214061, https://support.apple.com/en-us/HT214063
CVE-2023-34048VMwarevCenter ServerVMware vCenter Server Out-of-Bounds Write Vulnerability2024-01-22VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol that allows an attacker to conduct remote code execution.https://www.vmware.com/security/advisories/VMSA-2023-0023.html
CVE-2023-35082IvantiEndpoint Manager Mobile (EPMM) and MobileIron CoreIvanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypass Vulnerability2024-01-18Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core contain an authentication bypass vulnerability that allows unauthorized users to access restricted functionality or resources of the application.https://forums.ivanti.com/s/article/CVE-2023-35082-Remote-Unauthenticated-API-Access-Vulnerability-in-MobileIron-Core-11-2-and-older
CVE-2023-6549CitrixNetScaler ADC and NetScaler GatewayCitrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability2024-01-17Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for a denial-of-service when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549
CVE-2024-0519GoogleChromium V8Google Chromium V8 Out-of-Bounds Memory Access Vulnerability2024-01-17Google Chromium V8 Engine contains an out-of-bounds memory access vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html
CVE-2023-6548CitrixNetScaler ADC and NetScaler GatewayCitrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability2024-01-17Citrix NetScaler ADC and NetScaler Gateway contain a code injection vulnerability that allows for authenticated remote code execution on the management interface with access to NSIP, CLIP, or SNIP.https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549
CVE-2018-15133LaravelLaravel FrameworkLaravel Deserialization of Untrusted Data Vulnerability2024-01-16Laravel Framework contains a deserialization of untrusted data vulnerability, allowing for remote command execution. This vulnerability may only be exploited if a malicious user has accessed the application encryption key (APP_KEY environment variable).https://laravel.com/docs/5.6/upgrade#upgrade-5.6.30
CVE-2023-29357MicrosoftSharePoint ServerMicrosoft SharePoint Server Privilege Escalation Vulnerability2024-01-10Microsoft SharePoint Server contains an unspecified vulnerability that allows an unauthenticated attacker, who has gained access to spoofed JWT authentication tokens, to use them for executing a network attack. This attack bypasses authentication, enabling the attacker to gain administrator privileges.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29357
CVE-2023-46805IvantiConnect Secure and Policy SecureIvanti Connect Secure and Policy Secure Authentication Bypass Vulnerability2024-01-10Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure) and Ivanti Policy Secure gateways contain an authentication bypass vulnerability in the web component that allows an attacker to access restricted resources by bypassing control checks. This vulnerability can be leveraged in conjunction with CVE-2024-21887, a command injection vulnerability.Please apply mitigations per vendor instructions. For more information, please see: https://forums.ivanti.com/s/article/KB-CVE-2023-46805-Authentication-Bypass-CVE-2024-21887-Command-Injection-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Gateways?language=en_US
CVE-2024-21887IvantiConnect Secure and Policy SecureIvanti Connect Secure and Policy Secure Command Injection Vulnerability2024-01-10Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure) and Ivanti Policy Secure contain a command injection vulnerability in the web components of these products, which can allow an authenticated administrator to send crafted requests to execute code on affected appliances. This vulnerability can be leveraged in conjunction with CVE-2023-46805, an authenticated bypass issue.Please apply mitigations per vendor instructions. For more information, please see: https://forums.ivanti.com/s/article/KB-CVE-2023-46805-Authentication-Bypass-CVE-2024-21887-Command-Injection-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Gateways?language=en_US
CVE-2023-41990AppleMultiple ProductsApple Multiple Products Code Execution Vulnerability2024-01-08Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability that allows for code execution when processing a font file.https://support.apple.com/en-us/HT213599, https://support.apple.com/en-us/HT213601, https://support.apple.com/en-us/HT213605, https://support.apple.com/en-us/HT213606, https://support.apple.com/en-us/HT213842, https://support.apple.com/en-us/HT213844, https://support.apple.com/en-us/HT213845
CVE-2016-20017D-LinkDSL-2750B DevicesD-Link DSL-2750B Devices Command Injection Vulnerability2024-01-08D-Link DSL-2750B devices contain a command injection vulnerability that allows remote, unauthenticated command injection via the login.cgi cli parameter.https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10088
CVE-2023-23752Joomla!Joomla!Joomla! Improper Access Control Vulnerability2024-01-08Joomla! contains an improper access control vulnerability that allows unauthorized access to webservice endpoints.https://developer.joomla.org/security-centre/894-20230201-core-improper-access-check-in-webservice-endpoints.html
CVE-2023-27524ApacheSupersetApache Superset Insecure Default Initialization of Resource Vulnerability2024-01-08Apache Superset contains an insecure default initialization of a resource vulnerability that allows an attacker to authenticate and access unauthorized resources on installations that have not altered the default configured SECRET_KEY according to installation instructions.https://lists.apache.org/thread/n0ftx60sllf527j7g11kmt24wvof8xyk
CVE-2023-29300AdobeColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2024-01-08Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution.https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html
CVE-2023-38203AdobeColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2024-01-08Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution.https://helpx.adobe.com/security/products/coldfusion/apsb23-41.html
CVE-2023-7101Spreadsheet::ParseExcelSpreadsheet::ParseExcelSpreadsheet::ParseExcel Remote Code Execution Vulnerability2024-01-02Spreadsheet::ParseExcel contains a remote code execution vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of Number format strings within the Excel parsing logic.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://metacpan.org/dist/Spreadsheet-ParseExcel and Barracuda's specific implementation and fix for their downstream issue CVE-2023-7102 at https://www.barracuda.com/company/legal/esg-vulnerability
CVE-2023-7024GoogleChromium WebRTCGoogle Chromium WebRTC Heap Buffer Overflow Vulnerability2024-01-02Google Chromium WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could impact web browsers using WebRTC, including but not limited to Google Chrome.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_20.html
CVE-2023-49897FXCAE1021, AE1021PEFXC AE1021, AE1021PE OS Command Injection Vulnerability2023-12-21FXC AE1021 and AE1021PE contain an OS command injection vulnerability that allows authenticated users to execute commands via a network.https://www.fxc.jp/news/20231206
CVE-2023-47565QNAPVioStor NVRQNAP VioStor NVR OS Command Injection Vulnerability2023-12-21QNAP VioStar NVR contains an OS command injection vulnerability that allows authenticated users to execute commands via a network.https://www.qnap.com/en/security-advisory/qsa-23-48
CVE-2023-6448UnitronicsVision PLC and HMIUnitronics Vision PLC and HMI Insecure Default Password Vulnerability2023-12-11Unitronics Vision Series PLCs and HMIs ship with an insecure default password, which if left unchanged, can allow attackers to execute remote commands.Note that while it is possible to change the default password, implementors are encouraged to remove affected controllers from public networks and update the affected firmware: https://downloads.unitronicsplc.com/Sites/plc/Technical_Library/Unitronics-Cybersecurity-Advisory-2023-001-CVE-2023-6448.pdf
CVE-2023-41266QlikSenseQlik Sense Path Traversal Vulnerability2023-12-07Qlik Sense contains a path traversal vulnerability that allows a remote, unauthenticated attacker to create an anonymous session by sending maliciously crafted HTTP requests. This anonymous session could allow the attacker to send further requests to unauthorized endpoints.https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows/ta-p/2110801
CVE-2023-41265QlikSenseQlik Sense HTTP Tunneling Vulnerability2023-12-07Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software.https://community.qlik.com/t5/Official-Support-Articles/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows/ta-p/2110801
CVE-2023-33107QualcommMultiple ChipsetsQualcomm Multiple Chipsets Integer Overflow Vulnerability2023-12-05Multiple Qualcomm chipsets contain an integer overflow vulnerability due to memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.codelinaro.org/clo/la/kernel/msm-4.19/-/commit/d66b799c804083ea5226cfffac6d6c4e7ad4968b
CVE-2023-33063QualcommMultiple ChipsetsQualcomm Multiple Chipsets Use-After-Free Vulnerability2023-12-05Multiple Qualcomm chipsets contain a use-after-free vulnerability due to memory corruption in DSP Services during a remote call from HLOS to DSP.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.codelinaro.org/clo/la/kernel/msm-5.15/-/commit/2643808ddbedfaabbb334741873fb2857f78188a, https://git.codelinaro.org/clo/la/kernel/msm-4.14/-/commit/d43222efda5a01c9804d74a541e3c1be9b7fe110
CVE-2023-33106QualcommMultiple ChipsetsQualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability2023-12-05Multiple Qualcomm chipsets contain a use of out-of-range pointer offset vulnerability due to memory corruption in Graphics while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.codelinaro.org/clo/la/kernel/msm-4.19/-/commit/1e46e81dbeb69aafd5842ce779f07e617680fd58
CVE-2022-22071QualcommMultiple ChipsetsQualcomm Multiple Chipsets Use-After-Free Vulnerability2023-12-05Multiple Qualcomm chipsets contain a use-after-free vulnerability when process shell memory is freed using IOCTL munmap call and process initialization is in progress.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.codelinaro.org/clo/la/kernel/msm-5.4/-/commit/586840fde350d7b8563df9889c8ce397e2c20dda
CVE-2023-42917AppleMultiple ProductsApple Multiple Products WebKit Memory Corruption Vulnerability2023-12-04Apple iOS, iPadOS, macOS, and Safari WebKit contain a memory corruption vulnerability that leads to code execution when processing web content.https://support.apple.com/en-us/HT214031, https://support.apple.com/en-us/HT214032, https://support.apple.com/en-us/HT214033
CVE-2023-42916AppleMultiple ProductsApple Multiple Products WebKit Out-of-Bounds Read Vulnerability2023-12-04Apple iOS, iPadOS, macOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclose sensitive information when processing web content.https://support.apple.com/en-us/HT214031, https://support.apple.com/en-us/HT214032, https://support.apple.com/en-us/HT214033
CVE-2023-49103ownCloudownCloud graphapiownCloud graphapi Information Disclosure Vulnerability2023-11-30ownCloud graphapi contains an information disclosure vulnerability that can reveal sensitive data stored in phpinfo() via GetPhpInfo.php, including administrative credentials.https://owncloud.com/security-advisories/disclosure-of-sensitive-credentials-and-configuration-in-containerized-deployments/
CVE-2023-6345GoogleChromium SkiaGoogle Skia Integer Overflow Vulnerability2023-11-30Google Chromium Skia contains an integer overflow vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a malicious file. This vulnerability affects Google Chrome and ChromeOS, Android, Flutter, and possibly other products.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_28.html
CVE-2023-4911GNUGNU C LibraryGNU C Library Buffer Overflow Vulnerability2023-11-21GNU C Library's dynamic loader ld.so contains a buffer overflow vulnerability when processing the GLIBC_TUNABLES environment variable, allowing a local attacker to execute code with elevated privileges.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=1056e5b4c3f2d90ed2b4a55f96add28da2f4c8fa, https://access.redhat.com/security/cve/cve-2023-4911, https://www.debian.org/security/2023/dsa-5514
CVE-2023-1671SophosWeb ApplianceSophos Web Appliance Command Injection Vulnerability2023-11-16Sophos Web Appliance contains a command injection vulnerability in the warn-proceed handler that allows for remote code execution.https://www.sophos.com/en-us/security-advisories/sophos-sa-20230404-swa-rce
CVE-2023-36584MicrosoftWindowsMicrosoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability2023-11-16Microsoft Windows Mark of the Web (MOTW) contains a security feature bypass vulnerability resulting in a limited loss of integrity and availability of security features.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36584
CVE-2020-2551OracleFusion MiddlewareOracle Fusion Middleware Unspecified Vulnerability2023-11-16Oracle Fusion Middleware contains an unspecified vulnerability in the WLS Core Components that allows an unauthenticated attacker with network access via IIOP to compromise the WebLogic Server.https://www.oracle.com/security-alerts/cpujan2020.html
CVE-2023-36033MicrosoftWindowsMicrosoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability2023-11-14Microsoft Windows Desktop Window Manager (DWM) Core Library contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36033
CVE-2023-36025MicrosoftWindowsMicrosoft Windows SmartScreen Security Feature Bypass Vulnerability2023-11-14Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to bypass Windows Defender SmartScreen checks and their associated prompts.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36025
CVE-2023-36036MicrosoftWindowsMicrosoft Windows Cloud Files Mini Filter Driver Privilege Escalation Vulnerability2023-11-14Microsoft Windows Cloud Files Mini Filter Driver contains a privilege escalation vulnerability that could allow an attacker to gain SYSTEM privileges.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36036
CVE-2023-36844JuniperJunos OSJuniper Junos OS EX Series PHP External Variable Modification Vulnerability2023-11-13Juniper Junos OS on EX Series contains a PHP external variable modification vulnerability that allows an unauthenticated, network-based attacker to control certain, important environment variables. Using a crafted request an attacker is able to modify certain PHP environment variables, leading to partial loss of integrity, which may allow chaining to other vulnerabilities.https://supportportal.juniper.net/s/article/2023-08-Out-of-Cycle-Security-Bulletin-Junos-OS-SRX-Series-and-EX-Series-Multiple-vulnerabilities-in-J-Web-can-be-combined-to-allow-a-preAuth-Remote-Code-Execution?language=en_US
CVE-2023-36845JuniperJunos OSJuniper Junos OS EX Series and SRX Series PHP External Variable Modification Vulnerability2023-11-13Juniper Junos OS on EX Series and SRX Series contains a PHP external variable modification vulnerability that allows an unauthenticated, network-based attacker to control an important environment variable. Using a crafted request, which sets the variable PHPRC, an attacker is able to modify the PHP execution environment allowing the injection und execution of code.https://supportportal.juniper.net/s/article/2023-08-Out-of-Cycle-Security-Bulletin-Junos-OS-SRX-Series-and-EX-Series-Multiple-vulnerabilities-in-J-Web-can-be-combined-to-allow-a-preAuth-Remote-Code-Execution?language=en_US
CVE-2023-47246SysAidSysAid ServerSysAid Server Path Traversal Vulnerability2023-11-13SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification
CVE-2023-36851JuniperJunos OSJuniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability2023-11-13Juniper Junos OS on SRX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to webauth_operation.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.https://supportportal.juniper.net/s/article/2023-08-Out-of-Cycle-Security-Bulletin-Junos-OS-SRX-Series-and-EX-Series-Multiple-vulnerabilities-in-J-Web-can-be-combined-to-allow-a-preAuth-Remote-Code-Execution?language=en_US
CVE-2023-36847JuniperJunos OSJuniper Junos OS EX Series Missing Authentication for Critical Function Vulnerability2023-11-13Juniper Junos OS on EX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to installAppPackage.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.https://supportportal.juniper.net/s/article/2023-08-Out-of-Cycle-Security-Bulletin-Junos-OS-SRX-Series-and-EX-Series-Multiple-vulnerabilities-in-J-Web-can-be-combined-to-allow-a-preAuth-Remote-Code-Execution?language=en_US
CVE-2023-36846JuniperJunos OSJuniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability2023-11-13Juniper Junos OS on SRX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to user.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.https://supportportal.juniper.net/s/article/2023-08-Out-of-Cycle-Security-Bulletin-Junos-OS-SRX-Series-and-EX-Series-Multiple-vulnerabilities-in-J-Web-can-be-combined-to-allow-a-preAuth-Remote-Code-Execution?language=en_US
CVE-2023-29552IETFService Location Protocol (SLP)Service Location Protocol (SLP) Denial-of-Service Vulnerability2023-11-08The Service Location Protocol (SLP) contains a denial-of-service (DoS) vulnerability that could allow an unauthenticated, remote attacker to register services and use spoofed UDP traffic to conduct a denial-of-service (DoS) attack with a significant amplification factor.This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on the patching status. For more information please see https://www.bitsight.com/blog/new-high-severity-vulnerability-cve-2023-29552-discovered-service-location-protocol-slp and https://www.cisa.gov/news-events/alerts/2023/04/25/abuse-service-location-protocol-may-lead-dos-attacks.
CVE-2023-22518AtlassianConfluence Data Center and ServerAtlassian Confluence Data Center and Server Improper Authorization Vulnerability2023-11-07Atlassian Confluence Data Center and Server contain an improper authorization vulnerability that can result in significant data loss when exploited by an unauthenticated attacker. There is no impact on confidentiality since the attacker cannot exfiltrate any data.https://confluence.atlassian.com/security/cve-2023-22518-improper-authorization-vulnerability-in-confluence-data-center-and-server-1311473907.html
CVE-2023-46604ApacheActiveMQApache ActiveMQ Deserialization of Untrusted Data Vulnerability2023-11-02Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath.https://activemq.apache.org/security-advisories.data/CVE-2023-46604-announcement.txt
CVE-2023-46748F5BIG-IP Configuration UtilityF5 BIG-IP Configuration Utility SQL Injection Vulnerability2023-10-31F5 BIG-IP Configuration utility contains an SQL injection vulnerability that may allow an authenticated attacker with network access through the BIG-IP management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46747.https://my.f5.com/manage/s/article/K000137365
CVE-2023-46747F5BIG-IP Configuration UtilityF5 BIG-IP Configuration Utility Authentication Bypass Vulnerability2023-10-31F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748.https://my.f5.com/manage/s/article/K000137353
CVE-2023-5631RoundcubeWebmailRoundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability2023-10-26Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.https://roundcube.net/news/2023/10/16/security-update-1.6.4-released, https://roundcube.net/news/2023/10/16/security-updates-1.5.5-and-1.4.15
CVE-2023-20273CiscoCisco IOS XE Web UICisco IOS XE Web UI Command Injection Vulnerability2023-10-23Cisco IOS XE contains a command injection vulnerability in the web user interface. When chained with CVE-2023-20198, the attacker can leverage the new local user to elevate privilege to root and write the implant to the file system. Cisco identified CVE-2023-20273 as the vulnerability exploited to deploy the implant. CVE-2021-1435, previously associated with the exploitation events, is no longer believed to be related to this activity.https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z
CVE-2023-4966CitrixNetScaler ADC and NetScaler GatewayCitrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability2023-10-18Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.https://www.netscaler.com/blog/news/cve-2023-4966-critical-security-update-now-available-for-netscaler-adc-and-netscaler-gateway/, https://support.citrix.com/article/CTX579459/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20234966-and-cve20234967
CVE-2023-20198CiscoIOS XE Web UICisco IOS XE Web UI Privilege Escalation Vulnerability2023-10-16Cisco IOS XE Web UI contains a privilege escalation vulnerability in the web user interface that could allow a remote, unauthenticated attacker to create an account with privilege level 15 access. The attacker can then use that account to gain control of the affected device.https://www.cisco.com/c/en/us/support/docs/ios-nx-os-software/ios-xe-dublin-17121/221128-software-fix-availability-for-cisco-ios.html
CVE-2023-21608AdobeAcrobat and ReaderAdobe Acrobat and Reader Use-After-Free Vulnerability2023-10-10Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user.https://helpx.adobe.com/security/products/acrobat/apsb23-01.html
CVE-2023-41763MicrosoftSkype for BusinessMicrosoft Skype for Business Privilege Escalation Vulnerability2023-10-10Microsoft Skype for Business contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-41763
CVE-2023-20109CiscoIOS and IOS XECisco IOS and IOS XE Group Encrypted Transport VPN Out-of-Bounds Write Vulnerability2023-10-10Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-getvpn-rce-g8qR68sx
CVE-2023-44487IETFHTTP/2HTTP/2 Rapid Reset Attack Vulnerability2023-10-10HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS).https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/
CVE-2023-36563MicrosoftWordPadMicrosoft WordPad Information Disclosure Vulnerability2023-10-10Microsoft WordPad contains an unspecified vulnerability that allows for information disclosure.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36563
CVE-2023-22515AtlassianConfluence Data Center and ServerAtlassian Confluence Data Center and Server Broken Access Control Vulnerability2023-10-05Atlassian Confluence Data Center and Server contains a broken access control vulnerability that allows an attacker to create unauthorized Confluence administrator accounts and access Confluence.https://confluence.atlassian.com/security/cve-2023-22515-privilege-escalation-vulnerability-in-confluence-data-center-and-server-1295682276.html
CVE-2023-40044ProgressWS_FTP ServerProgress WS_FTP Server Deserialization of Untrusted Data Vulnerability2023-10-05Progress WS_FTP Server contains a deserialization of untrusted data vulnerability in the Ad Hoc Transfer module that allows an authenticated attacker to execute remote commands on the underlying operating system.https://community.progress.com/s/article/WS-FTP-Server-Critical-Vulnerability-September-2023
CVE-2023-42824AppleiOS and iPadOSApple iOS and iPadOS Kernel Privilege Escalation Vulnerability2023-10-05Apple iOS and iPadOS contain an unspecified vulnerability that allows for local privilege escalation.https://support.apple.com/en-us/HT213961
CVE-2023-28229MicrosoftWindows CNG Key Isolation ServiceMicrosoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability2023-10-04Microsoft Windows Cryptographic Next Generation (CNG) Key Isolation Service contains an unspecified vulnerability that allows an attacker to gain specific limited SYSTEM privileges.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28229
CVE-2023-42793JetBrainsTeamCityJetBrains TeamCity Authentication Bypass Vulnerability2023-10-04JetBrains TeamCity contains an authentication bypass vulnerability that allows for remote code execution on TeamCity Server.https://blog.jetbrains.com/teamcity/2023/09/critical-security-issue-affecting-teamcity-on-premises-update-to-2023-05-4-now/
CVE-2023-4211ArmMali GPU Kernel DriverArm Mali GPU Kernel Driver Use-After-Free Vulnerability2023-10-03Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
CVE-2023-5217GoogleChromium libvpxGoogle Chromium libvpx Heap Buffer Overflow Vulnerability2023-10-02Google Chromium libvpx contains a heap buffer overflow vulnerability in vp8 encoding that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could impact web browsers using libvpx, including but not limited to Google Chrome.https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.html
CVE-2018-14667Red HatJBoss RichFaces FrameworkRed Hat JBoss RichFaces Framework Expression Language Injection Vulnerability2023-09-28Red Hat JBoss RichFaces Framework contains an expression language injection vulnerability via the UserResource resource. A remote, unauthenticated attacker could exploit this vulnerability to execute malicious code using a chain of Java serialized objects via org.ajax4jsf.resource.UserResource$UriData.https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14667
CVE-2023-41991AppleMultiple ProductsApple Multiple Products Improper Certificate Validation Vulnerability2023-09-25Apple iOS, iPadOS, macOS, and watchOS contain an improper certificate validation vulnerability that can allow a malicious app to bypass signature validation.https://support.apple.com/en-us/HT213926, https://support.apple.com/en-us/HT213927, https://support.apple.com/en-us/HT213928, https://support.apple.com/en-us/HT213929, https://support.apple.com/en-us/HT213931
CVE-2023-41992AppleMultiple ProductsApple Multiple Products Kernel Privilege Escalation Vulnerability2023-09-25Apple iOS, iPadOS, macOS, and watchOS contain an unspecified vulnerability that allows for local privilege escalation.https://support.apple.com/en-us/HT213926, https://support.apple.com/en-us/HT213927, https://support.apple.com/en-us/HT213928, https://support.apple.com/en-us/HT213929, https://support.apple.com/en-us/HT213931, https://support.apple.com/en-us/HT213932
CVE-2023-41993AppleMultiple ProductsApple Multiple Products WebKit Code Execution Vulnerability2023-09-25Apple iOS, iPadOS, macOS, and Safari WebKit contain an unspecified vulnerability that can allow an attacker to execute code when processing web content.https://support.apple.com/en-us/HT213926, https://support.apple.com/en-us/HT213927, https://support.apple.com/en-us/HT213930
CVE-2023-41179Trend MicroApex One and Worry-Free Business SecurityTrend Micro Apex One and Worry-Free Business Security Remote Code Execution Vulnerability2023-09-21Trend Micro Apex One and Worry-Free Business Security contain an unspecified vulnerability in the third-party anti-virus uninstaller that could allow an attacker to manipulate the module to conduct remote code execution. An attacker must first obtain administrative console access on the target system in order to exploit this vulnerability.https://success.trendmicro.com/dcx/s/solution/000294994?language=en_US
CVE-2023-28434MinIOMinIOMinIO Security Feature Bypass Vulnerability2023-09-19MinIO contains a security feature bypass vulnerability that allows an attacker to use crafted requests to bypass metadata bucket name checking and put an object into any bucket while processing `PostPolicyBucket` to conduct privilege escalation. To carry out this attack, the attacker requires credentials with `arn:aws:s3:::*` permission, as well as enabled Console API access.https://github.com/minio/minio/security/advisories/GHSA-2pxw-r47w-4p8c
CVE-2022-22265SamsungMobile DevicesSamsung Mobile Devices Use-After-Free Vulnerability2023-09-18Samsung devices with selected Exynos chipsets contain a use-after-free vulnerability that allows malicious memory write and code execution.https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=1
CVE-2017-6884ZyxelEMG2926 RoutersZyxel EMG2926 Routers Command Injection Vulnerability2023-09-18Zyxel EMG2926 routers contain a command injection vulnerability located in the diagnostic tools, specifically the nslookup function. A malicious user may exploit numerous vectors to execute malicious commands on the router, such as the ping_ip parameter to the expert/maintenance/diagnostic/nslookup URI.https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-command-injection-vulnerability-in-emg2926-q10a-ethernet-cpe, https://www.zyxelguard.com/Zyxel-EOL.asp
CVE-2014-8361RealtekSDKRealtek SDK Improper Input Validation Vulnerability2023-09-18Realtek SDK contains an improper input validation vulnerability in the miniigd SOAP service that allows remote attackers to execute malicious code via a crafted NewInternalClient request.https://web.archive.org/web/20150831100501/http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10055
CVE-2021-3129LaravelIgnitionLaravel Ignition File Upload Vulnerability2023-09-18Laravel Ignition contains a file upload vulnerability that allows unauthenticated remote attackers to execute malicious code due to insecure usage of file_get_contents() and file_put_contents().https://github.com/facade/ignition/releases/tag/2.5.2
CVE-2023-26369AdobeAcrobat and ReaderAdobe Acrobat and Reader Out-of-Bounds Write Vulnerability2023-09-14Adobe Acrobat and Reader contains an out-of-bounds write vulnerability that allows for code execution.https://helpx.adobe.com/security/products/acrobat/apsb23-34.html
CVE-2023-35674AndroidFrameworkAndroid Framework Privilege Escalation Vulnerability2023-09-13Android Framework contains an unspecified vulnerability that allows for privilege escalation.https://source.android.com/docs/security/bulletin/2023-09-01
CVE-2023-20269CiscoAdaptive Security Appliance and Firepower Threat DefenseCisco Adaptive Security Appliance and Firepower Threat Defense Unauthorized Access Vulnerability2023-09-13Cisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthorized user.https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ravpn-auth-8LyfCkeC
CVE-2023-4863GoogleChromium WebPGoogle Chromium WebP Heap-Based Buffer Overflow Vulnerability2023-09-13Google Chromium WebP contains a heap-based buffer overflow vulnerability that allows a remote attacker to perform an out-of-bounds memory write via a crafted HTML page. This vulnerability can affect applications that use the WebP Codec.https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html?m=1
CVE-2023-36802MicrosoftStreaming Service ProxyMicrosoft Streaming Service Proxy Privilege Escalation Vulnerability2023-09-12Microsoft Streaming Service Proxy contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36802
CVE-2023-36761MicrosoftWordMicrosoft Word Information Disclosure Vulnerability2023-09-12Microsoft Word contains an unspecified vulnerability that allows for information disclosure.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36761
CVE-2023-41061AppleiOS, iPadOS, and watchOSApple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability2023-09-11Apple iOS, iPadOS, and watchOS contain an unspecified vulnerability due to a validation issue affecting Wallet in which a maliciously crafted attachment may result in code execution. This vulnerability was chained with CVE-2023-41064.https://support.apple.com/en-us/HT213905, https://support.apple.com/kb/HT213907
CVE-2023-41064AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS ImageIO Buffer Overflow Vulnerability2023-09-11Apple iOS, iPadOS, and macOS contain a buffer overflow vulnerability in ImageIO when processing a maliciously crafted image, which may lead to code execution. This vulnerability was chained with CVE-2023-41061.https://support.apple.com/en-us/HT213905, https://support.apple.com/en-us/HT213906
CVE-2023-33246ApacheRocketMQApache RocketMQ Command Execution Vulnerability2023-09-06Several components of Apache RocketMQ, including NameServer, Broker, and Controller, are exposed to the extranet and lack permission verification. An attacker can exploit this vulnerability by using the update configuration function to execute commands as the system users that RocketMQ is running as or achieve the same effect by forging the RocketMQ protocol content.https://lists.apache.org/thread/1s8j2c8kogthtpv3060yddk03zq0pxyp
CVE-2023-32315Ignite RealtimeOpenfireIgnite Realtime Openfire Path Traversal Vulnerability2023-08-24Ignite Realtime Openfire contains a path traversal vulnerability that allows an unauthenticated attacker to access restricted pages in the Openfire Admin Console reserved for administrative users.https://www.igniterealtime.org/downloads/#openfire
CVE-2023-38831RARLABWinRARRARLAB WinRAR Code Execution Vulnerability2023-08-24RARLAB WinRAR contains an unspecified vulnerability that allows an attacker to execute code when a user attempts to view a benign file within a ZIP archive.http://www.win-rar.com/singlenewsview.html?&L=0&tx_ttnews%5Btt_news%5D=232&cHash=c5bf79590657e32554c6683296a8e8aa
CVE-2023-38035IvantiSentryIvanti Sentry Authentication Bypass Vulnerability2023-08-22Ivanti Sentry, formerly known as MobileIron Sentry, contains an authentication bypass vulnerability that may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration.https://forums.ivanti.com/s/article/CVE-2023-38035-API-Authentication-Bypass-on-Sentry-Administrator-Interface?language=en_US
CVE-2023-27532VeeamBackup & ReplicationVeeam Backup & Replication Cloud Connect Missing Authentication for Critical Function Vulnerability2023-08-22Veeam Backup & Replication Cloud Connect component contains a missing authentication for critical function vulnerability that allows an unauthenticated user operating within the backup infrastructure network perimeter to obtain encrypted credentials stored in the configuration database. This may lead to an attacker gaining access to the backup infrastructure hosts.https://www.veeam.com/kb4424
CVE-2023-26359AdobeColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2023-08-21Adobe ColdFusion contains a deserialization of untrusted data vulnerability that could result in code execution in the context of the current user.https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html
CVE-2023-24489CitrixContent CollaborationCitrix Content Collaboration ShareFile Improper Access Control Vulnerability2023-08-16Citrix Content Collaboration contains an improper access control vulnerability that could allow an unauthenticated attacker to remotely compromise customer-managed ShareFile storage zones controllers.https://support.citrix.com/article/CTX559517/sharefile-storagezones-controller-security-update-for-cve202324489
CVE-2023-38180Microsoft.NET Core and Visual StudioMicrosoft .NET Core and Visual Studio Denial-of-Service Vulnerability2023-08-09Microsoft .NET Core and Visual Studio contain an unspecified vulnerability that allows for denial-of-service (DoS).https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-38180
CVE-2017-18368ZyxelP660HN-T1A RoutersZyxel P660HN-T1A Routers Command Injection Vulnerability2023-08-07Zyxel P660HN-T1A routers contain a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user and exploited via the remote_host parameter of the ViewLog.asp page.https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-a-new-variant-of-gafgyt-malware; https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-command-injection-vulnerability-in-p660hn-t1a-dsl-cpe
CVE-2023-35081IvantiEndpoint Manager Mobile (EPMM)Ivanti Endpoint Manager Mobile (EPMM) Path Traversal Vulnerability2023-07-31Ivanti Endpoint Manager Mobile (EPMM) contains a path traversal vulnerability that enables an authenticated administrator to perform malicious file writes to the EPMM server. This vulnerability can be used in conjunction with CVE-2023-35078 to bypass authentication and ACLs restrictions (if applicable).https://forums.ivanti.com/s/article/CVE-2023-35081-Arbitrary-File-Write?language=en_US
CVE-2023-37580ZimbraCollaboration (ZCS)Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability2023-07-27Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability impacting the confidentiality and integrity of data.https://wiki.zimbra.com/wiki/Security_Center
CVE-2023-38606AppleMultiple ProductsApple Multiple Products Kernel Unspecified Vulnerability2023-07-26Apple iOS, iPadOS, macOS, tvOS, and watchOS contain an unspecified vulnerability allowing an app to modify a sensitive kernel state.https://support.apple.com/en-us/HT213841, https://support.apple.com/en-us/HT213842, https://support.apple.com/en-us/HT213843,https://support.apple.com/en-us/HT213844,https://support.apple.com/en-us/HT213845,https://support.apple.com/en-us/HT213846,https://support.apple.com/en-us/HT213848
CVE-2023-35078IvantiEndpoint Manager Mobile (EPMM)Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability2023-07-25Ivanti Endpoint Manager Mobile (EPMM, previously branded MobileIron Core) contains an authentication bypass vulnerability that allows unauthenticated access to specific API paths. An attacker with access to these API paths can access personally identifiable information (PII) such as names, phone numbers, and other mobile device details for users on a vulnerable system. An attacker can also make other configuration changes including installing software and modifying security profiles on registered devices.https://forums.ivanti.com/s/article/CVE-2023-35078-Remote-unauthenticated-API-access-vulnerability?language=en_US
CVE-2023-38205AdobeColdFusionAdobe ColdFusion Improper Access Control Vulnerability2023-07-20Adobe ColdFusion contains an improper access control vulnerability that allows for a security feature bypass.https://helpx.adobe.com/security/products/coldfusion/apsb23-47.html
CVE-2023-29298AdobeColdFusionAdobe ColdFusion Improper Access Control Vulnerability2023-07-20Adobe ColdFusion contains an improper access control vulnerability that allows for a security feature bypass.https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html
CVE-2023-3519CitrixNetScaler ADC and NetScaler GatewayCitrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability2023-07-19Citrix NetScaler ADC and NetScaler Gateway contains a code injection vulnerability that allows for unauthenticated remote code execution.https://support.citrix.com/article/CTX561482/citrix-adc-and-citrix-gateway-security-bulletin-for-cve20233519-cve20233466-cve20233467
CVE-2023-36884MicrosoftWindowsMicrosoft Windows Search Remote Code Execution Vulnerability2023-07-17Microsoft Windows Search contains an unspecified vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file, leading to remote code execution.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36884
CVE-2023-37450AppleMultiple ProductsApple Multiple Products WebKit Code Execution Vulnerability2023-07-13Apple iOS, iPadOS, macOS, and Safari WebKit contain an unspecified vulnerability that can allow an attacker to execute code when processing web content.https://support.apple.com/en-us/HT213826, https://support.apple.com/en-us/HT213841, https://support.apple.com/en-us/HT213843, https://support.apple.com/en-us/HT213846, https://support.apple.com/en-us/HT213848
CVE-2022-29303SolarViewCompactSolarView Compact Command Injection Vulnerability2023-07-13SolarView Compact contains a command injection vulnerability due to improper validation of input values on the send test mail console of the product's web server.https://jvn.jp/en/vu/JVNVU92327282/
CVE-2023-32049MicrosoftWindowsMicrosoft Windows Defender SmartScreen Security Feature Bypass Vulnerability2023-07-11Microsoft Windows Defender SmartScreen contains a security feature bypass vulnerability that allows an attacker to bypass the Open File - Security Warning prompt.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-32049
CVE-2023-35311MicrosoftOutlookMicrosoft Outlook Security Feature Bypass Vulnerability2023-07-11Microsoft Outlook contains a security feature bypass vulnerability that allows an attacker to bypass the Microsoft Outlook Security Notice prompt.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-35311
CVE-2023-36874MicrosoftWindowsMicrosoft Windows Error Reporting Service Privilege Escalation Vulnerability2023-07-11Microsoft Windows Error Reporting Service contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-36874
CVE-2022-31199NetwrixAuditorNetwrix Auditor Insecure Object Deserialization Vulnerability2023-07-11Netwrix Auditor User Activity Video Recording component contains an insecure objection deserialization vulnerability that allows an unauthenticated, remote attacker to execute code as the NT AUTHORITY\SYSTEM user. Successful exploitation requires that the attacker is able to reach port 9004/TCP, which is commonly blocked by standard enterprise firewalling.Patch application requires login to customer portal: https://security.netwrix.com/Account/SignIn?ReturnUrl=%2FAdvisories%2FADV-2022-003
CVE-2023-32046MicrosoftWindowsMicrosoft Windows MSHTML Platform Privilege Escalation Vulnerability2023-07-11Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-32046
CVE-2021-29256ArmMali Graphics Processing Unit (GPU)Arm Mali GPU Kernel Driver Use-After-Free Vulnerability2023-07-07Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
CVE-2021-25489SamsungMobile DevicesSamsung Mobile Devices Improper Input Validation Vulnerability2023-06-29Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic.https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10
CVE-2021-25487SamsungMobile DevicesSamsung Mobile Devices Out-of-Bounds Read Vulnerability2023-06-29Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10
CVE-2019-17621D-LinkDIR-859 RouterD-Link DIR-859 Router Command Execution Vulnerability2023-06-29D-Link DIR-859 router contains a command execution vulnerability in the UPnP endpoint URL, /gena.cgi. Exploitation allows an unauthenticated remote attacker to execute system commands as root by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147
CVE-2021-25394SamsungMobile DevicesSamsung Mobile Devices Race Condition Vulnerability2023-06-29Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=5
CVE-2019-20500D-LinkDWL-2600AP Access PointD-Link DWL-2600AP Access Point Command Injection Vulnerability2023-06-29D-Link DWL-2600AP access point contains an authenticated command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_save configBackup or downloadServerip parameter.https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10113
CVE-2021-25372SamsungMobile DevicesSamsung Mobile Devices Improper Boundary Check Vulnerability2023-06-29Samsung mobile devices contain an improper boundary check vulnerability within DSP driver that allows for out-of-bounds memory access.https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=3
CVE-2021-25395SamsungMobile DevicesSamsung Mobile Devices Race Condition Vulnerability2023-06-29Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=5
CVE-2021-25371SamsungMobile DevicesSamsung Mobile Devices Unspecified Vulnerability2023-06-29Samsung mobile devices contain an unspecified vulnerability within DSP driver that allows attackers to load ELF libraries inside DSP.https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=3
CVE-2023-32435AppleMultiple ProductsApple Multiple Products WebKit Memory Corruption Vulnerability2023-06-23Apple iOS, iPadOS, macOS, and Safari WebKit contain a memory corruption vulnerability that leads to code execution when processing web content.https://support.apple.com/en-us/HT213670, https://support.apple.com/en-us/HT213671, https://support.apple.com/en-us/HT213676, https://support.apple.com/en-us/HT213811
CVE-2023-32434AppleMultiple ProductsApple Multiple Products Integer Overflow Vulnerability2023-06-23Apple iOS. iPadOS, macOS, and watchOS contain an integer overflow vulnerability that could allow an application to execute code with kernel privileges.https://support.apple.com/en-us/HT213808, https://support.apple.com/en-us/HT213812, https://support.apple.com/en-us/HT213809, https://support.apple.com/en-us/HT213810, https://support.apple.com/en-us/HT213813, https://support.apple.com/en-us/HT213811, https://support.apple.com/en-us/HT213814
CVE-2023-32439AppleMultiple ProductsApple Multiple Products WebKit Type Confusion Vulnerability2023-06-23Apple iOS, iPadOS, macOS, and Safari WebKit contain a type confusion vulnerability that leads to code execution when processing maliciously crafted web content.https://support.apple.com/en-us/HT213813, https://support.apple.com/en-us/HT213811, https://support.apple.com/en-us/HT213814, https://support.apple.com/en-us/HT213816
CVE-2023-20867VMwareToolsVMware Tools Authentication Bypass Vulnerability2023-06-23VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this vulnerability.https://www.vmware.com/security/advisories/VMSA-2023-0013.html
CVE-2023-27992ZyxelMultiple Network-Attached Storage (NAS) DevicesZyxel Multiple NAS Devices Command Injection Vulnerability2023-06-23Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability that could allow an unauthenticated attacker to execute commands remotely via a crafted HTTP request.https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-pre-authentication-command-injection-vulnerability-in-nas-products
CVE-2020-35730RoundcubeRoundcube WebmailRoundcube Webmail Cross-Site Scripting (XSS) Vulnerability2023-06-22Roundcube Webmail contains a cross-site scripting (XSS) vulnerability that allows an attacker to send a plain text e-mail message with Javascript in a link reference element that is mishandled by linkref_addinindex in rcube_string_replacer.php.https://roundcube.net/news/2020/12/27/security-updates-1.4.10-1.3.16-and-1.2.13
CVE-2020-12641RoundcubeRoundcube WebmailRoundcube Webmail Remote Code Execution Vulnerability2023-06-22Roundcube Webmail contains an remote code execution vulnerability that allows attackers to execute code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.https://roundcube.net/news/2020/04/29/security-updates-1.4.4-1.3.11-and-1.2.10
CVE-2023-20887VMwareAria Operations for NetworksVmware Aria Operations for Networks Command Injection Vulnerability2023-06-22VMware Aria Operations for Networks (formerly vRealize Network Insight) contains a command injection vulnerability that allows a malicious actor with network access to perform an attack resulting in remote code execution.https://www.vmware.com/security/advisories/VMSA-2023-0012.html
CVE-2016-0165MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2023-06-22Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.https://learn.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-039
CVE-2016-9079MozillaFirefox, Firefox ESR, and ThunderbirdMozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability2023-06-22Mozilla Firefox, Firefox ESR, and Thunderbird contain a use-after-free vulnerability in SVG Animation, targeting Firefox and Tor browser users on Windows.https://www.mozilla.org/en-US/security/advisories/mfsa2016-92/#CVE-2016-9079
CVE-2021-44026RoundcubeRoundcube WebmailRoundcube Webmail SQL Injection Vulnerability2023-06-22Roundcube Webmail is vulnerable to SQL injection via search or search_params.https://roundcube.net/news/2021/11/12/security-updates-1.4.12-and-1.3.17-released
CVE-2023-27997FortinetFortiOS and FortiProxy SSL-VPNFortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow Vulnerability2023-06-13Fortinet FortiOS and FortiProxy SSL-VPN contain a heap-based buffer overflow vulnerability which can allow an unauthenticated, remote attacker to execute code or commands via specifically crafted requests.https://www.fortiguard.com/psirt/FG-IR-23-097
CVE-2023-3079GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2023-06-07Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop.html
CVE-2023-33010ZyxelMultiple FirewallsZyxel Multiple Firewalls Buffer Overflow Vulnerability2023-06-05Zyxel ATP, USG FLEX, USG FLEX 50(W), USG20(W)-VPN, VPN, and ZyWALL/USG firewalls contain a buffer overflow vulnerability in the ID processing function that could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and remote code execution on an affected device.https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-buffer-overflow-vulnerabilities-of-firewalls
CVE-2023-33009ZyxelMultiple FirewallsZyxel Multiple Firewalls Buffer Overflow Vulnerability2023-06-05Zyxel ATP, USG FLEX, USG FLEX 50(W), USG20(W)-VPN, VPN, and ZyWALL/USG firewalls contain a buffer overflow vulnerability in the notification function that could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and remote code execution on an affected device.https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-buffer-overflow-vulnerabilities-of-firewalls
CVE-2023-34362ProgressMOVEit TransferProgress MOVEit Transfer SQL Injection Vulnerability2023-06-02Progress MOVEit Transfer contains a SQL injection vulnerability that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database in addition to executing SQL statements that alter or delete database elements.This CVE has a CISA AA located here: https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-158a. Please see the AA for associated IOCs. Additional information is available at: https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023.
CVE-2023-28771ZyxelMultiple FirewallsZyxel Multiple Firewalls OS Command Injection Vulnerability2023-05-31Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow for improper error message handling which could allow an unauthenticated attacker to execute OS commands remotely by sending crafted packets to an affected device.https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-remote-command-injection-vulnerability-of-firewalls
CVE-2023-2868Barracuda NetworksEmail Security Gateway (ESG) ApplianceBarracuda Networks ESG Appliance Improper Input Validation Vulnerability2023-05-26Barracuda Email Security Gateway (ESG) appliance contains an improper input validation vulnerability of a user-supplied .tar file, leading to remote command injection.https://status.barracuda.com/incidents/34kx82j5n4q9
CVE-2023-32409AppleMultiple ProductsApple Multiple Products WebKit Sandbox Escape Vulnerability2023-05-22Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain an unspecified vulnerability that can allow a remote attacker to break out of the Web Content sandbox.https://support.apple.com/HT213757, https://support.apple.com/HT213758, https://support.apple.com/HT213761, https://support.apple.com/HT213762, https://support.apple.com/HT213764, https://support.apple.com/HT213765
CVE-2023-28204AppleMultiple ProductsApple Multiple Products WebKit Out-of-Bounds Read Vulnerability2023-05-22Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclose sensitive information.https://support.apple.com/HT213757, https://support.apple.com/HT213758, https://support.apple.com/HT213761, https://support.apple.com/HT213762, https://support.apple.com/HT213764, https://support.apple.com/HT213765
CVE-2023-32373AppleMultiple ProductsApple Multiple Products WebKit Use-After-Free Vulnerability2023-05-22Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain a use-after-free vulnerability that leads to code execution.https://support.apple.com/HT213757, https://support.apple.com/HT213758, https://support.apple.com/HT213761, https://support.apple.com/HT213762, https://support.apple.com/HT213764, https://support.apple.com/HT213765
CVE-2004-1464CiscoIOSCisco IOS Denial-of-Service Vulnerability2023-05-19Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases, Hypertext Transport Protocol (HTTP) access to the Cisco device.https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20040827-telnet
CVE-2016-6415CiscoIOS, IOS XR, and IOS XECisco IOS, IOS XR, and IOS XE IKEv1 Information Disclosure Vulnerability2023-05-19Cisco IOS, IOS XR, and IOS XE contain insufficient condition checks in the part of the code that handles Internet Key Exchange version 1 (IKEv1) security negotiation requests. contains an information disclosure vulnerability in the Internet Key Exchange version 1 (IKEv1) that could allow an attacker to retrieve memory contents. Successful exploitation could allow the attacker to retrieve memory contents, which can lead to information disclosure.https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160916-ikev1
CVE-2023-21492SamsungMobile DevicesSamsung Mobile Devices Insertion of Sensitive Information Into Log File Vulnerability2023-05-19Samsung mobile devices running Android 11, 12, and 13 contain an insertion of sensitive information into log file vulnerability that allows a privileged, local attacker to conduct an address space layout randomization (ASLR) bypass.https://security.samsungmobile.com/securityUpdate.smsb
CVE-2014-0196LinuxKernelLinux Kernel Race Condition Vulnerability2023-05-12Linux Kernel contains a race condition vulnerability within the n_tty_write function that allows local users to cause a denial-of-service (DoS) or gain privileges via read and write operations with long strings.https://lkml.iu.edu/hypermail/linux/kernel/1609.1/02103.html
CVE-2023-25717Ruckus WirelessMultiple ProductsMultiple Ruckus Wireless Products CSRF and RCE Vulnerability2023-05-12Ruckus Wireless Access Point (AP) software contains an unspecified vulnerability in the web services component. If the web services component is enabled on the AP, an attacker can perform cross-site request forgery (CSRF) or remote code execution (RCE). This vulnerability impacts Ruckus ZoneDirector, SmartZone, and Solo APs.https://support.ruckuswireless.com/security_bulletins/315
CVE-2010-3904LinuxKernelLinux Kernel Improper Input Validation Vulnerability2023-05-12Linux Kernel contains an improper input validation vulnerability in the Reliable Datagram Sockets (RDS) protocol implementation that allows local users to gain privileges via crafted use of the sendmsg and recvmsg system calls.https://lkml.iu.edu/hypermail/linux/kernel/1601.3/06474.html
CVE-2021-3560Red HatPolkitRed Hat Polkit Incorrect Authorization Vulnerability2023-05-12Red Hat Polkit contains an incorrect authorization vulnerability through the bypassing of credential checks for D-Bus requests, allowing for privilege escalation.https://bugzilla.redhat.com/show_bug.cgi?id=1961710
CVE-2015-5317JenkinsJenkins User Interface (UI)Jenkins User Interface (UI) Information Disclosure Vulnerability2023-05-12Jenkins User Interface (UI) contains an information disclosure vulnerability that allows users to see the names of jobs and builds otherwise inaccessible to them on the "Fingerprints" pages.https://www.jenkins.io/security/advisory/2015-11-11/
CVE-2016-3427OracleJava SE and JRockitOracle Java SE and JRockit Unspecified Vulnerability2023-05-12Oracle Java SE and JRockit contains an unspecified vulnerability that allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Java Management Extensions (JMX). This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service.https://www.oracle.com/security-alerts/cpuapr2016v3.html
CVE-2016-8735ApacheTomcatApache Tomcat Remote Code Execution Vulnerability2023-05-12Apache Tomcat contains an unspecified vulnerability that allows for remote code execution if JmxRemoteLifecycleListener is used and an attacker can reach Java Management Extension (JMX) ports. This CVE exists because this listener wasn't updated for consistency with the Oracle patched issues for CVE-2016-3427 which affected credential types.https://tomcat.apache.org/security-9.html
CVE-2023-29336MicrosoftWin32kMicrosoft Win32K Privilege Escalation Vulnerability2023-05-09Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation up to SYSTEM privileges.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-29336
CVE-2023-1389TP-LinkArcher AX21TP-Link Archer AX-21 Command Injection Vulnerability2023-05-01TP-Link Archer AX-21 contains a command injection vulnerability that allows for remote code execution.https://www.tp-link.com/us/support/download/archer-ax21/v3/#Firmware
CVE-2021-45046ApacheLog4j2Apache Log4j2 Deserialization of Untrusted Data Vulnerability2023-05-01Apache Log4j2 contains a deserialization of untrusted data vulnerability due to the incomplete fix of CVE-2021-44228, where the Thread Context Lookup Pattern is vulnerable to remote code execution in certain non-default configurations.https://logging.apache.org/log4j/2.x/security.html
CVE-2023-21839OracleWebLogic ServerOracle WebLogic Server Unspecified Vulnerability2023-05-01Oracle WebLogic Server contains an unspecified vulnerability that allows an unauthenticated attacker with network access via T3, IIOP, to compromise Oracle WebLogic Server.https://www.oracle.com/security-alerts/cpujan2023.html
CVE-2023-27350PaperCutMF/NGPaperCut MF/NG Improper Access Control Vulnerability2023-04-21PaperCut MF/NG contains an improper access control vulnerability within the SetupCompleted class that allows authentication bypass and code execution in the context of system.https://www.papercut.com/kb/Main/PO-1216-and-PO-1219
CVE-2023-2136GoogleChromium SkiaGoogle Chrome Skia Integer Overflow Vulnerability2023-04-21Google Chromium Skia contains an integer overflow vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability affects Google Chrome and ChromeOS, Android, Flutter, and possibly other products.https://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop_18.html
CVE-2023-28432MinIOMinIOMinIO Information Disclosure Vulnerability2023-04-21MinIO contains a vulnerability in a cluster deployment where MinIO returns all environment variables, which allows for information disclosure.https://github.com/minio/minio/security/advisories/GHSA-6xvq-wj2x-3h3q
CVE-2017-6742CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2023-04-19The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
CVE-2019-8526ApplemacOSApple macOS Use-After-Free Vulnerability2023-04-17Apple macOS contains a use-after-free vulnerability that could allow for privilege escalation.https://support.apple.com/en-us/HT209600
CVE-2023-2033GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2023-04-17Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop_14.html
CVE-2023-29492Novi SurveyNovi SurveyNovi Survey Insecure Deserialization Vulnerability2023-04-13Novi Survey contains an insecure deserialization vulnerability that allows remote attackers to execute code on the server in the context of the service account.https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx
CVE-2023-20963AndroidFrameworkAndroid Framework Privilege Escalation Vulnerability2023-04-13Android Framework contains an unspecified vulnerability that allows for privilege escalation after updating an app to a higher Target SDK with no additional execution privileges needed.https://source.android.com/docs/security/bulletin/2023-03-01
CVE-2023-28252MicrosoftWindowsMicrosoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability2023-04-11Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-28252
CVE-2023-28205AppleMultiple ProductsApple Multiple Products WebKit Use-After-Free Vulnerability2023-04-10Apple iOS, iPadOS, macOS, and Safari WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content.https://support.apple.com/en-us/HT213720,https://support.apple.com/en-us/HT213721,https://support.apple.com/en-us/HT213722,https://support.apple.com/en-us/HT213723
CVE-2023-28206AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerability2023-04-10Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to execute code with kernel privileges.https://support.apple.com/en-us/HT213720, https://support.apple.com/en-us/HT213721
CVE-2021-27877VeritasBackup Exec AgentVeritas Backup Exec Agent Improper Authentication Vulnerability2023-04-07Veritas Backup Exec (BE) Agent contains an improper authentication vulnerability that could allow an attacker unauthorized access to the BE Agent via SHA authentication scheme.https://www.veritas.com/support/en_US/security/VTS21-001
CVE-2021-27876VeritasBackup Exec AgentVeritas Backup Exec Agent File Access Vulnerability2023-04-07Veritas Backup Exec (BE) Agent contains a file access vulnerability that could allow an attacker to specially craft input parameters on a data management protocol command to access files on the BE Agent machine.https://www.veritas.com/support/en_US/security/VTS21-001
CVE-2021-27878VeritasBackup Exec AgentVeritas Backup Exec Agent Command Execution Vulnerability2023-04-07Veritas Backup Exec (BE) Agent contains a command execution vulnerability that could allow an attacker to use a data management protocol command to execute a command on the BE Agent machine.https://www.veritas.com/support/en_US/security/VTS21-001
CVE-2023-26083ArmMali Graphics Processing Unit (GPU)Arm Mali GPU Kernel Driver Information Disclosure Vulnerability2023-04-07Arm Mali GPU Kernel Driver contains an information disclosure vulnerability that allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
CVE-2019-1388MicrosoftWindowsMicrosoft Windows Certificate Dialog Privilege Escalation Vulnerability2023-04-07Microsoft Windows Certificate Dialog contains a privilege escalation vulnerability, allowing attackers to run processes in an elevated context.https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1388
CVE-2022-27926ZimbraCollaboration (ZCS)Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability2023-04-03Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability by allowing an endpoint URL to accept parameters without sanitizing.https://wiki.zimbra.com/wiki/Security_Center
CVE-2022-39197FortraCobalt StrikeFortra Cobalt Strike Teamserver Cross-Site Scripting (XSS) Vulnerability2023-03-30Fortra Cobalt Strike contains a cross-site scripting (XSS) vulnerability in Teamserver that would allow an attacker to set a malformed username in the Beacon configuration, allowing them to execute code remotely.https://www.cobaltstrike.com/blog/out-of-band-update-cobalt-strike-4-7-1/
CVE-2017-7494SambaSambaSamba Remote Code Execution Vulnerability2023-03-30Samba contains a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share and then cause the server to load and execute it.https://www.samba.org/samba/security/CVE-2017-7494.html
CVE-2013-3163MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2023-03-30Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause a denial of service via a crafted website.https://learn.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-055
CVE-2021-30900AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS Out-of-Bounds Write Vulnerability2023-03-30Apple GPU drivers, included in iOS, iPadOS, and macOS, contain an out-of-bounds write vulnerability that may allow a malicious application to execute code with kernel privileges.https://support.apple.com/en-us/HT21286, https://support.apple.com/en-us/HT212868, https://support.apple.com/kb/HT212872
CVE-2022-42948FortraCobalt StrikeFortra Cobalt Strike User Interface Remote Code Execution Vulnerability2023-03-30Fortra Cobalt Strike User Interface contains an unspecified vulnerability rooted in Java Swing that may allow remote code execution.https://www.cobaltstrike.com/blog/out-of-band-update-cobalt-strike-4-7-2/
CVE-2022-22706ArmMali Graphics Processing Unit (GPU)Arm Mali GPU Kernel Driver Unspecified Vulnerability2023-03-30Arm Mali GPU Kernel Driver contains an unspecified vulnerability that allows a non-privileged user to achieve write access to read-only memory pages.https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
CVE-2022-3038GoogleChromium Network ServiceGoogle Chromium Network Service Use-After-Free Vulnerability2023-03-30Google Chromium Network Service contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_30.html
CVE-2022-38181ArmMali Graphics Processing Unit (GPU)Arm Mali GPU Kernel Driver Use-After-Free Vulnerability2023-03-30Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
CVE-2023-0266LinuxKernelLinux Kernel Use-After-Free Vulnerability2023-03-30Linux kernel contains a use-after-free vulnerability that allows for privilege escalation to gain ring0 access from the system user.https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-5.10/alsa-pcm-move-rwsem-lock-inside-snd_ctl_elem_read-to-prevent-uaf.patch?id=72783cf35e6c55bca84c4bb7b776c58152856fd4
CVE-2023-26360AdobeColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2023-03-15Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for remote code execution.https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html
CVE-2023-23397MicrosoftOfficeMicrosoft Office Outlook Privilege Escalation Vulnerability2023-03-14Microsoft Office Outlook contains a privilege escalation vulnerability that allows for a NTLM Relay attack against another service to authenticate as the user.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-23397, https://msrc.microsoft.com/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability/,
CVE-2023-24880MicrosoftWindowsMicrosoft Windows SmartScreen Security Feature Bypass Vulnerability2023-03-14Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-24880
CVE-2022-41328FortinetFortiOSFortinet FortiOS Path Traversal Vulnerability2023-03-14Fortinet FortiOS contains a path traversal vulnerability that may allow a local privileged attacker to read and write files via crafted CLI commands.https://www.fortiguard.com/psirt/FG-IR-22-369
CVE-2020-5741PlexMedia ServerPlex Media Server Remote Code Execution Vulnerability2023-03-10Plex Media Server contains a remote code execution vulnerability that allows an attacker with access to the server administrator's Plex account to upload a malicious file via the Camera Upload feature and have the media server execute it.https://forums.plex.tv/t/security-regarding-cve-2020-5741/586819
CVE-2021-39144XStreamXStreamXStream Remote Code Execution Vulnerability2023-03-10XStream contains a remote code execution vulnerability that allows an attacker to manipulate the processed input stream and replace or inject objects that result in the execution of a local command on the server. This vulnerability can affect multiple products, including but not limited to VMware Cloud Foundation.https://www.vmware.com/security/advisories/VMSA-2022-0027.html, https://x-stream.github.io/CVE-2021-39144.html
CVE-2022-28810ZohoManageEngineZoho ManageEngine ADSelfService Plus Remote Code Execution Vulnerability2023-03-07Zoho ManageEngine ADSelfService Plus contains an unspecified vulnerability allowing for remote code execution when performing a password change or reset.https://www.manageengine.com/products/self-service-password/advisory/CVE-2022-28810.html
CVE-2022-33891ApacheSparkApache Spark Command Injection Vulnerability2023-03-07Apache Spark contains a command injection vulnerability via Spark User Interface (UI) when Access Control Lists (ACLs) are enabled.https://lists.apache.org/thread/p847l3kopoo5bjtmxrcwk21xp6tjxqlc
CVE-2022-35914TeclibGLPITeclib GLPI Remote Code Execution Vulnerability2023-03-07Teclib GLPI contains a remote code execution vulnerability in the third-party library, htmlawed.https://glpi-project.org/fr/glpi-10-0-3-disponible/, http://www.bioinformatics.org/phplabware/sourceer/sourceer.php?&Sfs=htmLawedTest.php&Sl=.%2Finternal_utilities%2FhtmLawed.
CVE-2022-36537ZK FrameworkAuUploaderZK Framework AuUploader Unspecified Vulnerability2023-02-27ZK Framework AuUploader servlets contain an unspecified vulnerability that could allow an attacker to retrieve the content of a file located in the web context. The ZK Framework is an open-source Java framework. This vulnerability can impact multiple products, including but not limited to ConnectWise R1Soft Server Backup Manager.https://tracker.zkoss.org/browse/ZK-5150
CVE-2022-47986IBMAspera FaspexIBM Aspera Faspex Code Execution Vulnerability2023-02-21IBM Aspera Faspex could allow a remote attacker to execute code on the system, caused by a YAML deserialization flaw.https://exchange.xforce.ibmcloud.com/vulnerabilities/243512?_ga=2.189195179.1800390251.1676559338-700333034.1676325890
CVE-2022-41223MitelMiVoice ConnectMitel MiVoice Connect Code Injection Vulnerability2023-02-21The Director component in Mitel MiVoice Connect allows an authenticated attacker with internal network access to execute code within the context of the application.https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0008
CVE-2022-40765MitelMiVoice ConnectMitel MiVoice Connect Command Injection Vulnerability2023-02-21The Mitel Edge Gateway component of MiVoice Connect allows an authenticated attacker with internal network access to execute commands within the context of the system.https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-22-0007
CVE-2022-46169CactiCactiCacti Command Injection Vulnerability2023-02-16Cacti contains a command injection vulnerability that allows an unauthenticated user to execute code.https://github.com/Cacti/cacti/security/advisories/GHSA-6p93-p743-35gf
CVE-2023-21715MicrosoftOfficeMicrosoft Office Publisher Security Feature Bypass Vulnerability2023-02-14Microsoft Office Publisher contains a security feature bypass vulnerability that allows for a local, authenticated attack on a targeted system.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21715
CVE-2023-23376MicrosoftWindowsMicrosoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability2023-02-14Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-23376
CVE-2023-21823MicrosoftWindowsMicrosoft Windows Graphic Component Privilege Escalation Vulnerability2023-02-14Microsoft Windows Graphic Component contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21823
CVE-2023-23529AppleMultiple ProductsApple Multiple Products WebKit Type Confusion Vulnerability2023-02-14WebKit in Apple iOS, MacOS, Safari and iPadOS contains a type confusion vulnerability that may lead to code execution.https://support.apple.com/en-us/HT213635, https://support.apple.com/en-us/HT213633, https://support.apple.com/en-us/HT213638
CVE-2015-2291IntelEthernet Diagnostics Driver for WindowsIntel Ethernet Diagnostics Driver for Windows Denial-of-Service Vulnerability2023-02-10Intel ethernet diagnostics driver for Windows IQVW32.sys and IQVW64.sys contain an unspecified vulnerability that allows for a denial-of-service (DoS).https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00051.html
CVE-2022-24990TerraMasterTerraMaster OSTerraMaster OS Remote Command Execution Vulnerability2023-02-10TerraMaster OS contains a remote command execution vulnerability that allows an unauthenticated user to execute commands on the target endpoint.https://forum.terra-master.com/en/viewtopic.php?t=3030
CVE-2023-0669FortraGoAnywhere MFTFortra GoAnywhere MFT Remote Code Execution Vulnerability2023-02-10Fortra (formerly, HelpSystems) GoAnywhere MFT contains a pre-authentication remote code execution vulnerability in the License Response Servlet due to deserializing an attacker-controlled object.This CVE has a CISA AA located here: https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-158a. Please see the AA for associated IOCs. Additional information is available at: https://my.goanywhere.com/webclient/DownloadProductFiles.xhtml. Fortra users must have an account in order to login and access the patch.
CVE-2023-22952SugarCRMMultiple ProductsMultiple SugarCRM Products Remote Code Execution Vulnerability2023-02-02Multiple SugarCRM products contain a remote code execution vulnerability in the EmailTemplates. Using a specially crafted request, custom PHP code can be injected through the EmailTemplates.https://support.sugarcrm.com/Resources/Security/sugarcrm-sa-2023-001/
CVE-2022-21587OracleE-Business SuiteOracle E-Business Suite Unspecified Vulnerability2023-02-02Oracle E-Business Suite contains an unspecified vulnerability that allows an unauthenticated attacker with network access via HTTP to compromise Oracle Web Applications Desktop Integrator.https://www.oracle.com/security-alerts/cpuoct2022.html
CVE-2017-11357TelerikUser Interface (UI) for ASP.NET AJAXTelerik UI for ASP.NET AJAX Insecure Direct Object Reference Vulnerability2023-01-26Telerik UI for ASP.NET AJAX contains an insecure direct object reference vulnerability in RadAsyncUpload that can result in file uploads in a limited location and/or remote code execution.https://docs.telerik.com/devtools/aspnet-ajax/knowledge-base/asyncupload-insecure-direct-object-reference
CVE-2022-47966ZohoManageEngineZoho ManageEngine Multiple Products Remote Code Execution Vulnerability2023-01-23Multiple Zoho ManageEngine products contain an unauthenticated remote code execution vulnerability due to the usage of an outdated third-party dependency, Apache Santuario.https://www.manageengine.com/security/advisory/CVE/cve-2022-47966.html
CVE-2022-44877CWPControl Web PanelCWP Control Web Panel OS Command Injection Vulnerability2023-01-17CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command injection vulnerability that allows remote attackers to execute commands via shell metacharacters in the login parameter.https://control-webpanel.com/changelog#1669855527714-450fb335-6194
CVE-2022-41080MicrosoftExchange ServerMicrosoft Exchange Server Privilege Escalation Vulnerability2023-01-10Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation. This vulnerability is chainable with CVE-2022-41082, which allows for remote code execution.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-41080
CVE-2023-21674MicrosoftWindowsMicrosoft Windows Advanced Local Procedure Call (ALPC) Privilege Escalation Vulnerability2023-01-10Microsoft Windows Advanced Local Procedure Call (ALPC) contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21674
CVE-2018-18809TIBCOJasperReportsTIBCO JasperReports Library Directory Traversal Vulnerability2022-12-29TIBCO JasperReports Library contains a directory-traversal vulnerability that may allow web server users to access contents of the host system.https://www.tibco.com/support/advisories/2019/03/tibco-security-advisory-march-6-2019-tibco-jasperreports-library-2018-18809
CVE-2018-5430TIBCOJasperReportsTIBCO JasperReports Server Information Disclosure Vulnerability2022-12-29TIBCO JasperReports Server contain a vulnerability which may allow any authenticated user read-only access to the contents of the web application, including key configuration files.https://www.tibco.com/support/advisories/2018/04/tibco-security-advisory-april-17-2018-tibco-jasperreports-2018-5430
CVE-2022-42856AppleiOSApple iOS Type Confusion Vulnerability2022-12-14Apple iOS contains a type confusion vulnerability when processing maliciously crafted web content leading to code execution.https://support.apple.com/en-us/HT213516
CVE-2022-42475FortinetFortiOSFortinet FortiOS Heap-Based Buffer Overflow Vulnerability2022-12-13Multiple versions of Fortinet FortiOS SSL-VPN contain a heap-based buffer overflow vulnerability which can allow an unauthenticated, remote attacker to execute arbitrary code or commands via specifically crafted requests.https://www.fortiguard.com/psirt/FG-IR-22-398
CVE-2022-44698MicrosoftDefenderMicrosoft Defender SmartScreen Security Feature Bypass Vulnerability2022-12-13Microsoft Defender SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44698
CVE-2022-27518CitrixApplication Delivery Controller (ADC) and GatewayCitrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability2022-12-13Citrix Application Delivery Controller (ADC) and Gateway, when configured with SAML SP or IdP configuration, contain an authentication bypass vulnerability that allows an attacker to execute code as administrator.https://www.citrix.com/blogs/2022/12/13/critical-security-update-now-available-for-citrix-adc-citrix-gateway/
CVE-2022-26501VeeamBackup & ReplicationVeeam Backup & Replication Remote Code Execution Vulnerability2022-12-13The Veeam Distribution Service in the Backup & Replication application allows unauthenticated users to access internal API functions. A remote attacker can send input to the internal API which may lead to uploading and executing of malicious code.https://www.veeam.com/kb4288
CVE-2022-26500VeeamBackup & ReplicationVeeam Backup & Replication Remote Code Execution Vulnerability2022-12-13The Veeam Distribution Service in the Backup & Replication application allows unauthenticated users to access internal API functions. A remote attacker can send input to the internal API which may lead to uploading and executing of malicious code.https://www.veeam.com/kb4288
CVE-2022-4262GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2022-12-05Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop.html
CVE-2021-35587OracleFusion MiddlewareOracle Fusion Middleware Unspecified Vulnerability2022-11-28Oracle Fusion Middleware Access Manager allows an unauthenticated attacker with network access via HTTP to takeover the Access Manager product.https://www.oracle.com/security-alerts/cpujan2022.html
CVE-2022-4135GoogleChromium GPUGoogle Chromium GPU Heap Buffer Overflow Vulnerability2022-11-28Google Chromium GPU contains a heap buffer overflow vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop_24.html
CVE-2022-41049MicrosoftWindowsMicrosoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability2022-11-14Microsoft Windows Mark of the Web (MOTW) contains a security feature bypass vulnerability resulting in a limited loss of integrity and availability of security features.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-41049
CVE-2022-41125MicrosoftWindowsMicrosoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability2022-11-08Microsoft Windows Cryptographic Next Generation (CNG) Key Isolation Service contains an unspecified vulnerability that allows an attacker to gain SYSTEM-level privileges.https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41125
CVE-2022-41073MicrosoftWindowsMicrosoft Windows Print Spooler Privilege Escalation Vulnerability2022-11-08Microsoft Windows Print Spooler contains an unspecified vulnerability that allows an attacker to gain SYSTEM-level privileges.https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41073
CVE-2022-41128MicrosoftWindowsMicrosoft Windows Scripting Languages Remote Code Execution Vulnerability2022-11-08Microsoft Windows contains an unspecified vulnerability in the JScript9 scripting language which allows for remote code execution.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41128
CVE-2021-25369SamsungMobile DevicesSamsung Mobile Devices Improper Access Control Vulnerability2022-11-08Samsung mobile devices using Mali GPU contains an improper access control vulnerability in sec_log file. Exploitation of the vulnerability exposes sensitive kernel information to the userspace. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25370.https://security.samsungmobile.com/securityUpdate.smsb
CVE-2021-25370SamsungMobile DevicesSamsung Mobile Devices Memory Corruption Vulnerability2022-11-08Samsung mobile devices using Mali GPU contain an incorrect implementation handling file descriptor in dpu driver. This incorrect implementation results in memory corruption, leading to kernel panic. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25369.https://security.samsungmobile.com/securityUpdate.smsb
CVE-2022-41091MicrosoftWindowsMicrosoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability2022-11-08Microsoft Windows Mark of the Web (MOTW) contains a security feature bypass vulnerability resulting in a limited loss of integrity and availability of security features.https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41091
CVE-2021-25337SamsungMobile DevicesSamsung Mobile Devices Improper Access Control Vulnerability2022-11-08Samsung mobile devices contain an improper access control vulnerability in clipboard service which allows untrusted applications to read or write arbitrary files. This vulnerability was chained with CVE-2021-25369 and CVE-2021-25370.https://security.samsungmobile.com/securityUpdate.smsb
CVE-2022-3723GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2022-10-28Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2022/10/stable-channel-update-for-desktop_27.html
CVE-2022-42827AppleiOS and iPadOSApple iOS and iPadOS Out-of-Bounds Write Vulnerability2022-10-25Apple iOS and iPadOS kernel contain an out-of-bounds write vulnerability which can allow an application to perform code execution with kernel privileges.https://support.apple.com/en-us/HT213489
CVE-2020-3153CiscoAnyConnect SecureCisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability2022-10-24Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks.https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ac-win-path-traverse-qO4HWBsj
CVE-2020-3433CiscoAnyConnect SecureCisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability2022-10-24Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges.https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-dll-F26WwJW
CVE-2018-19323GIGABYTEMultiple ProductsGIGABYTE Multiple Products Privilege Escalation Vulnerability2022-10-24The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges.https://www.gigabyte.com/Support/Security/1801
CVE-2018-19321GIGABYTEMultiple ProductsGIGABYTE Multiple Products Privilege Escalation Vulnerability2022-10-24The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges.https://www.gigabyte.com/Support/Security/1801
CVE-2018-19322GIGABYTEMultiple ProductsGIGABYTE Multiple Products Code Execution Vulnerability2022-10-24The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.https://www.gigabyte.com/Support/Security/1801
CVE-2018-19320GIGABYTEMultiple ProductsGIGABYTE Multiple Products Unspecified Vulnerability2022-10-24The GDrv low-level driver in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system.https://www.gigabyte.com/Support/Security/1801
CVE-2021-3493LinuxKernelLinux Kernel Privilege Escalation Vulnerability2022-10-20The overlayfs stacking file system in Linux kernel does not properly validate the application of file capabilities against user namespaces, which could lead to privilege escalation.https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7c03e2cda4a584cadc398e8f6641ca9988a39d52
CVE-2022-41352ZimbraCollaboration (ZCS)Zimbra Collaboration (ZCS) Arbitrary File Upload Vulnerability2022-10-20Zimbra Collaboration (ZCS) allows an attacker to upload arbitrary files using cpio package to gain incorrect access to any other user accounts.https://wiki.zimbra.com/wiki/Security_Center
CVE-2022-40684FortinetMultiple ProductsFortinet Multiple Products Authentication Bypass Vulnerability2022-10-11Fortinet FortiOS, FortiProxy, and FortiSwitchManager contain an authentication bypass vulnerability that could allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.https://www.fortiguard.com/psirt/FG-IR-22-377
CVE-2022-41033MicrosoftWindows COM+ Event System ServiceMicrosoft Windows COM+ Event System Service Privilege Escalation Vulnerability2022-10-11Microsoft Windows COM+ Event System Service contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-41033
CVE-2022-41082MicrosoftExchange ServerMicrosoft Exchange Server Remote Code Execution Vulnerability2022-09-30Microsoft Exchange Server contains an unspecified vulnerability that allows for authenticated remote code execution. Dubbed "ProxyNotShell," this vulnerability is chainable with CVE-2022-41040 which allows for the remote code execution.https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/
CVE-2022-41040MicrosoftExchange ServerMicrosoft Exchange Server Server-Side Request Forgery Vulnerability2022-09-30Microsoft Exchange Server allows for server-side request forgery. Dubbed "ProxyNotShell," this vulnerability is chainable with CVE-2022-41082 which allows for remote code execution.https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/
CVE-2022-36804AtlassianBitbucket Server and Data CenterAtlassian Bitbucket Server and Data Center Command Injection Vulnerability2022-09-30Multiple API endpoints of Atlassian Bitbucket Server and Data Center contain a command injection vulnerability where an attacker with access to a public Bitbucket repository, or with read permissions to a private one, can execute code by sending a malicious HTTP request.https://jira.atlassian.com/browse/BSERV-13438
CVE-2022-3236SophosFirewallSophos Firewall Code Injection Vulnerability2022-09-23A code injection vulnerability in the User Portal and Webadmin of Sophos Firewall allows for remote code execution.https://www.sophos.com/en-us/security-advisories/sophos-sa-20220923-sfos-rce
CVE-2022-35405ZohoManageEngineZoho ManageEngine Multiple Products Remote Code Execution Vulnerability2022-09-22Zoho ManageEngine PAM360, Password Manager Pro, and Access Manager Plus contain an unspecified vulnerability that allows for remote code execution.https://www.manageengine.com/products/passwordmanagerpro/advisory/cve-2022-35405.html
CVE-2013-2597Code AuroraACDB Audio DriverCode Aurora ACDB Audio Driver Stack-based Buffer Overflow Vulnerability2022-09-15The Code Aurora audio calibration database (acdb) audio driver contains a stack-based buffer overflow vulnerability that allows for privilege escalation. Code Aurora is used in third-party products such as Qualcomm and Android.https://web.archive.org/web/20161226013354/https:/www.codeaurora.org/news/security-advisories/stack-based-buffer-overflow-acdb-audio-driver-cve-2013-2597
CVE-2013-6282LinuxKernelLinux Kernel Improper Input Validation Vulnerability2022-09-15The get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. This allows an application to read and write kernel memory which could lead to privilege escalation.https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8404663f81d212918ff85f493649a7991209fa04
CVE-2013-2596LinuxKernelLinux Kernel Integer Overflow Vulnerability2022-09-15Linux kernel fb_mmap function in drivers/video/fbmem.c contains an integer overflow vulnerability that allows for privilege escalation.https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fc9bbca8f650e5f738af8806317c0a041a48ae4a
CVE-2022-40139Trend MicroApex One and Apex One as a ServiceTrend Micro Apex One and Apex One as a Service Improper Validation Vulnerability2022-09-15Trend Micro Apex One and Apex One as a Service contain an improper validation of rollback mechanism components that could lead to remote code execution.https://success.trendmicro.com/dcx/s/solution/000291528?language=en_US
CVE-2013-2094LinuxKernelLinux Kernel Privilege Escalation Vulnerability2022-09-15Linux kernel fails to check all 64 bits of attr.config passed by user space, resulting to out-of-bounds access of the perf_swevent_enabled array in sw_perf_event_destroy(). Explotation allows for privilege escalation.https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8176cced706b5e5d15887584150764894e94e02f
CVE-2010-2568MicrosoftWindowsMicrosoft Windows Remote Code Execution Vulnerability2022-09-15Microsoft Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the operating system displays the icon of a malicious shortcut file. An attacker who successfully exploited this vulnerability could execute code as the logged-on user.https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-046
CVE-2022-32917AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS Remote Code Execution Vulnerability2022-09-14Apple kernel, which is included in iOS, iPadOS, and macOS, contains an unspecified vulnerability where an application may be able to execute code with kernel privileges.https://support.apple.com/en-us/HT213445, https://support.apple.com/en-us/HT213444
CVE-2022-37969MicrosoftWindowsMicrosoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability2022-09-14Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-37969
CVE-2020-9934AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS Input Validation Vulnerability2022-09-08Apple iOS, iPadOS, and macOS contain an unspecified vulnerability involving input validation which can allow a local attacker to view sensitive user information.https://support.apple.com/en-us/HT211288, https://support.apple.com/en-us/HT211289
CVE-2018-7445MikroTikRouterOSMikroTik RouterOS Stack-Based Buffer Overflow Vulnerability2022-09-08In MikroTik RouterOS, a stack-based buffer overflow occurs when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system.https://www.coresecurity.com/core-labs/advisories/mikrotik-routeros-smb-buffer-overflow#vendor_update, https://mikrotik.com/download
CVE-2022-26258D-LinkDIR-820LD-Link DIR-820L Remote Code Execution Vulnerability2022-09-08D-Link DIR-820L contains an unspecified vulnerability in Device Name parameter in /lan.asp which allows for remote code execution.https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10295
CVE-2022-27593QNAPPhoto StationQNAP Photo Station Externally Controlled Reference Vulnerability2022-09-08Certain QNAP NAS running Photo Station with internet exposure contain an externally controlled reference to a resource vulnerability which can allow an attacker to modify system files. This vulnerability was observed being utilized in a Deadbolt ransomware campaign.https://www.qnap.com/en/security-advisory/qsa-22-24
CVE-2022-3075GoogleChromium MojoGoogle Chromium Mojo Insufficient Data Validation Vulnerability2022-09-08Google Chromium Mojo contains an insufficient data validation vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop.html, https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-3075
CVE-2018-6530D-LinkMultiple RoutersD-Link Multiple Routers OS Command Injection Vulnerability2022-09-08Multiple D-Link routers contain an unspecified vulnerability that allows for execution of OS commands.https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10105
CVE-2018-2628OracleWebLogic ServerOracle WebLogic Server Unspecified Vulnerability2022-09-08Oracle WebLogic Server contains an unspecified vulnerability which can allow an unauthenticated attacker with T3 network access to compromise the server.https://www.oracle.com/security-alerts/cpuapr2018.html
CVE-2011-4723D-LinkDIR-300 RouterD-Link DIR-300 Router Cleartext Storage of a Password Vulnerability2022-09-08The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive information.https://www.dlink.ru/mn/products/2/728.html
CVE-2017-5521NETGEARMultiple DevicesNETGEAR Multiple Devices Exposure of Sensitive Information Vulnerability2022-09-08Multiple NETGEAR devices are prone to admin password disclosure via simple crafted requests to the web management server.https://kb.netgear.com/30632/Web-GUI-Password-Recovery-and-Exposure-Security-Vulnerability
CVE-2011-1823AndroidAndroid OSAndroid OS Privilege Escalation Vulnerability2022-09-08The vold volume manager daemon in Android kernel trusts messages from a PF_NETLINK socket, which allows an attacker to execute code and gain root privileges. This vulnerability is associated with GingerBreak and Exploit.AndroidOS.Lotoor.https://android.googlesource.com/platform/system/vold/+/c51920c82463b240e2be0430849837d6fdc5352e
CVE-2018-13374FortinetFortiOS and FortiADCFortinet FortiOS and FortiADC Improper Access Control Vulnerability2022-09-08Fortinet FortiOS and FortiADC contain an improper access control vulnerability that allows attackers to obtain the LDAP server login credentials configured in FortiGate by pointing a LDAP server connectivity test request to a rogue LDAP server.https://www.fortiguard.com/psirt/FG-IR-18-157
CVE-2022-22963VMware TanzuSpring CloudVMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability2022-08-25When using routing functionality in VMware Tanzu's Spring Cloud Function, it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.https://tanzu.vmware.com/security/cve-2022-22963
CVE-2022-24112ApacheAPISIXApache APISIX Authentication Bypass Vulnerability2022-08-25Apache APISIX contains an authentication bypass vulnerability that allows for remote code execution.https://lists.apache.org/thread/lcdqywz8zy94mdysk7p3gfdgn51jmt94
CVE-2022-26352dotCMSdotCMSdotCMS Unrestricted Upload of File Vulnerability2022-08-25dotCMS ContentResource API contains an unrestricted upload of file with a dangerous type vulnerability that allows for directory traversal, in which the file is saved outside of the intended storage location. Exploitation allows for remote code execution.https://www.dotcms.com/security/SI-62
CVE-2022-2294WebRTCWebRTCWebRTC Heap Buffer Overflow Vulnerability2022-08-25WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows an attacker to perform shellcode execution. This vulnerability impacts web browsers using WebRTC including but not limited to Google Chrome.https://groups.google.com/g/discuss-webrtc/c/5KBtZx2gvcQ
CVE-2022-24706ApacheCouchDBApache CouchDB Insecure Default Initialization of Resource Vulnerability2022-08-25Apache CouchDB contains an insecure default initialization of resource vulnerability which can allow an attacker to escalate to administrative privileges.https://lists.apache.org/thread/w24wo0h8nlctfps65txvk0oc5hdcnv00
CVE-2020-28949PEARArchive_TarPEAR Archive_Tar Deserialization of Untrusted Data Vulnerability2022-08-25PEAR Archive_Tar allows an unserialization attack because phar: is blocked but PHAR: is not blocked. PEAR stands for PHP Extension and Application Repository and it is an open-source framework and distribution system for reusable PHP components with known usage in third-party products such as Drupal Core and Red Hat Linux.https://pear.php.net/bugs/bug.php?id=27002, https://www.drupal.org/sa-core-2020-013, https://access.redhat.com/security/cve/cve-2020-28949
CVE-2021-39226Grafana LabsGrafanaGrafana Authentication Bypass Vulnerability2022-08-25Grafana contains an authentication bypass vulnerability that allows authenticated and unauthenticated users to view and delete all snapshot data, potentially resulting in complete snapshot data loss.https://grafana.com/blog/2021/10/05/grafana-7.5.11-and-8.1.6-released-with-critical-security-fix/
CVE-2021-31010AppleiOS, macOS, watchOSApple iOS, macOS, watchOS Sandbox Bypass Vulnerability2022-08-25In affected versions of Apple iOS, macOS, and watchOS, a sandboxed process may be able to circumvent sandbox restrictions.https://support.apple.com/en-us/HT212804, https://support.apple.com/en-us/HT212805, https://support.apple.com/en-us/HT212806, https://support.apple.com/en-us/HT212807, https://support.apple.com/en-us/HT212824
CVE-2020-36193PEARArchive_TarPEAR Archive_Tar Improper Link Resolution Vulnerability2022-08-25PEAR Archive_Tar Tar.php allows write operations with directory traversal due to inadequate checking of symbolic links. PEAR stands for PHP Extension and Application Repository and it is an open-source framework and distribution system for reusable PHP components with known usage in third-party products such as Drupal Core and Red Hat Linux.https://github.com/pear/Archive_Tar/commit/cde460582ff389404b5b3ccb59374e9b389de916, https://www.drupal.org/sa-core-2021-001, https://access.redhat.com/security/cve/cve-2020-36193
CVE-2021-38406Delta ElectronicsDOPSoft 2Delta Electronics DOPSoft 2 Improper Input Validation Vulnerability2022-08-25Delta Electronics DOPSoft 2 lacks proper validation of user-supplied data when parsing specific project files (improper input validation) resulting in an out-of-bounds write that allows for code execution.https://www.cisa.gov/uscert/ics/advisories/icsa-21-252-02
CVE-2022-0028Palo Alto NetworksPAN-OSPalo Alto Networks PAN-OS Reflected Amplification Denial-of-Service Vulnerability2022-08-22A Palo Alto Networks PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct reflected and amplified TCP denial-of-service (RDoS) attacks.https://security.paloaltonetworks.com/CVE-2022-0028
CVE-2022-32893AppleiOS and macOSApple iOS and macOS Out-of-Bounds Write Vulnerability2022-08-18Apple iOS and macOS contain an out-of-bounds write vulnerability that could allow for remote code execution when processing malicious crafted web content.https://support.apple.com/en-gb/HT213412, https://support.apple.com/en-gb/HT213413
CVE-2022-32894AppleiOS and macOSApple iOS and macOS Out-of-Bounds Write Vulnerability2022-08-18Apple iOS and macOS contain an out-of-bounds write vulnerability that could allow an application to execute code with kernel privileges.https://support.apple.com/en-gb/HT213412, https://support.apple.com/en-gb/HT213413
CVE-2022-22536SAPMultiple ProductsSAP Multiple Products HTTP Request Smuggling Vulnerability2022-08-18SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server and SAP Web Dispatcher allow HTTP request smuggling. An unauthenticated attacker can prepend a victim's request with arbitrary data, allowing for function execution impersonating the victim or poisoning intermediary Web caches.SAP users must have an account in order to login and access the patch. https://accounts.sap.com/saml2/idp/sso
CVE-2022-2856GoogleChromium IntentsGoogle Chromium Intents Insufficient Input Validation Vulnerability2022-08-18Google Chromium Intents contains an insufficient validation of untrusted input vulnerability that allows a remote attacker to browse to a malicious website via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.html
CVE-2017-15944Palo Alto NetworksPAN-OSPalo Alto Networks PAN-OS Remote Code Execution Vulnerability2022-08-18Palo Alto Networks PAN-OS contains multiple, unspecified vulnerabilities which can allow for remote code execution when chained.https://security.paloaltonetworks.com/CVE-2017-15944
CVE-2022-26923MicrosoftActive DirectoryMicrosoft Active Directory Domain Services Privilege Escalation Vulnerability2022-08-18An authenticated user could manipulate attributes on computer accounts they own or manage, and acquire a certificate from Active Directory Certificate Services that would allow for privilege escalation to SYSTEM.https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-26923
CVE-2022-21971MicrosoftWindowsMicrosoft Windows Runtime Remote Code Execution Vulnerability2022-08-18Microsoft Windows Runtime contains an unspecified vulnerability that allows for remote code execution.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21971
CVE-2022-37042ZimbraCollaboration (ZCS)Zimbra Collaboration (ZCS) Authentication Bypass Vulnerability2022-08-11Zimbra Collaboration (ZCS) contains an authentication bypass vulnerability in MailboxImportServlet. This vulnerability was chained with CVE-2022-27925 which allows for unauthenticated remote code execution.https://blog.zimbra.com/2022/08/authentication-bypass-in-mailboximportservlet-vulnerability/
CVE-2022-27925ZimbraCollaboration (ZCS)Zimbra Collaboration (ZCS) Arbitrary File Upload Vulnerability2022-08-11Zimbra Collaboration (ZCS) contains flaw in the mboximport functionality, allowing an authenticated attacker to upload arbitrary files to perform remote code execution. This vulnerability was chained with CVE-2022-37042 which allows for unauthenticated remote code execution.https://blog.zimbra.com/2022/08/authentication-bypass-in-mailboximportservlet-vulnerability/
CVE-2022-34713MicrosoftWindowsMicrosoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability2022-08-09A remote code execution vulnerability exists when Microsoft Windows MSDT is called using the URL protocol from a calling application.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34713
CVE-2022-30333RARLABUnRARRARLAB UnRAR Directory Traversal Vulnerability2022-08-09RARLAB UnRAR on Linux and UNIX contains a directory traversal vulnerability, allowing an attacker to write to files during an extract (unpack) operation.Vulnerability updated with version 6.12. Accessing link will download update information: https://www.rarlab.com/rar/rarlinux-x32-612.tar.gz
CVE-2022-27924ZimbraCollaboration (ZCS)Zimbra Collaboration (ZCS) Command Injection Vulnerability2022-08-04Zimbra Collaboration (ZCS) allows an attacker to inject memcache commands into a targeted instance which causes an overwrite of arbitrary cached entries.https://wiki.zimbra.com/wiki/Zimbra_Releases/9.0.0/P24.1#Security_Fixes
CVE-2022-26138AtlassianConfluenceAtlassian Questions For Confluence App Hard-coded Credentials Vulnerability2022-07-29Atlassian Questions For Confluence App has hard-coded credentials, exposing the username and password in plaintext. A remote unauthenticated attacker can use these credentials to log into Confluence and access all content accessible to users in the confluence-users group.https://confluence.atlassian.com/doc/questions-for-confluence-security-advisory-2022-07-20-1142446709.html
CVE-2022-22047MicrosoftWindowsMicrosoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability2022-07-12Microsoft Windows CSRSS contains an unspecified vulnerability that allows for privilege escalation to SYSTEM privileges.https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22047
CVE-2022-26925MicrosoftWindowsMicrosoft Windows LSA Spoofing Vulnerability2022-07-01Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability where an attacker can coerce the domain controller to authenticate to the attacker using NTLM.WARNING: This update is required on all Microsoft Windows endpoints but if deployed to domain controllers without additional configuration changes the update breaks PIV/CAC authentication. Read CISA implementation guidance carefully before deploying to domain controllers.
CVE-2021-4034Red HatPolkitRed Hat Polkit Out-of-Bounds Read and Write Vulnerability2022-06-27The Red Hat polkit pkexec utility contains an out-of-bounds read and write vulnerability that allows for privilege escalation with administrative rights.
CVE-2021-30533GoogleChromium PopupBlockerGoogle Chromium PopupBlocker Security Bypass Vulnerability2022-06-27Google Chromium PopupBlocker contains an insufficient policy enforcement vulnerability that allows a remote attacker to bypass navigation restrictions via a crafted iframe. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2022-29499MitelMiVoice ConnectMitel MiVoice Connect Data Validation Vulnerability2022-06-27The Service Appliance component in Mitel MiVoice Connect allows remote code execution due to incorrect data validation.
CVE-2021-30983AppleiOS and iPadOSApple iOS and iPadOS Buffer Overflow Vulnerability2022-06-27Apple iOS and iPadOS contain a buffer overflow vulnerability that could allow an application to execute code with kernel privileges.
CVE-2018-4344AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2022-06-27Apple iOS, macOS, tvOS, and watchOS contain a memory corruption vulnerability which can allow for code execution.
CVE-2020-3837AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2022-06-27Apple iOS, iPadOS, macOS, tvOS, and watchOS contain a memory corruption vulnerability that could allow an application to execute code with kernel privileges.
CVE-2019-8605AppleMultiple ProductsApple Multiple Products Use-After-Free Vulnerability2022-06-27A use-after-free vulnerability in Apple iOS, macOS, tvOS, and watchOS could allow a malicious application to execute code with system privileges.
CVE-2020-9907AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2022-06-27Apple iOS, iPadOS, and tvOS contain a memory corruption vulnerability that could allow an application to execute code with kernel privileges.
CVE-2022-30190MicrosoftWindowsMicrosoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability2022-06-14A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run code with the privileges of the calling application.
CVE-2021-38163SAPNetWeaverSAP NetWeaver Unrestricted File Upload Vulnerability2022-06-09SAP NetWeaver contains a vulnerability that allows unrestricted file upload.
CVE-2016-2386SAPNetWeaverSAP NetWeaver SQL Injection Vulnerability2022-06-09SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2016-2388SAPNetWeaverSAP NetWeaver Information Disclosure Vulnerability2022-06-09The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request.
CVE-2017-5070GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2022-06-08Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2017-6862NETGEARMultiple DevicesNETGEAR Multiple Devices Buffer Overflow Vulnerability2022-06-08Multiple NETGEAR devices contain a buffer overflow vulnerability that allows for authentication bypass and remote code execution.
CVE-2018-17463GoogleChromium V8Google Chromium V8 Remote Code Execution Vulnerability2022-06-08Google Chromium V8 Engine contains an unspecified vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2017-5030GoogleChromium V8Google Chromium V8 Memory Corruption Vulnerability2022-06-08Google Chromium V8 Engine contains a memory corruption vulnerability that allows a remote attacker to execute code via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2016-1646GoogleChromium V8Google Chromium V8 Out-of-Bounds Read Vulnerability2022-06-08Google Chromium V8 Engine contains an out-of-bounds read vulnerability that allows a remote attacker to cause a denial of service or possibly have another unspecified impact via crafted JavaScript code. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2012-5054AdobeFlash PlayerAdobe Flash Player Integer Overflow Vulnerability2022-06-08Adobe Flash Player contains an integer overflow vulnerability that allows remote attackers to execute code via malformed arguments.
CVE-2013-1331MicrosoftOfficeMicrosoft Office Buffer Overflow Vulnerability2022-06-08Microsoft Office contains a buffer overflow vulnerability that allows remote attackers to execute code via crafted PNG data in an Office document.
CVE-2018-17480GoogleChromium V8Google Chromium V8 Out-of-Bounds Write Vulnerability2022-06-08Google Chromium V8 Engine contains out-of-bounds write vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2016-5198GoogleChromium V8Google Chromium V8 Out-of-Bounds Memory Vulnerability2022-06-08Google Chromium V8 Engine contains an out-of-bounds memory access vulnerability that allows a remote attacker to perform read/write operations, leading to code execution, via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2018-4990AdobeAcrobat and ReaderAdobe Acrobat and Reader Double Free Vulnerability2022-06-08Adobe Acrobat and Reader have a double free vulnerability that could lead to remote code execution.
CVE-2019-7193QNAPQTSQNAP QTS Improper Input Validation Vulnerability2022-06-08QNAP QTS contains an improper input validation vulnerability allowing remote attackers to inject code on the system.
CVE-2019-7194QNAPPhoto StationQNAP Photo Station Path Traversal Vulnerability2022-06-08QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files.
CVE-2019-7195QNAPPhoto StationQNAP Photo Station Path Traversal Vulnerability2022-06-08QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files.
CVE-2019-7192QNAPPhoto StationQNAP Photo Station Improper Access Control Vulnerability2022-06-08QNAP NAS devices running Photo Station contain an improper access control vulnerability allowing remote attackers to gain unauthorized access to the system.
CVE-2019-5825GoogleChromium V8Google Chromium V8 Out-of-Bounds Write Vulnerability2022-06-08Google Chromium V8 Engine contains an out-of-bounds write vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2018-6065GoogleChromium V8Google Chromium V8 Integer Overflow Vulnerability2022-06-08Google Chromium V8 Engine contains an integer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2019-15271CiscoRV Series RoutersCisco RV Series Routers Deserialization of Untrusted Data Vulnerability2022-06-08A deserialization of untrusted data vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an attacker to execute code with root privileges.
CVE-2012-4969MicrosoftInternet ExplorerMicrosoft Internet Explorer Use-After-Free Vulnerability2022-06-08Microsoft Internet Explorer contains a use-after-free vulnerability that allows remote attackers to execute code via a crafted web site.
CVE-2011-2462AdobeAcrobat and ReaderAdobe Acrobat and Reader Universal 3D Memory Corruption Vulnerability2022-06-08The Universal 3D (U3D) component in Adobe Acrobat and Reader contains a memory corruption vulnerability which could allow remote attackers to execute code or cause denial-of-service (DoS).
CVE-2009-0563MicrosoftOfficeMicrosoft Office Buffer Overflow Vulnerability2022-06-08Microsoft Office contains a buffer overflow vulnerability that allows remote attackers to execute code via a Word document with a crafted tag containing an invalid length field.
CVE-2009-1862AdobeAcrobat and Reader, Flash PlayerAdobe Acrobat and Reader, Flash Player Unspecified Vulnerability2022-06-08Adobe Acrobat and Reader and Adobe Flash Player allows remote attackers to execute code or cause denial-of-service (DoS).
CVE-2009-3953AdobeAcrobat and ReaderAdobe Acrobat and Reader Universal 3D Remote Code Execution Vulnerability2022-06-08Adobe Acrobat and Reader contains an array boundary issue in Universal 3D (U3D) support that could lead to remote code execution.
CVE-2009-0557MicrosoftOfficeMicrosoft Office Object Record Corruption Vulnerability2022-06-08Microsoft Office contains an object record corruption vulnerability that allows remote attackers to execute code via a crafted Excel file with a malformed record object.
CVE-2008-0655AdobeAcrobat and ReaderAdobe Acrobat and Reader Unspecified Vulnerability2022-06-08Adobe Acrobat and Reader contains an unespecified vulnerability described as a design flaw which could allow a specially crafted file to be printed silently an arbitrary number of times.
CVE-2012-1889MicrosoftXML Core ServicesMicrosoft XML Core Services Memory Corruption Vulnerability2022-06-08Microsoft XML Core Services contains a memory corruption vulnerability which could allow for remote code execution.
CVE-2007-5659AdobeAcrobat and ReaderAdobe Acrobat and Reader Buffer Overflow Vulnerability2022-06-08Adobe Acrobat and Reader contain a buffer overflow vulnerability that allows remote attackers to execute code via a PDF file with long arguments to unspecified JavaScript methods.
CVE-2009-4324AdobeAcrobat and ReaderAdobe Acrobat and Reader Use-After-Free Vulnerability2022-06-08Use-after-free vulnerability in Adobe Acrobat and Reader allows remote attackers to execute code via a crafted PDF file.
CVE-2006-2492MicrosoftWordMicrosoft Word Malformed Object Pointer Vulnerability2022-06-08Microsoft Word and Microsoft Works Suites contain a malformed object pointer which allows attackers to execute code.
CVE-2012-0754AdobeFlash PlayerAdobe Flash Player Memory Corruption Vulnerability2022-06-08Adobe Flash Player contains a memory corruption vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
CVE-2012-0767AdobeFlash PlayerAdobe Flash Player Cross-Site Scripting (XSS) Vulnerability2022-06-08Adobe Flash Player contains a XSS vulnerability that allows remote attackers to inject web script or HTML.
CVE-2010-1297AdobeFlash PlayerAdobe Flash Player Memory Corruption Vulnerability2022-06-08Adobe Flash Player contains a memory corruption vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
CVE-2012-0151MicrosoftWindowsMicrosoft Windows Authenticode Signature Verification Remote Code Execution Vulnerability2022-06-08The Authenticode Signature Verification function in Microsoft Windows (WinVerifyTrust) does not properly validate the digest of a signed portable executable (PE) file, which allows user-assisted remote attackers to execute code.
CVE-2010-2572MicrosoftPowerPointMicrosoft PowerPoint Buffer Overflow Vulnerability2022-06-08Microsoft PowerPoint contains a buffer overflow vulnerability that alllows for remote code execution.
CVE-2010-2883AdobeAcrobat and ReaderAdobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability2022-06-08Adobe Acrobat and Reader contain a stack-based buffer overflow vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
CVE-2011-0609AdobeFlash PlayerAdobe Flash Player Unspecified Vulnerability2022-06-08Adobe Flash Player contains an unspecified vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
CVE-2022-26134AtlassianConfluence Server/Data CenterAtlassian Confluence Server and Data Center Remote Code Execution Vulnerability2022-06-02Atlassian Confluence Server and Data Center contain a remote code execution vulnerability that allows for an unauthenticated attacker to perform remote code execution.
CVE-2015-1769MicrosoftWindowsMicrosoft Windows Mount Manager Privilege Escalation Vulnerability2022-05-25A privilege escalation vulnerability exists when the Windows Mount Manager component improperly processes symbolic links.
CVE-2015-2425MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-05-25Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).
CVE-2015-2360MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-05-25Win32k.sys in the kernel-mode drivers in Microsoft Windows allows local users to gain privileges or cause denial-of-service (DoS).
CVE-2015-6175MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2022-05-25The kernel in Microsoft Windows contains a vulnerability that allows local users to gain privileges via a crafted application.
CVE-2015-1671MicrosoftWindowsMicrosoft Windows Remote Code Execution Vulnerability2022-05-25A remote code execution vulnerability exists when components of Windows, .NET Framework, Office, Lync, and Silverlight fail to properly handle TrueType fonts.
CVE-2015-0071MicrosoftInternet ExplorerMicrosoft Internet Explorer ASLR Bypass Vulnerability2022-05-25Microsoft Internet Explorer allows remote attackers to bypass the address space layout randomization (ASLR) protection mechanism via a crafted web site.
CVE-2015-8651AdobeFlash PlayerAdobe Flash Player Integer Overflow Vulnerability2022-05-25Integer overflow in Adobe Flash Player allows attackers to execute code.
CVE-2015-4495MozillaFirefoxMozilla Firefox Security Feature Bypass Vulnerability2022-05-25Moxilla Firefox allows remote attackers to bypass the Same Origin Policy to read arbitrary files or gain privileges.
CVE-2016-0984AdobeFlash Player and AIRAdobe Flash Player and AIR Use-After-Free Vulnerability2022-05-25Use-after-free vulnerability in Adobe Flash Player and Adobe AIR allows attackers to execute code.
CVE-2016-3393MicrosoftWindowsMicrosoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability2022-05-25A remote code execution vulnerability exists due to the way the Windows GDI component handles objects in the memory. An attacker who successfully exploits this vulnerability could take control of the affected system.
CVE-2014-4148MicrosoftWindowsMicrosoft Windows Remote Code Execution Vulnerability2022-05-25A remote code execution vulnerability exists when the Windows kernel-mode driver improperly handles TrueType fonts.
CVE-2019-3010OracleSolarisOracle Solaris Privilege Escalation Vulnerability2022-05-25Oracle Solaris component: XScreenSaver contains an unspecified vulnerability that allows for privilege escalation.
CVE-2016-7256MicrosoftWindowsMicrosoft Windows Open Type Font Remote Code Execution Vulnerability2022-05-25A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.
CVE-2016-1010AdobeFlash Player and AIRAdobe Flash Player and AIR Integer Overflow Vulnerability2022-05-25Integer overflow vulnerability in Adobe Flash Player and AIR allows attackers to execute code.
CVE-2015-0310AdobeFlash PlayerAdobe Flash Player ASLR Bypass Vulnerability2022-05-25Adobe Flash Player does not properly restrict discovery of memory addresses, which allows attackers to bypass the address space layout randomization (ASLR) protection mechanism.
CVE-2016-0034MicrosoftSilverlightMicrosoft Silverlight Runtime Remote Code Execution Vulnerability2022-05-25Microsoft Silverlight mishandles negative offsets during decoding, which allows attackers to execute remote code or cause a denial-of-service (DoS).
CVE-2015-0016MicrosoftWindowsMicrosoft Windows TS WebProxy Directory Traversal Vulnerability2022-05-25Directory traversal vulnerability in the TS WebProxy (TSWbPrxy) component in Microsoft Windows allows remote attackers to escalate privileges.
CVE-2014-4077MicrosoftInput Method Editor (IME) JapaneseMicrosoft IME Japanese Privilege Escalation Vulnerability2022-05-25Microsoft Input Method Editor (IME) Japanese is a keyboard with Japanese characters that can be enabled on Windows systems as it is included by default (with the default set as disabled). IME Japanese contains an unspecified vulnerability when IMJPDCT.EXE (IME for Japanese) is installed which allows attackers to bypass a sandbox and perform privilege escalation.
CVE-2013-0074MicrosoftSilverlightMicrosoft Silverlight Double Dereference Vulnerability2022-05-25Microsoft Silverlight does not properly validate pointers during HTML object rendering, which allows remote attackers to execute code via a crafted Silverlight application.
CVE-2013-0422OracleJava Runtime Environment (JRE)Oracle JRE Remote Code Execution Vulnerability2022-05-25A vulnerability in the way Java restricts the permissions of Java applets could allow an attacker to execute commands on a vulnerable system.
CVE-2013-0431OracleJava Runtime Environment (JRE)Oracle JRE Sandbox Bypass Vulnerability2022-05-25Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle allows remote attackers to bypass the Java security sandbox.
CVE-2014-8439AdobeFlash PlayerAdobe Flash Player Dereferenced Pointer Vulnerability2022-05-25Adobe Flash Player has a vulnerability in the way it handles a dereferenced memory pointer which could lead to code execution.
CVE-2010-1428Red HatJBossRed Hat JBoss Information Disclosure Vulnerability2022-05-25Unauthenticated access to the JBoss Application Server Web Console (/web-console) is blocked by default. However, it was found that this block was incomplete, and only blocked GET and POST HTTP verbs. A remote attacker could use this flaw to gain access to sensitive information.
CVE-2010-0738Red HatJBossRed Hat JBoss Authentication Bypass Vulnerability2022-05-25The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method.
CVE-2010-0840OracleJava Runtime Environment (JRE)Oracle JRE Unspecified Vulnerability2022-05-25Unspecified vulnerability in the Java Runtime Environment (JRE) in Java SE component allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors.
CVE-2013-2423OracleJava Runtime Environment (JRE)Oracle JRE Unspecified Vulnerability2022-05-25Unspecified vulnerability in hotspot for Java Runtime Environment (JRE) allows remote attackers to affect integrity.
CVE-2012-1710OracleFusion MiddlewareOracle Fusion Middleware Unspecified Vulnerability2022-05-25Unspecified vulnerability in the Oracle WebCenter Forms Recognition component in Oracle Fusion Middleware allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Designer.
CVE-2014-4123MicrosoftInternet ExplorerMicrosoft Internet Explorer Privilege Escalation Vulnerability2022-05-25Microsoft Internet Explorer contains an unspecified vulnerability that allows remote attackers to gain privileges via a crafted web site.
CVE-2013-3896MicrosoftSilverlightMicrosoft Silverlight Information Disclosure Vulnerability2022-05-25Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application.
CVE-2014-2817MicrosoftInternet ExplorerMicrosoft Internet Explorer Privilege Escalation Vulnerability2022-05-25Microsoft Internet Explorer cotains an unspecified vulnerability that allows remote attackers to gain privileges via a crafted web site.
CVE-2014-0546AdobeAcrobat and ReaderAdobe Acrobat and Reader Sandbox Bypass Vulnerability2022-05-25Adobe Acrobat and Reader on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context.
CVE-2013-3993IBMInfoSphere BigInsightsIBM InfoSphere BigInsights Invalid Input Vulnerability2022-05-25Certain APIs within BigInsights can take invalid input that might allow attackers unauthorized access to read, write, modify, or delete data.
CVE-2014-3153LinuxKernelLinux Kernel Privilege Escalation Vulnerability2022-05-25The futex_requeue function in kernel/futex.c in Linux kernel does not ensure that calls have two different futex addresses, which allows local users to gain privileges.
CVE-2013-7331MicrosoftInternet ExplorerMicrosoft Internet Explorer Information Disclosure Vulnerability2022-05-25An information disclosure vulnerability exists in Internet Explorer which allows resources loaded into memory to be queried. This vulnerability could allow an attacker to detect anti-malware applications.
CVE-2017-0005MicrosoftWindowsMicrosoft Windows Graphics Device Interface (GDI) Privilege Escalation Vulnerability2022-05-24The Graphics Device Interface (GDI) in Microsoft Windows allows local users to gain privileges via a crafted application.
CVE-2017-0149MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-05-24Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause a denial-of-service (DoS) via a crafted website.
CVE-2017-8291ArtifexGhostscriptArtifex Ghostscript Type Confusion Vulnerability2022-05-24Artifex Ghostscript allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile.
CVE-2018-8611MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2022-05-24A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory.
CVE-2017-0210MicrosoftInternet ExplorerMicrosoft Internet Explorer Privilege Escalation Vulnerability2022-05-24A privilege escalation vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information.
CVE-2018-19953QNAPNetwork Attached Storage (NAS)QNAP NAS File Station Cross-Site Scripting Vulnerability2022-05-24A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.
CVE-2017-8543MicrosoftWindowsMicrosoft Windows Search Remote Code Execution Vulnerability2022-05-24Microsoft Windows allows an attacker to take control of the affected system when Windows Search fails to handle objects in memory.
CVE-2018-19949QNAPNetwork Attached Storage (NAS)QNAP NAS File Station Command Injection Vulnerability2022-05-24A command injection vulnerability affecting QNAP NAS File Station could allow remote attackers to run commands.
CVE-2018-19943QNAPNetwork Attached Storage (NAS)QNAP NAS File Station Cross-Site Scripting Vulnerability2022-05-24A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.
CVE-2017-0147MicrosoftSMBv1 serverMicrosoft Windows SMBv1 Information Disclosure Vulnerability2022-05-24The SMBv1 server in Microsoft Windows allows remote attackers to obtain sensitive information from process memory via a crafted packet.
CVE-2017-0022MicrosoftXML Core ServicesMicrosoft XML Core Services Information Disclosure Vulnerability2022-05-24Microsoft XML Core Services (MSXML) improperly handles objects in memory, allowing attackers to test for files on disk via a crafted web site.
CVE-2016-6366CiscoAdaptive Security Appliance (ASA)Cisco Adaptive Security Appliance (ASA) SNMP Buffer Overflow Vulnerability2022-05-24A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.
CVE-2016-6367CiscoAdaptive Security Appliance (ASA)Cisco Adaptive Security Appliance (ASA) CLI Remote Code Execution Vulnerability2022-05-24A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.
CVE-2016-3298MicrosoftInternet ExplorerMicrosoft Internet Explorer Messaging API Information Disclosure Vulnerability2022-05-24An information disclosure vulnerability exists when the Microsoft Internet Messaging API improperly handles objects in memory. An attacker who successfully exploited this vulnerability could allow the attacker to test for the presence of files on disk.
CVE-2016-4657AppleiOSApple iOS Webkit Memory Corruption Vulnerability2022-05-24WebKit in Apple iOS contains a memory corruption vulnerability that allows attackers to execute remote code or cause a denial-of-service (DoS) via a crafted web site.
CVE-2017-18362KaseyaVirtual System/Server Administrator (VSA)Kaseya VSA SQL Injection Vulnerability2022-05-24ConnectWise ManagedITSync integration for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database.
CVE-2016-4656AppleiOSApple iOS Memory Corruption Vulnerability2022-05-24A memory corruption vulnerability in Apple iOS kernel allows attackers to execute code in a privileged context or cause a denial-of-service (DoS) via a crafted application.
CVE-2016-0162MicrosoftInternet ExplorerMicrosoft Internet Explorer Information Disclosure Vulnerability2022-05-24An information disclosure vulnerability exists when Internet Explorer does not properly handle JavaScript. The vulnerability could allow an attacker to detect specific files on the user's computer.
CVE-2016-3351MicrosoftInternet Explorer and EdgeMicrosoft Internet Explorer and Edge Information Disclosure Vulnerability2022-05-24An information disclosure vulnerability exists in the way that certain functions in Internet Explorer and Edge handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer.
CVE-2016-4655AppleiOSApple iOS Information Disclosure Vulnerability2022-05-24The Apple iOS kernel allows attackers to obtain sensitive information from memory via a crafted application.
CVE-2019-7286AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2022-05-23Apple iOS, macOS, watchOS, and tvOS contain a memory corruption vulnerability that could allow for privilege escalation.
CVE-2019-7287AppleiOSApple iOS Memory Corruption Vulnerability2022-05-23Apple iOS contains a memory corruption vulnerability which could allow an attacker to perform remote code execution.
CVE-2019-5786GoogleChrome BlinkGoogle Chrome Blink Use-After-Free Vulnerability2022-05-23Google Chrome Blink contains a heap use-after-free vulnerability that allows an attacker to potentially perform out of bounds memory access via a crafted HTML page.
CVE-2020-0638MicrosoftUpdate Notification ManagerMicrosoft Update Notification Manager Privilege Escalation Vulnerability2022-05-23Microsoft Update Notification Manager contains an unspecified vulnerability that allows for privilege escalation.
CVE-2019-0676MicrosoftInternet ExplorerMicrosoft Internet Explorer Information Disclosure Vulnerability2022-05-23An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could test for the presence of files on disk.
CVE-2021-0920AndroidKernelAndroid Kernel Race Condition Vulnerability2022-05-23Android kernel contains a race condition, which allows for a use-after-free vulnerability. Exploitation can allow for privilege escalation.
CVE-2019-0703MicrosoftWindowsMicrosoft Windows SMB Information Disclosure Vulnerability2022-05-23An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, which could lead to information disclosure from the server.
CVE-2022-20821CiscoIOS XRCisco IOS XR Open Port Vulnerability2022-05-23Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.
CVE-2021-1048AndroidKernelAndroid Kernel Use-After-Free Vulnerability2022-05-23Android kernel contains a use-after-free vulnerability that allows for privilege escalation.
CVE-2021-30883AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2022-05-23Apple iOS, macOS, watchOS, and tvOS contain a memory corruption vulnerability that could allow for remote code execution.
CVE-2020-1027MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2022-05-23An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.
CVE-2019-11707MozillaFirefox and ThunderbirdMozilla Firefox and Thunderbird Type Confusion Vulnerability2022-05-23Mozilla Firefox and Thunderbird contain a type confusion vulnerability that can occur when manipulating JavaScript objects due to issues in Array.pop, allowing for an exploitable crash.
CVE-2019-1385MicrosoftWindowsMicrosoft Windows AppX Deployment Extensions Privilege Escalation Vulnerability2022-05-23A privilege escalation vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.
CVE-2019-0880MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2022-05-23A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited the vulnerability could elevate privileges on an affected system from low-integrity to medium-integrity.
CVE-2018-5002AdobeFlash PlayerAdobe Flash Player Stack-based Buffer Overflow Vulnerability2022-05-23Adobe Flash Player have a stack-based buffer overflow vulnerability that could lead to remote code execution.
CVE-2018-8589MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-05-23A privilege escalation vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited this vulnerability could run remote code in the security context of the local system.
CVE-2019-18426Meta PlatformsWhatsAppWhatsApp Cross-Site Scripting Vulnerability2022-05-23A vulnerability in WhatsApp Desktop when paired with WhatsApp for iPhone allows cross-site scripting and local file reading.
CVE-2019-1130MicrosoftWindowsMicrosoft Windows AppX Deployment Service Privilege Escalation Vulnerability2022-05-23A privilege escalation vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links.
CVE-2019-13720GoogleChrome WebAudioGoogle Chrome WebAudio Use-After-Free Vulnerability2022-05-23Google Chrome WebAudio contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2019-11708MozillaFirefox and ThunderbirdMozilla Firefox and Thunderbird Sandbox Escape Vulnerability2022-05-23Mozilla Firefox and Thunderbird contain a sandbox escape vulnerability that could result in remote code execution.
CVE-2019-8720WebKitGTKWebKitGTKWebKitGTK Memory Corruption Vulnerability2022-05-23WebKitGTK contains a memory corruption vulnerability which can allow an attacker to perform remote code execution.
CVE-2022-30525ZyxelMultiple FirewallsZyxel Multiple Firewalls OS Command Injection Vulnerability2022-05-16A command injection vulnerability in the CGI program of some Zyxel firewall versions could allow an attacker to modify specific files and then execute some OS commands on a vulnerable device.
CVE-2022-22947VMwareSpring Cloud GatewayVMware Spring Cloud Gateway Code Injection Vulnerability2022-05-16Spring Cloud Gateway applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured.
CVE-2022-1388F5BIG-IPF5 BIG-IP Missing Authentication Vulnerability2022-05-10F5 BIG-IP contains a missing authentication in critical function vulnerability which can allow for remote code execution, creation or deletion of files, or disabling services.
CVE-2019-8506AppleMultiple ProductsApple Multiple Products Type Confusion Vulnerability2022-05-04A type confusion issue affecting multiple Apple products allows processing of maliciously crafted web content, leading to arbitrary code execution.
CVE-2021-1789AppleMultiple ProductsApple Multiple Products Type Confusion Vulnerability2022-05-04A type confusion issue affecting multiple Apple products allows processing of maliciously crafted web content, leading to arbitrary code execution.
CVE-2014-4113MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-05-04Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
CVE-2014-0322MicrosoftInternet ExplorerMicrosoft Internet Explorer Use-After-Free Vulnerability2022-05-04Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute code.
CVE-2014-0160OpenSSLOpenSSLOpenSSL Information Disclosure Vulnerability2022-05-04The TLS and DTLS implementations in OpenSSL do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information.
CVE-2022-21919MicrosoftWindowsMicrosoft Windows User Profile Service Privilege Escalation Vulnerability2022-04-25Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.
CVE-2022-29464WSO2Multiple ProductsWSO2 Multiple Products Unrestrictive Upload of File Vulnerability2022-04-25Multiple WSO2 products allow for unrestricted file upload, resulting in remote code execution.
CVE-2022-0847LinuxKernelLinux Kernel Privilege Escalation Vulnerability2022-04-25Linux kernel contains an improper initialization vulnerability where an unprivileged local user could escalate their privileges on the system. This vulnerability has the moniker of "Dirty Pipe."
CVE-2022-26904MicrosoftWindowsMicrosoft Windows User Profile Service Privilege Escalation Vulnerability2022-04-25Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-41357MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-04-25Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-40450MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-04-25Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
CVE-2019-1003029JenkinsScript Security PluginJenkins Script Security Plugin Sandbox Bypass Vulnerability2022-04-25Jenkins Script Security Plugin contains a protection mechanism failure, allowing an attacker to bypass the sandbox.
CVE-2018-6882ZimbraCollaboration Suite (ZCS)Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability2022-04-19Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability that might allow remote attackers to inject arbitrary web script or HTML.
CVE-2019-3568Meta PlatformsWhatsAppWhatsApp VOIP Stack Buffer Overflow Vulnerability2022-04-19A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number.
CVE-2022-22718MicrosoftWindowsMicrosoft Windows Print Spooler Privilege Escalation Vulnerability2022-04-19Microsoft Windows Print Spooler contains an unspecified vulnerability which allow for privilege escalation.
CVE-2019-3929CrestronMultiple ProductsCrestron Multiple Products Command Injection Vulnerability2022-04-15Multiple Crestron products are vulnerable to command injection via the file_transfer.cgi HTTP endpoint. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root.
CVE-2022-1364GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2022-04-15Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2022-22960VMwareMultiple ProductsVMware Multiple Products Privilege Escalation Vulnerability2022-04-15VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts.
CVE-2018-7841Schneider ElectricU.motion BuilderSchneider Electric U.motion Builder SQL Injection Vulnerability2022-04-15A SQL Injection vulnerability exists in U.motion Builder software which could cause unwanted code execution when an improper set of characters is entered.
CVE-2019-16057D-LinkDNS-320 Storage DeviceD-Link DNS-320 Remote Code Execution Vulnerability2022-04-15The login_mgr.cgi script in D-Link DNS-320 is vulnerable to remote code execution.
CVE-2016-4523TrihedralVTScada (formerly VTS)Trihedral VTScada (formerly VTS) Denial-of-Service Vulnerability2022-04-15The WAP interface in Trihedral VTScada (formerly VTS) allows remote attackers to cause a denial-of-service (DoS).
CVE-2010-5330UbiquitiAirOSUbiquiti AirOS Command Injection Vulnerability2022-04-15Certain Ubiquiti devices contain a command injection vulnerability via a GET request to stainfo.cgi.
CVE-2007-3010AlcatelOmniPCX EnterpriseAlcatel OmniPCX Enterprise Remote Code Execution Vulnerability2022-04-15masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server allows remote attackers to execute arbitrary commands.
CVE-2014-0780InduSoftWeb StudioInduSoft Web Studio NTWebServer Directory Traversal Vulnerability2022-04-15InduSoft Web Studio NTWebServer contains a directory traversal vulnerability that allows remote attackers to read administrative passwords in APP files, allowing for remote code execution.
CVE-2022-22954VMwareWorkspace ONE Access and Identity ManagerVMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability2022-04-14VMware Workspace ONE Access and Identity Manager allow for remote code execution due to server-side template injection.
CVE-2022-24521MicrosoftWindowsMicrosoft Windows CLFS Driver Privilege Escalation Vulnerability2022-04-13Microsoft Windows Common Log File System (CLFS) Driver contains an unspecified vulnerability that allows for privilege escalation.
CVE-2015-5123AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-04-13Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).
CVE-2018-7602DrupalCoreDrupal Core Remote Code Execution Vulnerability2022-04-13A remote code execution vulnerability exists within multiple subsystems of Drupal that can allow attackers to exploit multiple attack vectors on a Drupal site.
CVE-2015-5122AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-04-13Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).
CVE-2018-20753KaseyaVirtual System/Server Administrator (VSA)Kaseya VSA Remote Code Execution Vulnerability2022-04-13Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.
CVE-2015-2502MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-04-13Microsoft Internet Explorer contains a memory corruption vulnerability that allows an attacker to execute code or cause a denial-of-service (DoS).
CVE-2015-3113AdobeFlash PlayerAdobe Flash Player Heap-Based Buffer Overflow Vulnerability2022-04-13Heap-based buffer overflow vulnerability in Adobe Flash Player allows remote attackers to execute code.
CVE-2015-0311AdobeFlash PlayerAdobe Flash Player Remote Code Execution Vulnerability2022-04-13Unspecified vulnerability in Adobe Flash Player allows remote attackers to execute code.
CVE-2014-9163AdobeFlash PlayerAdobe Flash Player Stack-Based Buffer Overflow Vulnerability2022-04-13Stack-based buffer overflow in Adobe Flash Player allows attackers to execute code remotely.
CVE-2015-0313AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-04-13Use-after-free vulnerability in Adobe Flash Player allows remote attackers to execute code.
CVE-2022-23176WatchGuardFirebox and XTMWatchGuard Firebox and XTM Privilege Escalation Vulnerability2022-04-11WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access.
CVE-2021-42278MicrosoftActive DirectoryMicrosoft Active Directory Domain Services Privilege Escalation Vulnerability2022-04-11Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-42287MicrosoftActive DirectoryMicrosoft Active Directory Domain Services Privilege Escalation Vulnerability2022-04-11Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-39793GooglePixelGoogle Pixel Out-of-Bounds Write Vulnerability2022-04-11Google Pixel contains a possible out-of-bounds write due to a logic error in the code that could lead to local escalation of privilege.
CVE-2021-22600LinuxKernelLinux Kernel Privilege Escalation Vulnerability2022-04-11Linux Kernel contains a flaw in the packet socket (AF_PACKET) implementation which could lead to incorrectly freeing memory. A local user could exploit this for denial-of-service (DoS) or possibly for privilege escalation.
CVE-2021-27852CheckboxCheckbox SurveyCheckbox Survey Deserialization of Untrusted Data Vulnerability2022-04-11Deserialization of Untrusted Data vulnerability in CheckboxWeb.dll of Checkbox Survey allows an unauthenticated remote attacker to execute arbitrary code.
CVE-2017-11317TelerikUser Interface (UI) for ASP.NET AJAXTelerik UI for ASP.NET AJAX Unrestricted File Upload Vulnerability2022-04-11Telerik.Web.UI in Progress Telerik UI for ASP.NET AJAX allows remote attackers to perform arbitrary file uploads or execute arbitrary code.
CVE-2020-2509QNAPQNAP Network-Attached Storage (NAS)QNAP Network-Attached Storage (NAS) Command Injection Vulnerability2022-04-11QNAP NAS devices contain a command injection vulnerability which could allow attackers to perform remote code execution.
CVE-2021-31166MicrosoftHTTP Protocol StackMicrosoft HTTP Protocol Stack Remote Code Execution Vulnerability2022-04-06Microsoft HTTP Protocol Stack contains a vulnerability in http.sys that allows for remote code execution.
CVE-2021-3156SudoSudoSudo Heap-Based Buffer Overflow Vulnerability2022-04-06Sudo contains an off-by-one error that can result in a heap-based buffer overflow, which allows for privilege escalation.
CVE-2017-0148MicrosoftSMBv1 serverMicrosoft SMBv1 Server Remote Code Execution Vulnerability2022-04-06The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets.
CVE-2022-22675ApplemacOSApple macOS Out-of-Bounds Write Vulnerability2022-04-04macOS Monterey contains an out-of-bounds write vulnerability that could allow an application to execute arbitrary code with kernel privileges.
CVE-2022-22965VMwareSpring FrameworkSpring Framework JDK 9+ Remote Code Execution Vulnerability2022-04-04Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding.
CVE-2022-22674ApplemacOSApple macOS Out-of-Bounds Read Vulnerability2022-04-04macOS Monterey contains an out-of-bounds read vulnerability that could allow an application to read kernel memory.
CVE-2021-45382D-LinkMultiple RoutersD-Link Multiple Routers Remote Code Execution Vulnerability2022-04-04A remote code execution vulnerability exists in all series H/W revisions routers via the DDNS function in ncc2 binary file.
CVE-2021-34484MicrosoftWindowsMicrosoft Windows User Profile Service Privilege Escalation Vulnerability2022-03-31Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-28799QNAPNetwork Attached Storage (NAS)QNAP NAS Improper Authorization Vulnerability2022-03-31QNAP NAS running HBS 3 contains an improper authorization vulnerability which can allow remote attackers to log in to a device.
CVE-2022-26871Trend MicroApex CentralTrend Micro Apex Central Arbitrary File Upload Vulnerability2022-03-31An arbitrary file upload vulnerability in Trend Micro Apex Central could allow for remote code execution.
CVE-2022-1040SophosFirewallSophos Firewall Authentication Bypass Vulnerability2022-03-31An authentication bypass vulnerability in User Portal and Webadmin of Sophos Firewall allows for remote code execution.
CVE-2018-10561DasanGigabit Passive Optical Network (GPON) RoutersDasan GPON Routers Authentication Bypass Vulnerability2022-03-31Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10562, exploitation can allow an attacker to perform remote code execution.
CVE-2018-10562DasanGigabit Passive Optical Network (GPON) RoutersDasan GPON Routers Command Injection Vulnerability2022-03-31Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10561, exploitation can allow an attacker to perform remote code execution.
CVE-2021-21551Delldbutil DriverDell dbutil Driver Insufficient Access Control Vulnerability2022-03-31Dell dbutil driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial-of-service (DoS), or information disclosure.
CVE-2017-0213MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-28Microsoft Windows COM Aggregate Marshaler allows for privilege escalation when an attacker runs a specially crafted application.
CVE-2018-8405MicrosoftDirectX Graphics Kernel (DXGKRNL)Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability2022-03-28An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory.
CVE-2017-0059MicrosoftInternet ExplorerMicrosoft Internet Explorer Information Disclosure Vulnerability2022-03-28Microsoft Internet Explorer allow remote attackers to obtain sensitive information from process memory via a crafted web site.
CVE-2016-7201MicrosoftEdgeMicrosoft Edge Memory Corruption Vulnerability2022-03-28The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute remote code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2022-1096GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2022-03-28Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2016-7200MicrosoftEdgeMicrosoft Edge Memory Corruption Vulnerability2022-03-28The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute remote code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2018-8406MicrosoftDirectX Graphics Kernel (DXGKRNL)Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability2022-03-28An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory.
CVE-2017-0037MicrosoftEdge and Internet ExplorerMicrosoft Edge and Internet Explorer Type Confusion Vulnerability2022-03-28Microsoft Edge and Internet Explorer have a type confusion vulnerability in mshtml.dll, which allows remote code execution.
CVE-2019-7483SonicWallSMA100SonicWall SMA100 Directory Traversal Vulnerability2022-03-28In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server.
CVE-2022-0543RedisDebian-specific Redis ServersDebian-specific Redis Server Lua Sandbox Escape Vulnerability2022-03-28Redis is prone to a (Debian-specific) Lua sandbox escape, which could result in remote code execution.
CVE-2016-0151MicrosoftClient-Server Run-time Subsystem (CSRSS)Microsoft Windows CSRSS Security Feature Bypass Vulnerability2022-03-28The Client-Server Run-time Subsystem (CSRSS) in Microsoft mismanages process tokens, which allows local users to gain privileges via a crafted application.
CVE-2021-38646MicrosoftOfficeMicrosoft Office Access Connectivity Engine Remote Code Execution Vulnerability2022-03-28Microsoft Office Access Connectivity Engine contains an unspecified vulnerability which can allow for remote code execution.
CVE-2021-34486MicrosoftWindowsMicrosoft Windows Event Tracing Privilege Escalation Vulnerability2022-03-28Microsoft Windows Event Tracing contains an unspecified vulnerability which can allow for privilege escalation.
CVE-2021-20028SonicWallSecure Remote Access (SRA)SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability2022-03-28SonicWall Secure Remote Access (SRA) products contain an improper neutralization of a SQL Command leading to SQL injection.
CVE-2021-26085AtlassianConfluence ServerAtlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability2022-03-28Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a pre-authorization arbitrary file read vulnerability in the /s/ endpoint.
CVE-2018-8440MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-28An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).
CVE-2016-0189MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-03-28The Microsoft JScript nd VBScript engines, as used in Internet Explorer and other products, allow attackers to execute remote code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2012-2539MicrosoftWordMicrosoft Word Remote Code Execution Vulnerability2022-03-28Microsoft Word allows attackers to execute remote code or cause a denial-of-service (DoS) via crafted RTF data.
CVE-2012-5076OracleJava SEOracle Java SE Sandbox Bypass Vulnerability2022-03-28The default Java security properties configuration did not restrict access to the com.sun.org.glassfish.external and com.sun.org.glassfish.gmbal packages. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions.
CVE-2012-2034AdobeFlash PlayerAdobe Flash Player Memory Corruption Vulnerability2022-03-28Adobe Flash Player contains a memory corruption vulnerability that allows for remote code execution or denial-of-service (DoS).
CVE-2011-2005MicrosoftAncillary Function Driver (afd.sys)Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulnerability2022-03-28afd.sys in the Ancillary Function Driver in Microsoft Windows does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application.
CVE-2016-0040MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2022-03-28The kernel in Microsoft Windows allows local users to gain privileges via a crafted application.
CVE-2010-4398MicrosoftWindowsMicrosoft Windows Kernel Stack-Based Buffer Overflow Vulnerability2022-03-28Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows allows local users to gain privileges, and bypass the User Account Control (UAC) feature.
CVE-2013-1690MozillaFirefox and ThunderbirdMozilla Firefox and Thunderbird Denial-of-Service Vulnerability2022-03-28Mozilla Firefox and Thunderbird do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial-of-service (DoS) or possibly execute malicious code via a crafted web site.
CVE-2012-0518OracleFusion MiddlewareOracle Fusion Middleware Unspecified Vulnerability2022-03-28Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware allows remote attackers to affect integrity via Unknown vectors
CVE-2013-2465OracleJava SEOracle Java SE Unspecified Vulnerability2022-03-28Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to 2D
CVE-2015-2426MicrosoftWindowsMicrosoft Windows Adobe Type Manager Library Remote Code Execution Vulnerability2022-03-28A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts.
CVE-2015-2419MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-03-28JScript in Microsoft Internet Explorer allows remote attackers to execute remote code or cause a denial of service (memory corruption) via a crafted web site.
CVE-2015-1770MicrosoftOfficeMicrosoft Office Uninitialized Memory Use Vulnerability2022-03-28Microsoft Office allows remote attackers to execute arbitrary code via a crafted Office document.
CVE-2013-2729AdobeReader and AcrobatAdobe Reader and Acrobat Arbitrary Integer Overflow Vulnerability2022-03-28Integer overflow vulnerability in Adobe Reader and Acrobat allows attackers to execute remote code.
CVE-2013-2551MicrosoftInternet ExplorerMicrosoft Internet Explorer Use-After-Free Vulnerability2022-03-28Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute remote code via a crafted web site that triggers access to a deleted object.
CVE-2013-3660MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-03-28The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft does not properly initialize a pointer for the next object in a certain list, which allows local users to gain privileges.
CVE-2014-6287RejettoHTTP File Server (HFS)Rejetto HTTP File Server (HFS) Remote Code Execution Vulnerability2022-03-25The findMacroMarker function in parserLib.pas in Rejetto HTTP File Server (HFS or HttpFileServer) allows remote attackers to execute arbitrary programs.
CVE-2014-3120ElasticElasticsearchElasticsearch Remote Code Execution Vulnerability2022-03-25Elasticsearch enables dynamic scripting, which allows remote attackers to execute arbitrary MVEL expressions and Java code.
CVE-2014-0130RailsRuby on RailsRuby on Rails Directory Traversal Vulnerability2022-03-25Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails allows remote attackers to read arbitrary files via a crafted request.
CVE-2014-6324MicrosoftKerberos Key Distribution Center (KDC)Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability2022-03-25The Kerberos Key Distribution Center (KDC) in Microsoft allows remote authenticated domain users to obtain domain administrator privileges.
CVE-2013-5223D-LinkDSL-2760UD-Link DSL-2760U Gateway Cross-Site Scripting Vulnerability2022-03-25A cross-site scripting (XSS) vulnerability exists in the D-Link DSL-2760U gateway, allowing remote authenticated users to inject arbitrary web script or HTML.
CVE-2015-1187D-Link and TRENDnetMultiple DevicesD-Link and TRENDnet Multiple Devices Remote Code Execution Vulnerability2022-03-25The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to perform remote code execution.
CVE-2013-4810Hewlett Packard (HP)ProCurve Manager (PCM), PCM+, Identity Driven Manager (IDM), and Application Lifecycle ManagementHP Multiple Products Remote Code Execution Vulnerability2022-03-25HP ProCurve Manager (PCM), PCM+, Identity Driven Manager (IDM), and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet.
CVE-2015-1427ElasticElasticsearchElasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability2022-03-25The Groovy scripting engine in Elasticsearch allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands.
CVE-2015-0666CiscoPrime Data Center Network Manager (DCNM)Cisco Prime Data Center Network Manager (DCNM) Directory Traversal Vulnerability2022-03-25Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) allows remote attackers to read arbitrary files.
CVE-2014-6332MicrosoftWindowsMicrosoft Windows Object Linking & Embedding (OLE) Automation Array Remote Code Execution Vulnerability2022-03-25OleAut32.dll in OLE in Microsoft Windows allows remote attackers to remotely execute code via a crafted web site.
CVE-2009-0927AdobeReader and AcrobatAdobe Reader and Adobe Acrobat Stack-Based Buffer Overflow Vulnerability2022-03-25Stack-based buffer overflow in Adobe Reader and Adobe Acrobat allows remote attackers to execute arbitrary code.
CVE-2009-2055CiscoIOS XRCisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability2022-03-25Cisco IOS XR,when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).
CVE-2009-1151phpMyAdminphpMyAdminphpMyAdmin Remote Code Execution Vulnerability2022-03-25Setup script used to generate configuration can be fooled using a crafted POST request to include arbitrary PHP code in generated configuration file.
CVE-2005-2773Hewlett Packard (HP)OpenView Network Node ManagerHP OpenView Network Node Manager Remote Code Execution Vulnerability2022-03-25HP OpenView Network Node Manager could allow a remote attacker to execute arbitrary commands on the system.
CVE-2015-3035TP-LinkMultiple Archer DevicesTP-Link Multiple Archer Devices Directory Traversal Vulnerability2022-03-25Directory traversal vulnerability in multiple TP-Link Archer devices allows remote attackers to read arbitrary files via a .. (dot dot) in the PATH_INFO to login/.
CVE-2010-2861AdobeColdFusionAdobe ColdFusion Directory Traversal Vulnerability2022-03-25A directory traversal vulnerability exists in the administrator console in Adobe ColdFusion which allows remote attackers to read arbitrary files.
CVE-2010-3035CiscoIOS XRCisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability2022-03-25Cisco IOS XR, when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).
CVE-2012-1823PHPPHPPHP-CGI Query String Parameter Vulnerability2022-03-25sapi/cgi/cgi_main.c in PHP, when configured as a CGI script, does not properly handle query strings, which allows remote attackers to execute arbitrary code.
CVE-2010-4345EximEximExim Privilege Escalation Vulnerability2022-03-25Exim allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands.
CVE-2010-4344EximEximExim Heap-Based Buffer Overflow Vulnerability2022-03-25Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session.
CVE-2013-2251ApacheStrutsApache Struts Improper Input Validation Vulnerability2022-03-25Apache Struts allows remote attackers to execute arbitrary Object-Graph Navigation Language (OGNL) expressions.
CVE-2015-4068ArcserveUnified Data Protection (UDP)Arcserve Unified Data Protection (UDP) Directory Traversal Vulnerability2022-03-25Directory traversal vulnerability in Arcserve UDP allows remote attackers to obtain sensitive information or cause a denial of service.
CVE-2019-6340DrupalCoreDrupal Core Remote Code Execution Vulnerability2022-03-25In Drupal Core, some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases.
CVE-2020-1631JuniperJunos OSJuniper Junos OS Path Traversal Vulnerability2022-03-25A path traversal vulnerability in the HTTP/HTTPS service used by J-Web, Web Authentication, Dynamic-VPN (DVPN), Firewall Authentication Pass-Through with Web-Redirect, and Zero Touch Provisioning (ZTP) allows an unauthenticated attacker to perform remote code execution.
CVE-2020-1956ApacheKylinApache Kylin OS Command Injection Vulnerability2022-03-25Apache Kylin contains an OS command injection vulnerability which could permit an attacker to perform remote code execution.
CVE-2020-2021Palo Alto NetworksPAN-OSPalo Alto Networks PAN-OS Authentication Bypass Vulnerability2022-03-25Palo Alto Networks PAN-OS contains a vulnerability in SAML which allows an attacker to bypass authentication.
CVE-2019-2616OracleBI Publisher (Formerly XML Publisher)Oracle BI Publisher Unauthorized Access Vulnerability2022-03-25Oracle BI Publisher, formerly XML Publisher, contains an unspecified vulnerability that allows for various unauthorized actions. Open-source reporting attributes this vulnerability to allowing for authentication bypass.
CVE-2019-16920D-LinkMultiple RoutersD-Link Multiple Routers Command Injection Vulnerability2022-03-25Multiple D-Link routers contain a command injection vulnerability which can allow attackers to achieve full system compromise.
CVE-2019-10068KenticoXperienceKentico Xperience Deserialization of Untrusted Data Vulnerability2022-03-25Kentico contains a failure to validate security headers. This deserialization can led to unauthenticated remote code execution.
CVE-2019-11043PHPFastCGI Process Manager (FPM)PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability2022-03-25In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution.
CVE-2019-12991CitrixSD-WAN and NetScalerCitrix SD-WAN and NetScaler Command Injection Vulnerability2022-03-25Authenticated Command Injection in Citrix SD-WAN Appliance and NetScaler SD-WAN Appliance.
CVE-2019-15107WebminWebminWebmin Command Injection Vulnerability2022-03-25An issue was discovered in Webmin. The parameter old in password_change.cgi contains a command injection vulnerability.
CVE-2020-2506QNAP SystemsHelpdeskQNAP Helpdesk Improper Access Control Vulnerability2022-03-25QNAP Helpdesk contains an improper access control vulnerability which could allow an attacker to gain privileges or to read sensitive information.
CVE-2020-25223SophosSG UTMSophos SG UTM Remote Code Execution Vulnerability2022-03-25A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM.
CVE-2021-42237SitecoreXPSitecore XP Remote Command Execution Vulnerability2022-03-25Sitcore XP contains an insecure deserialization vulnerability which can allow for remote code execution.
CVE-2022-21999MicrosoftWindowsMicrosoft Windows Print Spooler Privilege Escalation Vulnerability2022-03-25Microsoft Windows Print Spooler contains an unspecified vulnerability which can allow for privilege escalation.
CVE-2022-26143MitelMiCollab, MiVoice Business ExpressMiCollab, MiVoice Business Express Access Control Vulnerability2022-03-25A vulnerability has been identified in MiCollab and MiVoice Business Express that may allow a malicious actor to gain unauthorized access to sensitive information and services, cause performance degradations or a denial of service condition on the affected system.
CVE-2022-26318WatchGuardFirebox and XTM AppliancesWatchGuard Firebox and XTM Appliances Arbitrary Code Execution2022-03-25On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code.
CVE-2021-22941CitrixShareFileCitrix ShareFile Improper Access Control Vulnerability2022-03-25Improper Access Control in Citrix ShareFile storage zones controller may allow an unauthenticated attacker to remotely compromise the storage zones controller.
CVE-2020-9377D-LinkDIR-610 DevicesD-Link DIR-610 Devices Remote Command Execution2022-03-25D-Link DIR-610 devices allow remote code execution via the cmd parameter to command.php.
CVE-2020-5410VMware TanzuSpring Cloud Configuration (Config) ServerVMware Tanzu Spring Cloud Config Directory Traversal Vulnerability2022-03-25Spring, by VMware Tanzu, Cloud Config contains a path traversal vulnerability that allows applications to serve arbitrary configuration files.
CVE-2020-7247OpenBSDOpenSMTPDOpenSMTPD Remote Code Execution Vulnerability2022-03-25smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.
CVE-2020-9054ZyxelMultiple Network-Attached Storage (NAS) DevicesZyxel Multiple NAS Devices OS Command Injection Vulnerability2022-03-25Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code.
CVE-2019-1003030JenkinsMatrix Project PluginJenkins Matrix Project Plugin Remote Code Execution Vulnerability2022-03-25Jenkins Matrix Project plugin contains a vulnerability which can allow users to escape the sandbox, opening opportunity to perform remote code execution.
CVE-2019-12989CitrixSD-WAN and NetScalerCitrix SD-WAN and NetScaler SQL Injection Vulnerability2022-03-25Citrix SD-WAN and NetScaler SD-WAN allow SQL Injection.
CVE-2017-0146MicrosoftWindowsMicrosoft Windows SMB Remote Code Execution Vulnerability2022-03-25The SMBv1 server in Microsoft Windows allows remote attackers to perform remote code execution.
CVE-2017-12615ApacheTomcatApache Tomcat on Windows Remote Code Execution Vulnerability2022-03-25When running Apache Tomcat on Windows with HTTP PUTs enabled, it is possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.
CVE-2019-0903MicrosoftGraphics Device Interface (GDI)Microsoft GDI Remote Code Execution Vulnerability2022-03-25A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system.
CVE-2017-3881CiscoIOS and IOS XECisco IOS and IOS XE Remote Code Execution Vulnerability2022-03-25A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.
CVE-2016-7892AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-03-25Adobe Flash Player has an exploitable use-after-free vulnerability in the TextField class.
CVE-2016-4171AdobeFlash PlayerAdobe Flash Player Remote Code Execution Vulnerability2022-03-25Unspecified vulnerability in Adobe Flash Player allows for remote code execution.
CVE-2016-0752RailsRuby on RailsRuby on Rails Directory Traversal Vulnerability2022-03-25Directory traversal vulnerability in Action View in Ruby on Rails allows remote attackers to read arbitrary files.
CVE-2016-10174NETGEARWNR2000v5 RouterNETGEAR WNR2000v5 Router Buffer Overflow Vulnerability2022-03-25The NETGEAR WNR2000v5 router contains a buffer overflow which can be exploited to achieve remote code execution.
CVE-2016-11021D-LinkDCS-930L DevicesD-Link DCS-930L Devices OS Command Injection Vulnerability2022-03-25setSystemCommand on D-Link DCS-930L devices allows a remote attacker to execute code via an OS command.
CVE-2016-1555NETGEARWireless Access Point (WAP) DevicesNETGEAR Multiple WAP Devices Command Injection Vulnerability2022-03-25Multiple NETGEAR Wireless Access Point devices allows unauthenticated web pages to pass form input directly to the command-line interface. Exploitation allows for arbitrary code execution.
CVE-2017-6316CitrixNetScaler SD-WAN Enterprise, CloudBridge Virtual WAN, and XenMobile ServerCitrix Multiple Products Remote Code Execution Vulnerability2022-03-25A vulnerability has been identified in the management interface of Citrix NetScaler SD-WAN Enterprise and Standard Edition and Citrix CloudBridge Virtual WAN Edition that could result in an unauthenticated, remote attacker being able to execute arbitrary code as a root user. This vulnerability also affects XenMobile Server.
CVE-2017-12617ApacheTomcatApache Tomcat Remote Code Execution Vulnerability2022-03-25When running Apache Tomcat, it is possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.
CVE-2018-6961VMwareSD-WAN EdgeVMware SD-WAN Edge by VeloCloud Command Injection Vulnerability2022-03-25VMware SD-WAN Edge by VeloCloud contains a command injection vulnerability in the local web UI component. Successful exploitation of this issue could result in remote code execution.
CVE-2017-6334NETGEARDGN2200 DevicesNETGEAR DGN2200 Devices OS Command Injection Vulnerability2022-03-25dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands
CVE-2018-8414MicrosoftWindowsMicrosoft Windows Shell Remote Code Execution Vulnerability2022-03-25A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths.
CVE-2018-14839LGN1A1 NASLG N1A1 NAS Remote Command Execution Vulnerability2022-03-25LG N1A1 NAS 3718.510 is affected by a remote code execution vulnerability.
CVE-2018-8373MicrosoftInternet Explorer Scripting EngineMicrosoft Scripting Engine Memory Corruption Vulnerability2022-03-25A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
CVE-2018-0125CiscoVPN RoutersCisco VPN Routers Remote Code Execution Vulnerability2022-03-25A vulnerability in the web interface of the Cisco VPN Routers could allow an unauthenticated, remote attacker to execute arbitrary code as root and gain full control of an affected system.
CVE-2018-1273VMware TanzuSpring Data CommonsVMware Tanzu Spring Data Commons Property Binder Vulnerability2022-03-25Spring Data Commons contains a property binder vulnerability which can allow an attacker to perform remote code execution.
CVE-2018-0147CiscoSecure Access Control System (ACS)Cisco Secure Access Control System Java Deserialization Vulnerability2022-03-25A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affected software.
CVE-2018-11138QuestKACE System Management ApplianceQuest KACE System Management Appliance Remote Command Execution Vulnerability2022-03-25The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance is accessible by anonymous users and can be abused to perform remote code execution.
CVE-2019-1132MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.
CVE-2019-1129MicrosoftWindowsMicrosoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
CVE-2019-1253MicrosoftWindowsMicrosoft Windows AppX Deployment Server Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.
CVE-2020-5135SonicWallSonicOSSonicWall SonicOS Buffer Overflow Vulnerability2022-03-15A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a malicious request to the firewall.
CVE-2019-1069MicrosoftTask SchedulerMicrosoft Task Scheduler Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.
CVE-2019-1322MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
CVE-2019-1315MicrosoftWindowsMicrosoft Windows Error Reporting Manager Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when Windows Error Reporting manager improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status.
CVE-2019-1405MicrosoftWindowsMicrosoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation.
CVE-2019-1064MicrosoftWindowsMicrosoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
CVE-2015-2546MicrosoftWin32kMicrosoft Win32k Memory Corruption Vulnerability2022-03-15The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application.
CVE-2017-0101MicrosoftWindowsMicrosoft Windows Transaction Manager Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory.
CVE-2016-3309MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.
CVE-2018-8120MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.
CVE-2019-0543MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
CVE-2019-0841MicrosoftWindowsMicrosoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability2022-03-15A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
CVE-2020-8218Pulse SecurePulse Connect SecurePulse Connect Secure Code Injection Vulnerability2022-03-07A code injection vulnerability exists in Pulse Connect Secure that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.
CVE-2021-21973VMwarevCenter Server and Cloud FoundationVMware vCenter Server and Cloud Foundation Server Side Request Forgery (SSRF) Vulnerability2022-03-07VMware vCenter Server and Cloud Foundation Server contain a SSRF vulnerability due to improper validation of URLs in a vCenter Server plugin. This allows for information disclosure.
CVE-2022-26485MozillaFirefoxMozilla Firefox Use-After-Free Vulnerability2022-03-07Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform arbitrary code execution.
CVE-2022-26486MozillaFirefoxMozilla Firefox Use-After-Free Vulnerability2022-03-07Mozilla Firefox contains a use-after-free vulnerability in WebGPU IPC Framework which can be exploited to perform arbitrary code execution.
CVE-2017-6077NETGEARWireless Router DGN2200NETGEAR DGN2200 Remote Code Execution Vulnerability2022-03-07NETGEAR DGN2200 wireless routers contain a vulnerability that allows for remote code execution.
CVE-2019-11581AtlassianJira Server and Data CenterAtlassian Jira Server and Data Center Server-Side Template Injection Vulnerability2022-03-07Atlassian Jira Server and Data Center contain a server-side template injection vulnerability which can allow for remote code execution.
CVE-2009-3960AdobeBlazeDSAdobe BlazeDS Information Disclosure Vulnerability2022-03-07Adobe BlazeDS, which is utilized in LifeCycle and Coldfusion, contains a vulnerability that allows for information disclosure.
CVE-2016-6277NETGEARMultiple RoutersNETGEAR Multiple Routers Remote Code Execution Vulnerability2022-03-07NETGEAR confirmed multiple routers allow unauthenticated web pages to pass form input directly to the command-line interface, permitting remote code execution.
CVE-2013-0629AdobeColdFusionAdobe ColdFusion Directory Traversal Vulnerability2022-03-07Adobe Coldfusion contains a directory traversal vulnerability, which could permit an unauthorized user access to restricted directories.
CVE-2013-0625AdobeColdFusionAdobe ColdFusion Authentication Bypass Vulnerability2022-03-07Adobe Coldfusion contains an authentication bypass vulnerability, which could result in an unauthorized user gaining administrative access.
CVE-2013-0631AdobeColdFusionAdobe ColdFusion Information Disclosure Vulnerability2022-03-07Adobe Coldfusion contains an unspecified vulnerability, which could result in information disclosure from a compromised server.
CVE-2017-6739CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2022-03-03The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.
CVE-2017-6738CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2022-03-03The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.
CVE-2018-0155CiscoCatalyst 4500 Series Switches and Cisco Catalyst 4500-X Series SwitchesCisco Catalyst Bidirectional Forwarding Detection Denial-of-Service Vulnerability2022-03-03A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial-of-service (DoS) condition.
CVE-2017-6740CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2022-03-03The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.
CVE-2017-6737CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2022-03-03The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.
CVE-2018-0151CiscoIOS and IOS XE SoftwareCisco IOS Software and Cisco IOS XE Software Quality of Service Remote Code Execution Vulnerability2022-03-03A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges.
CVE-2017-6736CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2022-03-03The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.
CVE-2018-0154CiscoIOS SoftwareCisco IOS Software Integrated Services Module for VPN Denial-of-Service Vulnerability2022-03-03A vulnerability in the crypto engine of the Cisco Integrated Services Module for VPN (ISM-VPN) running Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial-of-service (DoS) condition.
CVE-2017-8540MicrosoftMalware Protection EngineMicrosoft Malware Protection Engine Improper Restriction of Operations Vulnerability2022-03-03The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to memory corruption. aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability".
CVE-2017-6744CiscoIOS softwareCisco IOS Software SNMP Remote Code Execution Vulnerability2022-03-03The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 1 contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6.
CVE-2017-6743CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2022-03-03The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.
CVE-2017-12232CiscoIOS softwareCisco IOS Software for Cisco Integrated Services Routers Denial-of-Service Vulnerability2022-03-03A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service.
CVE-2017-12233CiscoIOS softwareCisco IOS Software Common Industrial Protocol Request Denial-of-Service Vulnerability2022-03-03There is a vulnerability in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.
CVE-2017-12234CiscoIOS softwareCisco IOS Software Common Industrial Protocol Request Denial-of-Service Vulnerability2022-03-03There is a vulnerability in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.
CVE-2018-0156CiscoIOS Software and Cisco IOS XE SoftwareCisco IOS Software and Cisco IOS XE Software Smart Install Denial-of-Service Vulnerability2022-03-03A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial-of-service (DoS) condition.
CVE-2017-12231CiscoIOS softwareCisco IOS Software Network Address Translation Denial-of-Service Vulnerability2022-03-03A vulnerability in the implementation of Network Address Translation (NAT) functionality in Cisco IOS could allow an unauthenticated, remote attacker to cause a denial of service.
CVE-2017-11826MicrosoftOfficeMicrosoft Office Remote Code Execution Vulnerability2022-03-03A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
CVE-2017-12235CiscoIOS softwareCisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial-of-Service Vulnerability2022-03-03A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN-DCP) for Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.
CVE-2017-12237CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software Internet Key Exchange Denial-of-Service Vulnerability2022-03-03A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS and Cisco IOS XE could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service.
CVE-2017-6627CiscoIOS and IOS XE SoftwareCisco IOS Software and Cisco IOS XE Software UDP Packet Processing Denial-of-Service Vulnerability2022-03-03A vulnerability in the UDP processing code of Cisco IOS and IOS XE could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and denial of service.
CVE-2017-12319CiscoIOS XE SoftwareCisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial-of-Service Vulnerability2022-03-03A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network (EVPN) for Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition, or potentially corrupt the BGP routing table, which could result in network instability.
CVE-2017-12240CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability2022-03-03The Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.
CVE-2017-12238CiscoCatalyst 6800 Series SwitchesCisco Catalyst 6800 Series Switches VPLS Denial-of-Service Vulnerability2022-03-03A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a denial of service.
CVE-2017-6663CiscoIOS and IOS XE SoftwareCisco IOS Software and Cisco IOS XE Software Denial-of-Service Vulnerability2022-03-03A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause autonomic nodes of an affected system to reload, resulting in denial-of-service (DoS).
CVE-2018-0180CiscoIOS SoftwareCisco IOS Software Denial-of-Service Vulnerability2022-03-03A vulnerability in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition.
CVE-2021-41379MicrosoftWindowsMicrosoft Windows Installer Privilege Escalation Vulnerability2022-03-03Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-1938ApacheTomcatApache Tomcat Improper Privilege Management Vulnerability2022-03-03Apache Tomcat treats Apache JServ Protocol (AJP) connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited.
CVE-2020-11899Treck TCP/IP stackIPv6Treck TCP/IP stack Out-of-Bounds Read Vulnerability2022-03-03The Treck TCP/IP stack contains an IPv6 out-of-bounds read vulnerability.
CVE-2019-16928EximExim Internet MailerExim Out-of-bounds Write Vulnerability2022-03-03Exim contains an out-of-bounds write vulnerability which can allow for remote code execution.
CVE-2022-20699CiscoSmall Business RV160, RV260, RV340, and RV345 Series RoutersCisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability2022-03-03A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
CVE-2022-20700CiscoSmall Business RV160, RV260, RV340, and RV345 Series RoutersCisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability2022-03-03A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
CVE-2017-11292AdobeFlash PlayerAdobe Flash Player Type Confusion Vulnerability2022-03-03Adobe Flash Player contains a type confusion vulnerability which can allow for remote code execution.
CVE-2022-20708CiscoSmall Business RV160, RV260, RV340, and RV345 Series RoutersCisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability2022-03-03A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
CVE-2022-20703CiscoSmall Business RV160, RV260, RV340, and RV345 Series RoutersCisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability2022-03-03A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
CVE-2022-20701CiscoSmall Business RV160, RV260, RV340, and RV345 Series RoutersCisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability2022-03-03A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
CVE-2019-1652CiscoSmall Business RV320 and RV325 Dual Gigabit WAN VPN RoutersCisco Small Business Routers Improper Input Validation Vulnerability2022-03-03A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.
CVE-2019-1297MicrosoftExcelMicrosoft Excel Remote Code Execution Vulnerability2022-03-03A remote code execution vulnerability exists in Microsoft Excel when the software fails to properly handle objects in memory.
CVE-2018-0172CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software Improper Input Validation Vulnerability2022-03-03A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow for denial-of-service (DoS).
CVE-2018-0167CiscoIOS, XR, and XE SoftwareCisco IOS, XR, and XE Software Buffer Overflow Vulnerability2022-03-03There is a buffer overflow vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software which could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code.
CVE-2018-0161CiscoIOS SoftwareCisco IOS Software Resource Management Errors Vulnerability2022-03-03A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software running on certain models of Cisco Catalyst Switches could allow an authenticated, remote attacker to cause a denial-of-service (DoS) condition.
CVE-2018-0159CiscoIOS Software and Cisco IOS XE SoftwareCisco IOS and XE Software Internet Key Exchange Version 1 Denial-of-Service Vulnerability2022-03-03A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.
CVE-2018-0173CiscoIOS and IOS XE SoftwareCisco IOS and IOS XE Software Improper Input Validation Vulnerability2022-03-03A vulnerability in the Cisco IOS Software and Cisco IOS XE Software function that restores encapsulated option 82 information in DHCP Version 4 (DHCPv4) packets can allow for denial-of-service (DoS).
CVE-2018-0174CiscoIOS XE SoftwareCisco IOS Software and Cisco IOS XE Software Improper Input Validation Vulnerability2022-03-03A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow for denial-of-service (DoS).
CVE-2018-8581MicrosoftExchange ServerMicrosoft Exchange Server Privilege Escalation Vulnerability2022-03-03A privilege escalation vulnerability exists in Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could attempt to impersonate any other user of the Exchange server.
CVE-2018-8298ChakraCoreChakraCore scripting engineChakraCore Scripting Engine Type Confusion Vulnerability2022-03-03The ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution.
CVE-2018-0179CiscoIOS SoftwareCisco IOS Software Denial-of-Service Vulnerability2022-03-03A vulnerability in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition.
CVE-2018-0175CiscoIOS, XR, and XE SoftwareCisco IOS, XR, and XE Software Buffer Overflow Vulnerability2022-03-03Format string vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device.
CVE-2018-0158CiscoIOS Software and Cisco IOS XE SoftwareCisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability2022-03-03A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.
CVE-2015-2387MicrosoftATM Font DriverMicrosoft ATM Font Driver Privilege Escalation Vulnerability2022-03-03ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows Server allows local users to gain privileges via a crafted application.
CVE-2012-1856MicrosoftOfficeMicrosoft Office MSCOMCTL.OCX Remote Code Execution Vulnerability2022-03-03The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office allows remote attackers to execute arbitrary code via a crafted (1) document or (2) web page that triggers system-state corruption.
CVE-2012-1723OracleJava SEOracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability2022-03-03Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Hotspot.
CVE-2012-1535AdobeFlash PlayerAdobe Flash Player Arbitrary Code Execution Vulnerability2022-03-03Unspecified vulnerability in Adobe Flash Player allows remote attackers to execute arbitrary code or cause a denial of service via crafted SWF content.
CVE-2012-0507OracleJava SEOracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability2022-03-03An incorrect type vulnerability exists in the Concurrency component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code.
CVE-2012-4681OracleJava SEOracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability2022-03-03The Java Runtime Environment (JRE) component in Oracle Java SE allow for remote code execution.
CVE-2013-0632AdobeColdFusionAdobe ColdFusion Authentication Bypass Vulnerability2022-03-03An authentication bypass vulnerability exists in Adobe ColdFusion which could result in an unauthorized user gaining administrative access.
CVE-2013-1675MozillaFirefoxMozilla Firefox Information Disclosure Vulnerability2022-03-03Mozilla Firefox does not properly initialize data structures for the nsDOMSVGZoomEvent::mPreviousScale and nsDOMSVGZoomEvent::mNewScale functions, which allows remote attackers to obtain sensitive information from process memory via a crafted web site.
CVE-2013-1347MicrosoftInternet ExplorerMicrosoft Internet Explorer Remote Code Execution Vulnerability2022-03-03This vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer.
CVE-2013-0641AdobeReaderAdobe Reader Buffer Overflow Vulnerability2022-03-03A buffer overflow vulnerability exists in Adobe Reader which allows an attacker to perform remote code execution.
CVE-2013-0640AdobeReader and AcrobatAdobe Reader and Acrobat Memory Corruption Vulnerability2022-03-03An memory corruption vulnerability exists in the acroform.dll in Adobe Reader that allows an attacker to perform remote code execution.
CVE-2011-3544OracleJava SE JDK and JREOracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability2022-03-03An access control vulnerability exists in the Applet Rhino Script Engine component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code.
CVE-2011-1889MicrosoftForefront Threat Management Gateway (TMG)Microsoft Forefront TMG Remote Code Execution Vulnerability2022-03-03A remote code execution vulnerability exists in the Forefront Threat Management Gateway (TMG) Firewall Client Winsock provider that could allow code execution in the security context of the client application.
CVE-2008-3431OracleVirtualBoxOracle VirtualBox Insufficient Input Validation Vulnerability2022-03-03An input validation vulnerability exists in the VBoxDrv.sys driver of Sun xVM VirtualBox which allows attackers to locally execute arbitrary code.
CVE-2008-2992AdobeAcrobat and ReaderAdobe Reader and Acrobat Input Validation Vulnerability2022-03-03Adobe Acrobat and Reader contain an input validation issue in a JavaScript method that could potentially lead to remote code execution.
CVE-2004-0210MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-03A privilege elevation vulnerability exists in the POSIX subsystem. This vulnerability could allow a logged on user to take complete control of the system.
CVE-2002-0367MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-03smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges.
CVE-2009-1123MicrosoftWindowsMicrosoft Windows Improper Input Validation Vulnerability2022-03-03The kernel in Microsoft Windows does not properly validate changes to unspecified kernel objects, which allows local users to gain privileges via a crafted application.
CVE-2009-3129MicrosoftExcelMicrosoft Excel Featheader Record Memory Corruption Vulnerability2022-03-03Microsoft Office Excel allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset.
CVE-2011-0611AdobeFlash PlayerAdobe Flash Player Remote Code Execution Vulnerability2022-03-03Adobe Flash Player contains a vulnerability that allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content.
CVE-2010-3333MicrosoftOfficeMicrosoft Office Stack-based Buffer Overflow Vulnerability2022-03-03A stack-based buffer overflow vulnerability exists in the parsing of RTF data in Microsoft Office and earlier allows an attacker to perform remote code execution.
CVE-2010-0232MicrosoftWindowsMicrosoft Windows Kernel Exception Handler Vulnerability2022-03-03The kernel in Microsoft Windows, when access to 16-bit applications is enabled on a 32-bit x86 platform, does not properly validate certain BIOS calls, which allows local users to gain privileges.
CVE-2017-0261MicrosoftOfficeMicrosoft Office Use-After-Free Vulnerability2022-03-03Microsoft Office contains a use-after-free vulnerability which can allow for remote code execution.
CVE-2013-3346AdobeReader and AcrobatAdobe Reader and Acrobat Memory Corruption Vulnerability2022-03-03Adobe Reader and Acrobat contain a memory corruption vulnerability which can allow attackers to execute arbitrary code or cause a denial of service.
CVE-2010-0188AdobeReader and AcrobatAdobe Reader and Acrobat Arbitrary Code Execution Vulnerability2022-03-03Unspecified vulnerability in Adobe Reader and Acrobat allows attackers to cause a denial of service or possibly execute arbitrary code.
CVE-2016-4117AdobeFlash PlayerAdobe Flash Player Arbitrary Code Execution Vulnerability2022-03-03An access of resource using incompatible type vulnerability exists within Adobe Flash Player that allows an attacker to perform remote code execution.
CVE-2016-1019AdobeFlash PlayerAdobe Flash Player Arbitrary Code Execution Vulnerability2022-03-03Adobe Flash Player allows remote attackers to cause a denial of service or possibly execute arbitrary code.
CVE-2016-0099MicrosoftWindowsMicrosoft Windows Secondary Logon Service Privilege Escalation Vulnerability2022-03-03A privilege escalation vulnerability exists in Microsoft Windows if the Windows Secondary Logon Service fails to properly manage request handles in memory. An attacker who successfully exploited this vulnerability could run arbitrary code as an administrator.
CVE-2015-5119AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-03-03A use-after-free vulnerability exists within the ActionScript 3 ByteArray class in Adobe Flash Player that allows an attacker to perform remote code execution.
CVE-2016-5195LinuxKernelLinux Kernel Race Condition Vulnerability2022-03-03Race condition in mm/gup.c in the Linux kernel allows local users to escalate privileges.
CVE-2016-7193MicrosoftOfficeMicrosoft Office Memory Corruption Vulnerability2022-03-03Microsoft Office contains a memory corruption vulnerability which can allow for remote code execution.
CVE-2017-0001MicrosoftGraphics Device Interface (GDI)Microsoft Graphics Device Interface (GDI) Privilege Escalation Vulnerability2022-03-03The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges
CVE-2016-8562SiemensSIMATIC CPSiemens SIMATIC CP 1543-1 Improper Privilege Management Vulnerability2022-03-03An improper privilege management vulnerability exists within the Siemens SIMATIC Communication Processor (CP) that allows a privileged attacker to remotely cause a denial of service.
CVE-2016-7855AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-03-03Use-after-free vulnerability in Adobe Flash Player Windows and OS and Linux allows remote attackers to execute arbitrary code.
CVE-2016-7262MicrosoftExcelMicrosoft Office Security Feature Bypass Vulnerability2022-03-03A security feature bypass vulnerability exists when Microsoft Office improperly handles input. An attacker who successfully exploited the vulnerability could execute arbitrary commands.
CVE-2015-4902OracleJava SEOracle Java SE Integrity Check Vulnerability2022-03-03Unspecified vulnerability in Oracle Java SE allows remote attackers to affect integrity via Unknown vectors related to deployment.
CVE-2015-7645AdobeFlash PlayerAdobe Flash Player Arbitrary Code Execution Vulnerability2022-03-03Adobe Flash Player allows remote attackers to execute arbitrary code via a crafted SWF file.
CVE-2015-3043AdobeFlash PlayerAdobe Flash Player Memory Corruption Vulnerability2022-03-03A memory corruption vulnerability exists in Adobe Flash Player that allows an attacker to perform remote code execution.
CVE-2014-4114MicrosoftWindowsMicrosoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability2022-03-03A vulnerability exists in Windows Object Linking & Embedding (OLE) that could allow remote code execution if a user opens a file that contains a specially crafted OLE object.
CVE-2014-0496AdobeReader and AcrobatAdobe Reader and Acrobat Use-After-Free Vulnerability2022-03-03Adobe Reader and Acrobat contain a use-after-free vulnerability which can allow for code execution.
CVE-2013-5065MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2022-03-03Microsoft Windows NDProxy.sys in the kernel contains an improper input validation vulnerability which can allow a local attacker to escalate privileges.
CVE-2015-1701MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-03-03An unspecified vulnerability exists in the Win32k.sys kernel-mode driver in Microsoft Windows Server that allows a local attacker to execute arbitrary code with elevated privileges.
CVE-2015-1642MicrosoftOfficeMicrosoft Office Memory Corruption Vulnerability2022-03-03Microsoft Office contains a memory corruption vulnerability that allows remote attackers to execute arbitrary code via a crafted document.
CVE-2013-3897MicrosoftInternet ExplorerMicrosoft Internet Explorer Use-After-Free Vulnerability2022-03-03A use-after-free vulnerability exists within CDisplayPointer in Microsoft Internet Explorer that allows an attacker to remotely execute arbitrary code.
CVE-2015-2545MicrosoftOfficeMicrosoft Office Malformed EPS File Vulnerability2022-03-03Microsoft Office allows remote attackers to execute arbitrary code via a crafted EPS image.
CVE-2015-2590OracleJava SEOracle Java SE and Java SE Embedded Remote Code Execution Vulnerability2022-03-03An unspecified vulnerability exists within Oracle Java Runtime Environment that allows an attacker to perform remote code execution.
CVE-2015-2424MicrosoftPowerPointMicrosoft PowerPoint Memory Corruption Vulnerability2022-03-03Microsoft PowerPoint allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document.
CVE-2017-8570MicrosoftOfficeMicrosoft Office Remote Code Execution Vulnerability2022-02-25A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory.
CVE-2017-0222MicrosoftInternet ExplorerMicrosoft Internet Explorer Remote Code Execution Vulnerability2022-02-25A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory.
CVE-2014-6352MicrosoftWindowsMicrosoft Windows Code Injection Vulnerability2022-02-25Microsoft Windows allow remote attackers to execute arbitrary code via a crafted OLE object.
CVE-2022-24682ZimbraWebmailZimbra Webmail Cross-Site Scripting Vulnerability2022-02-25Zimbra webmail clients running versions 8.8.15 P29 & P30 contain a XSS vulnerability that would allow attackers to steal session cookie files.
CVE-2022-23134ZabbixFrontendZabbix Frontend Improper Access Control Vulnerability2022-02-22Malicious actors can pass step checks and potentially change the configuration of Zabbix Frontend.
CVE-2022-23131ZabbixFrontendZabbix Frontend Authentication Bypass Vulnerability2022-02-22Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML.
CVE-2018-8174MicrosoftWindowsMicrosoft Windows VBScript Engine Out-of-Bounds Write Vulnerability2022-02-15A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution"
CVE-2019-0752MicrosoftInternet ExplorerMicrosoft Internet Explorer Type Confusion Vulnerability2022-02-15A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer
CVE-2022-24086AdobeCommerce and Magento Open SourceAdobe Commerce and Magento Open Source Improper Input Validation Vulnerability2022-02-15Adobe Commerce and Magento Open Source contain an improper input validation vulnerability which can allow for arbitrary code execution.
CVE-2018-20250RARLABWinRARWinRAR Absolute Path Traversal Vulnerability2022-02-15WinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution
CVE-2022-0609GoogleChromium AnimationGoogle Chromium Animation Use-After-Free Vulnerability2022-02-15Google Chromium Animation contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2018-15982AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-02-15Adobe Flash Player com.adobe.tvsdk.mediacore.metadata Use After Free Vulnerability
CVE-2014-1761MicrosoftWordMicrosoft Word Memory Corruption Vulnerability2022-02-15Microsoft Word contains a memory corruption vulnerability which when exploited could allow for remote code execution.
CVE-2013-3906MicrosoftGraphics ComponentMicrosoft Graphics Component Memory Corruption Vulnerability2022-02-15Microsoft Graphics Component contains a memory corruption vulnerability which can allow for remote code execution.
CVE-2017-9841PHPUnitPHPUnitPHPUnit Command Injection Vulnerability2022-02-15PHPUnit allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "
CVE-2022-22620AppleWebkitApple Webkit Remote Code Execution Vulnerability2022-02-11Apple Webkit, which impacts iOS, iPadOS, and macOS, contains a vulnerability that allows for remote code execution.
CVE-2017-8464MicrosoftWindowsMicrosoft Windows Shell (.lnk) Remote Code Execution Vulnerability2022-02-10Windows Shell in multiple versions of Microsoft Windows allows local users or remote attackers to execute arbitrary code via a crafted .LNK file
CVE-2017-10271OracleWebLogic ServerOracle Corporation WebLogic Server Remote Code Execution Vulnerability2022-02-10Oracle Corporation WebLogic Server contains a vulnerability that allows for remote code execution.
CVE-2017-9791ApacheStruts 1Apache Struts 1 Improper Input Validation Vulnerability2022-02-10The Struts 1 plugin in Apache Struts might allow remote code execution via a malicious field value passed in a raw message to the ActionMessage.
CVE-2017-0263MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-02-10Microsoft Win32k contains a privilege escalation vulnerability due to the Windows kernel-mode driver failing to properly handle objects in memory.
CVE-2021-36934MicrosoftWindowsMicrosoft Windows SAM Local Privilege Escalation Vulnerability2022-02-10If a Volume Shadow Copy (VSS) shadow copy of the system drive is available, users can read the SAM file which would allow any user to escalate privileges to SYSTEM level.
CVE-2017-0262MicrosoftOfficeMicrosoft Office Remote Code Execution Vulnerability2022-02-10A remote code execution vulnerability exists in Microsoft Office.
CVE-2020-0796MicrosoftSMBv3Microsoft SMBv3 Remote Code Execution Vulnerability2022-02-10A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client.
CVE-2018-1000861JenkinsJenkins Stapler Web FrameworkJenkins Stapler Web Framework Deserialization of Untrusted Data Vulnerability2022-02-10A code execution vulnerability exists in the Stapler web framework used by Jenkins
CVE-2015-2051D-LinkDIR-645 RouterD-Link DIR-645 Router Remote Code Execution Vulnerability2022-02-10D-Link DIR-645 Wired/Wireless Router allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface.
CVE-2017-0145MicrosoftSMBv1Microsoft SMBv1 Remote Code Execution Vulnerability2022-02-10The SMBv1 server in multiple Microsoft Windows versions allows remote attackers to execute arbitrary code via crafted packets.
CVE-2014-4404AppleOS XApple OS X Heap-Based Buffer Overflow Vulnerability2022-02-10Heap-based buffer overflow in IOHIDFamily in Apple OS X, which affects, iOS before 8 and Apple TV before 7, allows attackers to execute arbitrary code in a privileged context.
CVE-2015-1635MicrosoftHTTP.sysMicrosoft HTTP.sys Remote Code Execution Vulnerability2022-02-10Microsoft HTTP protocol stack (HTTP.sys) contains a vulnerability that allows for remote code execution.
CVE-2015-1130AppleOS XApple OS X Authentication Bypass Vulnerability2022-02-10The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privileges.
CVE-2016-3088ApacheActiveMQApache ActiveMQ Improper Input Validation Vulnerability2022-02-10The Fileserver web application in Apache ActiveMQ allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request
CVE-2017-0144MicrosoftSMBv1Microsoft SMBv1 Remote Code Execution Vulnerability2022-02-10The SMBv1 server in multiple Microsoft Windows versions allows remote attackers to execute arbitrary code via crafted packets.
CVE-2022-21882MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-02-04Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-5722GrandstreamUCM6200Grandstream Networks UCM6200 Series SQL Injection Vulnerability2022-01-28Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. Exploitation can allow for code execution as root.
CVE-2021-20038SonicWallSMA 100 AppliancesSonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability2022-01-28SonicWall SMA 100 devies are vulnerable to an unauthenticated stack-based buffer overflow vulnerability where exploitation can result in code execution.
CVE-2022-22587AppleiOS and macOSApple Memory Corruption Vulnerability2022-01-28Apple IOMobileFrameBuffer contains a memory corruption vulnerability which can allow a malicious application to execute arbitrary code with kernel privileges.
CVE-2020-0787MicrosoftWindowsMicrosoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability2022-01-28Microsoft Windows BITS is vulnerable to to a privilege elevation vulnerability if it improperly handles symbolic links. An actor can exploit this vulnerability to execute arbitrary code with system-level privileges.
CVE-2017-5689IntelActive Management Technology (AMT), Small Business Technology (SBT), and Standard ManageabilityIntel Active Management Technology (AMT), Small Business Technology (SBT), and Standard Manageability Privilege Escalation Vulnerability2022-01-28Intel products contain a vulnerability which can allow attackers to perform privilege escalation.
CVE-2014-7169GNUBourne-Again Shell (Bash)GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability2022-01-28GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code. This CVE correctly remediates the vulnerability in CVE-2014-6271.
CVE-2014-6271GNUBourne-Again Shell (Bash)GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability2022-01-28GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code.
CVE-2014-1776MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-01-28Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code in the context of the current user.https://learn.microsoft.com/en-us/security-updates/SecurityBulletins/2014/ms14-021?redirectedfrom=MSDN
CVE-2006-1547ApacheStruts 1Apache Struts 1 ActionForm Denial-of-Service Vulnerability2022-01-21ActionForm in Apache Struts versions before 1.2.9 with BeanUtils 1.7 contains a vulnerability that allows for denial-of-service (DoS).
CVE-2018-8453MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-01-21Microsoft Windows Win32k contains a vulnerability that allows an attacker to escalate privileges.
CVE-2012-0391ApacheStruts 2Apache Struts 2 Improper Input Validation Vulnerability2022-01-21The ExceptionDelegator component in Apache Struts 2 before 2.2.3.1 contains an improper input validation vulnerability that allows for remote code execution.
CVE-2021-35247SolarWindsServ-USolarWinds Serv-U Improper Input Validation Vulnerability2022-01-21SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.
CVE-2021-40870AviatrixAviatrix ControllerAviatrix Controller Unrestricted Upload of File2022-01-18Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal.
CVE-2021-33766MicrosoftExchange ServerMicrosoft Exchange Server Information Disclosure2022-01-18Microsoft Exchange Server contains an information disclosure vulnerability which can allow an unauthenticated attacker to steal email traffic from target.
CVE-2021-25298NagiosNagios XINagios XI OS Command Injection2022-01-18Nagios XI contains a vulnerability which can lead to OS command injection on the Nagios XI server.
CVE-2021-25296NagiosNagios XINagios XI OS Command Injection2022-01-18Nagios XI contains a vulnerability which can lead to OS command injection on the Nagios XI server.
CVE-2021-32648October CMSOctober CMSOctober CMS Improper Authentication2022-01-18In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request.
CVE-2021-21975VMwarevRealize Operations Manager APIVMware Server Side Request Forgery in vRealize Operations Manager API2022-01-18Server Side Request Forgery (SSRF) in vRealize Operations Manager API prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API to perform a SSRF attack to steal administrative credentials.
CVE-2021-25297NagiosNagios XINagios XI OS Command Injection2022-01-18Nagios XI contains a vulnerability which can lead to OS command injection on the Nagios XI server.
CVE-2021-21315Npm packageSystem Information Library for Node.JSSystem Information Library for Node.JS Command Injection2022-01-18In this vulnerability, an attacker can send a malicious payload that will exploit the name parameter. After successful exploitation, attackers can execute remote.
CVE-2020-13927ApacheAirflow's Experimental APIApache Airflow's Experimental API Authentication Bypass2022-01-18The previous default setting for Airflow's Experimental API was to allow all API requests without authentication.
CVE-2020-13671DrupalDrupal coreDrupal core Un-restricted Upload of File2022-01-18Improper sanitization in the extension file names is present in Drupal core.
CVE-2020-11978ApacheAirflowApache Airflow Command Injection2022-01-18A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow.
CVE-2020-14864OracleIntelligence Enterprise EditionOracle Business Intelligence Enterprise Edition Path Transversal2022-01-18Path traversal vulnerability, where an attacker can target the preview FilePath parameter of the getPreviewImage function to get access to arbitrary system file.
CVE-2021-22991F5BIG-IP Traffic Management MicrokernelF5 BIG-IP Traffic Management Microkernel Buffer Overflow2022-01-18The Traffic Management Microkernel of BIG-IP ASM Risk Engine has a buffer overflow vulnerability, leading to a bypassing of URL-based access controls.
CVE-2013-3900MicrosoftWinVerifyTrust functionMicrosoft WinVerifyTrust function Remote Code Execution2022-01-10A remote code execution vulnerability exists in the way that the WinVerifyTrust function handles Windows Authenticode signature verification for PE files.
CVE-2019-2725OracleWebLogic ServerOracle WebLogic Server, Injection2022-01-10Injection vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services).
CVE-2019-9670SynacorZimbra Collaboration (ZCS)Synacor Zimbra Collaboration (ZCS) Improper Restriction of XML External Entity Reference2022-01-10Improper Restriction of XML External Entity Reference vulnerability affecting Synacor Zimbra Collaboration (ZCS).
CVE-2019-1458MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2022-01-10A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k EoP.
CVE-2021-22017VMwarevCenter ServerVMware vCenter Server Improper Access Control2022-01-10Rhttproxy as used in vCenter Server contains a vulnerability due to improper implementation of URI normalization.
CVE-2018-13382FortinetFortiOS and FortiProxyFortinet FortiOS and FortiProxy Improper Authorization2022-01-10An Improper Authorization vulnerability in Fortinet FortiOS and FortiProxy under SSL VPN web portal allows an unauthenticated attacker to modify the password.
CVE-2021-36260HikvisionSecurity cameras web serverHikvision Improper Input Validation2022-01-10A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation.
CVE-2020-6572GoogleChrome MediaGoogle Chrome Media Prior to 81.0.4044.92 Use-After-Free Vulnerability2022-01-10Google Chrome Media contains a use-after-free vulnerability that allows a remote attacker to execute code via a crafted HTML page.
CVE-2021-27860FatPipeWARP, IPVPN, and MPVPN softwareFatPipe WARP, IPVPN, and MPVPN Configuration Upload exploit2022-01-10A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software allows a remote, unauthenticated attacker to upload a file to any location on the filesystem.
CVE-2017-1000486PrimetekPrimefaces ApplicationPrimetek Primefaces Remote Code Execution Vulnerability2022-01-10Primetek Primefaces is vulnerable to a weak encryption flaw resulting in remote code execution
CVE-2018-13383FortinetFortiOS and FortiProxyFortinet FortiOS and FortiProxy Out-of-bounds Write2022-01-10A heap buffer overflow in Fortinet FortiOS and FortiProxy may cause the SSL VPN web service termination for logged in users.
CVE-2015-7450IBMWebSphere Application Server and Server Hypervisor EditionIBM WebSphere Application Server and Server Hypervisor Edition Code Injection.2022-01-10Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote attackers to execute arbitrary commands
CVE-2019-7609ElasticKibanaKibana Arbitrary Code Execution2022-01-10Kibana contain an arbitrary code execution flaw in the Timelion visualizer.
CVE-2019-10149EximMail Transfer Agent (MTA)Exim Mail Transfer Agent (MTA) Improper Input Validation2022-01-10Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.
CVE-2019-1579Palo Alto NetworksPAN-OSPalo Alto Networks PAN-OS Remote Code Execution Vulnerability2022-01-10Remote Code Execution in PAN-OS with GlobalProtect Portal or GlobalProtect Gateway Interface enabled.
CVE-2021-43890MicrosoftWindowsMicrosoft Windows AppX Installer Spoofing Vulnerability2021-12-15Microsoft Windows AppX Installer contains a spoofing vulnerability which has a high impacts to confidentiality, integrity, and availability.
CVE-2021-4102GoogleChromium V8Google Chromium V8 Use-After-Free Vulnerability2021-12-15Google Chromium V8 Engine contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2019-7238SonatypeNexus Repository ManagerSonatype Nexus Repository Manager Incorrect Access Control Vulnerability2021-12-10Sonatype Nexus Repository Manager before 3.15.0 has an incorrect access control vulnerability. Exploitation allows for remote code execution.
CVE-2021-44168FortinetFortiOSFortinet FortiOS Arbitrary File Download2021-12-10Fortinet FortiOS "execute restore src-vis" downloads code without integrity checking, allowing an attacker to arbitrarily download files.
CVE-2021-35394RealtekJungle Software Development Kit (SDK)Realtek Jungle SDK Remote Code Execution Vulnerability2021-12-10RealTek Jungle SDK contains multiple memory corruption vulnerabilities which can allow an attacker to perform remote code execution.
CVE-2017-17562EmbedthisGoAheadEmbedthis GoAhead Remote Code Execution Vulnerability2021-12-10Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program is dynamically linked.
CVE-2021-44515ZohoDesktop CentralZoho Desktop Central Authentication Bypass Vulnerability2021-12-10Zoho Desktop Central contains an authentication bypass vulnerability that could allow an attacker to execute arbitrary code in the Desktop Central MSP server.
CVE-2019-13272LinuxKernelLinux Kernel Improper Privilege Management Vulnerability2021-12-10Kernel/ptrace.c in Linux kernel mishandles contains an improper privilege management vulnerability that allows local users to obtain root access.
CVE-2019-0193ApacheSolrApache Solr DataImportHandler Code Injection Vulnerability2021-12-10The optional Apache Solr module DataImportHandler contains a code injection vulnerability.
CVE-2020-8816Pi-holeAdminLTEPi-Hole AdminLTE Remote Code Execution Vulnerability2021-12-10Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via a crafted DHCP static lease.
CVE-2019-10758MongoDBmongo-expressMongoDB mongo-express Remote Code Execution Vulnerability2021-12-10mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method.
CVE-2020-17463Fuel CMSFuel CMSFuel CMS SQL Injection Vulnerability2021-12-10FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items.
CVE-2021-44228ApacheLog4j2Apache Log4j2 Remote Code Execution Vulnerability2021-12-10Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.
CVE-2017-12149Red HatJBoss Application ServerRed Hat JBoss Application Server Remote Code Execution Vulnerability2021-12-10The JBoss Application Server, shipped with Red Hat Enterprise Application Platform 5.2, allows an attacker to execute arbitrary code via crafted serialized data.
CVE-2010-1871Red HatJBoss Seam 2Red Hat Linux JBoss Seam 2 Remote Code Execution Vulnerability2021-12-10JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, allows attackers to perform remote code execution. This vulnerability can only be exploited when the Java Security Manager is not properly configured.
CVE-2018-14847MikroTikRouterOSMikroTik Router OS Directory Traversal Vulnerability2021-12-01MikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.
CVE-2020-11261QualcommSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesQualcomm Multiple Chipsets Improper Input Validation Vulnerability2021-12-01Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-37415ZohoManageEngine ServiceDesk Plus (SDP)Zoho ManageEngine ServiceDesk Authentication Bypass Vulnerability2021-12-01Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs without authentication
CVE-2021-40438ApacheApacheApache HTTP Server-Side Request Forgery (SSRF)2021-12-01A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-44077ZohoManageEngine ServiceDesk Plus (SDP) / SupportCenter PlusZoho ManageEngine ServiceDesk Plus Remote Code Execution Vulnerability2021-12-01Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution
CVE-2021-40449MicrosoftWindowsMicrosoft Windows Win32k Privilege Escalation Vulnerability2021-11-17Unspecified vulnerability allows for an authenticated user to escalate privileges.
CVE-2021-42321MicrosoftExchangeMicrosoft Exchange Server Remote Code Execution Vulnerability2021-11-17An authenticated attacker could leverage improper validation in cmdlet arguments within Microsoft Exchange and perform remote code execution.
CVE-2021-22204PerlExiftoolExifTool Remote Code Execution Vulnerability2021-11-17Improper neutralization of user data in the DjVu file format in Exiftool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
CVE-2021-42292MicrosoftOfficeMicrosoft Excel Security Feature Bypass2021-11-17A security feature bypass vulnerability in Microsoft Excel would allow a local user to perform arbitrary code execution.
CVE-2020-16013GoogleChromium V8Google Chromium V8 Incorrect Implementation Vulnerabililty2021-11-03Google Chromium V8 Engine contains an inappropriate implementation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-30633GoogleChromium Indexed DB APIGoogle Chromium Indexed DB API Use-After-Free Vulnerability2021-11-03Google Chromium Indexed DB API contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-30632GoogleChromium V8Google Chromium V8 Out-of-Bounds Write Vulnerability2021-11-03Google Chromium V8 Engine contains an out-of-bounds write vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2020-16009GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2021-11-03Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-21166GoogleChromiumGoogle Chromium Race Condition Vulnerability2021-11-03Google Chromium contains a race condition vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2020-16017GoogleChromeGoogle Chrome Use-After-Free Vulnerability2021-11-03Google Chrome contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-37976GoogleChromiumGoogle Chromium Information Disclosure Vulnerability2021-11-03Google Chromium contains an information disclosure vulnerability within the core memory component that allows a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-38003GoogleChromium V8Google Chromium V8 Memory Corruption Vulnerability2021-11-03Google Chromium V8 Engine has a bug in JSON.stringify, where the internal TheHole value can leak to script code, causing memory corruption. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-37973GoogleChromium PortalsGoogle Chromium Portals Use-After-Free Vulnerability2021-11-03Google Chromium Portals contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability affects web browsers that utilize Chromium, including Google Chrome and Microsoft Edge.
CVE-2021-21206GoogleChromium BlinkGoogle Chromium Blink Use-After-Free Vulnerability2021-11-03Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-38000GoogleChromium IntentsGoogle Chromium Intents Improper Input Validation Vulnerability2021-11-03Google Chromium Intents contains an improper input validation vulnerability that allows a remote attacker to arbitrarily browser to a malicious URL via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2020-15999GoogleChrome FreeTypeGoogle Chrome FreeType Heap Buffer Overflow Vulnerability2021-11-03Google Chrome uses FreeType, an open-source software library to render fonts, which contains a heap buffer overflow vulnerability in the function Load_SBit_Png when processing PNG images embedded into fonts. This vulnerability is part of an exploit chain with CVE-2020-17087 on Windows and CVE-2020-16010 on Android.
CVE-2021-30554GoogleChromium WebGLGoogle Chromium WebGL Use-After-Free Vulnerability2021-11-03Google Chromium WebGL contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2020-6418GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2021-11-03Google Chromium V8 Engine contains a type confusion vulnerability allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-30551GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2021-11-03Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-37975GoogleChromium V8Google Chromium V8 Use-After-Free Vulnerability2021-11-03Google Chromium V8 Engine contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-21148GoogleChromium V8Google Chromium V8 Heap Buffer Overflow Vulnerability2021-11-03Google Chromium V8 Engine contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2020-8657EyesOfNetworkEyesOfNetworkEyesOfNetwork Use of Hard-Coded Credentials Vulnerability2021-11-03EyesOfNetwork contains a use of hard-coded credentials vulnerability, as it uses the same API key by default. Exploitation allows an attacker to calculate or guess the admin access token.
CVE-2019-15752DockerDesktop Community EditionDocker Desktop Community Edition Privilege Escalation Vulnerability2021-11-03Docker Desktop Community Edition contains a vulnerability that may allow local users to escalate privileges by placing a trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\.
CVE-2020-8515DrayTekMultiple Vigor RoutersMultiple DrayTek Vigor Routers Web Management Page Vulnerability2021-11-03DrayTek Vigor3900, Vigor2960, and Vigor300B routers contain an unspecified vulnerability that allows for remote code execution.
CVE-2018-7600DrupalDrupal CoreDrupal Core Remote Code Execution Vulnerability2021-11-03Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vectors on a Drupal site, resulting in complete site compromise.
CVE-2017-9822DotNetNuke (DNN)DotNetNuke (DNN)DotNetNuke (DNN) Remote Code Execution Vulnerability2021-11-03DotNetNuke (DNN) contains a vulnerability that may allow for remote code execution via cookie deserialization.
CVE-2018-18325DotNetNuke (DNN)DotNetNuke (DNN)DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability2021-11-03DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters. This CVE ID resolves an incomplete patch for CVE-2018-15811.
CVE-2021-21224GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2021-11-03Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2018-15811DotNetNuke (DNN)DotNetNuke (DNN)DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability2021-11-03DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters.
CVE-2021-22205GitLabCommunity and Enterprise EditionsGitLab Community and Enterprise Editions Remote Code Execution Vulnerability2021-11-03GitHub Community and Enterprise Editions that utilize the ability to upload images through GitLab Workhorse are vulnerable to remote code execution. Workhorse passes image file extensions through ExifTool, which improperly validates the image files.
CVE-2018-6789EximEximExim Buffer Overflow Vulnerability2021-11-03Exim contains a buffer overflow vulnerability in the base64d function part of the SMTP listener that may allow for remote code execution.
CVE-2019-5591FortinetFortiOSFortinet FortiOS Default Configuration Vulnerability2021-11-03Fortinet FortiOS contains a default configuration vulnerability that may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the Lightweight Directory Access Protocol (LDAP) server.
CVE-2020-12812FortinetFortiOSFortinet FortiOS SSL VPN Improper Authentication Vulnerability2021-11-03Fortinet FortiOS SSL VPN contains an improper authentication vulnerability that may allow a user to login successfully without being prompted for the second factor of authentication (FortiToken) if they change the case in their username.
CVE-2018-13379FortinetFortiOSFortinet FortiOS SSL VPN Path Traversal Vulnerability2021-11-03Fortinet FortiOS SSL VPN web portal contains a path traversal vulnerability that may allow an unauthenticated attacker to download FortiOS system files through specially crafted HTTP resource requests.
CVE-2021-35464ForgeRockAccess Management (AM)ForgeRock Access Management (AM) Core Server Remote Code Execution Vulnerability2021-11-03ForgeRock Access Management (AM) Core Server allows an attacker who sends a specially crafted HTTP request to one of three endpoints (/ccversion/Version, /ccversion/Masthead, or /ccversion/ButtonFrame) to execute code in the context of the current user (unless ForgeRock AM is running as root user, which the vendor does not recommend).
CVE-2021-22986F5BIG-IP and BIG-IQ Centralized ManagementF5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability2021-11-03F5 BIG-IP and BIG-IQ Centralized Management contain a remote code execution vulnerability in the iControl REST interface that allows unauthenticated attackers with network access to execute system commands, create or delete files, and disable services.
CVE-2020-8655EyesOfNetworkEyesOfNetworkEyesOfNetwork Improper Privilege Management Vulnerability2021-11-03EyesOfNetwork contains an improper privilege management vulnerability that may allow a user to run commands as root via a crafted Nmap Scripting Engine (NSE) script to nmap7.
CVE-2020-5902F5BIG-IPF5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability2021-11-03F5 BIG-IP Traffic Management User Interface (TMUI) contains a remote code execution vulnerability in undisclosed pages.
CVE-2020-16010GoogleChrome for Android UIGoogle Chrome for Android UI Heap Buffer Overflow Vulnerability2021-11-03Google Chrome for Android UI contains a heap buffer overflow vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-31979MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2021-11-03Microsoft Windows kernel contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-0683MicrosoftWindowsMicrosoft Windows Installer Privilege Escalation Vulnerability2021-11-03Microsoft Windows Installer contains a privilege escalation vulnerability when MSI packages process symbolic links, which allows attackers to bypass access restrictions to add or remove files.
CVE-2020-17087MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2021-11-03Microsoft Windows kernel contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-33742MicrosoftWindowsMicrosoft Windows MSHTML Platform Remote Code Execution Vulnerability2021-11-03Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for remote code execution.
CVE-2016-0185MicrosoftWindowsMicrosoft Windows Media Center Remote Code Execution Vulnerability2021-11-03Microsoft Windows Media Center contains a remote code execution vulnerability when Windows Media Center opens a specially crafted Media Center link (.mcl) file that references malicious code.
CVE-2021-33739MicrosoftWindowsMicrosoft Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability2021-11-03Microsoft Desktop Window Manager (DWM) Core Library contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-31955MicrosoftWindowsMicrosoft Windows Kernel Information Disclosure Vulnerability2021-11-03Microsoft Windows Kernel contains an unspecified vulnerability that allows for information disclosure. Successful exploitation allows attackers to read the contents of kernel memory from a user-mode process.
CVE-2021-1647MicrosoftDefenderMicrosoft Defender Remote Code Execution Vulnerability2021-11-03Microsoft Defender contains an unspecified vulnerability that allows for remote code execution.
CVE-2021-31199MicrosoftEnhanced Cryptographic ProviderMicrosoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability2021-11-03Microsoft Enhanced Cryptographic Provider contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-33771MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2021-11-03Microsoft Windows kernel contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-17144MicrosoftExchange ServerMicrosoft Exchange Server Remote Code Execution Vulnerability2021-11-03Microsoft Exchange Server improperly validates cmdlet arguments which allow an attacker to perform remote code execution.
CVE-2020-0986MicrosoftWindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2021-11-03Microsoft Windows kernel contains an unspecified vulnerability when handling objects in memory that allows attackers to escalate privileges and execute code in kernel mode.
CVE-2020-1020MicrosoftWindowsMicrosoft Windows Adobe Font Manager Library Remote Code Execution Vulnerability2021-11-03Microsoft Windows Adobe Font Manager Library contains an unspecified vulnerability when handling specially crafted multi-master fonts (Adobe Type 1 PostScript format) that allows for remote code execution for all systems except Windows 10. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities.
CVE-2020-0938MicrosoftWindowsMicrosoft Windows Adobe Font Manager Library Remote Code Execution Vulnerability2021-11-03Microsoft Windows Adobe Font Manager Library contains an unspecified vulnerability when handling specially crafted multi-master fonts (Adobe Type 1 PostScript format) that allows for remote code execution for all systems except Windows 10. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities.
CVE-2020-25506D-LinkDNS-320 DeviceD-Link DNS-320 Device Command Injection Vulnerability2021-11-03D-Link DNS-320 device contains a command injection vulnerability in the sytem_mgr.cgi component that may allow for remote code execution.
CVE-2021-31956MicrosoftWindowsMicrosoft Windows NTFS Privilege Escalation Vulnerability2021-11-03Microsoft Windows New Technology File System (NTFS) contains an unspecified vulnerability that allows attackers to escalate privileges via a specially crafted application.
CVE-2021-31201MicrosoftEnhanced Cryptographic ProviderMicrosoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability2021-11-03Microsoft Enhanced Cryptographic Provider contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-0878MicrosoftEdge and Internet ExplorerMicrosoft Edge and Internet Explorer Memory Corruption Vulnerability2021-11-03Microsoft Edge and Internet Explorer contain a memory corruption vulnerability that allows attackers to execute code in the context of the current user.
CVE-2016-0167MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation via a crafted application
CVE-2020-4428IBMData Risk ManagerIBM Data Risk Manager Remote Code Execution Vulnerability2021-11-03IBM Data Risk Manager contains an unspecified vulnerability which could allow a remote, authenticated attacker to execute commands on the system.�
CVE-2019-4716IBMPlanning AnalyticsIBM Planning Analytics Remote Code Execution Vulnerability2021-11-03IBM Planning Analytics is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting.
CVE-2016-3715ImageMagickImageMagickImageMagick Arbitrary File Deletion Vulnerability2021-11-03ImageMagick contains an unspecified vulnerability that could allow users to delete files by using ImageMagick's 'ephemeral' pseudo protocol, which deletes files after reading.
CVE-2020-4427IBMData Risk ManagerIBM Data Risk Manager Security Bypass Vulnerability2021-11-03IBM Data Risk Manager contains a security bypass vulnerability that could allow a remote attacker to bypass security restrictions when configured with SAML authentication. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to bypass the authentication process and gain full administrative access to the system.
CVE-2020-4430IBMData Risk ManagerIBM Data Risk Manager Directory Traversal Vulnerability2021-11-03IBM Data Risk Manager contains a directory traversal vulnerability that could allow a remote authenticated attacker to traverse directories and send a specially crafted URL request to download arbitrary files from the system.
CVE-2021-21220GoogleChromium V8Google Chromium V8 Improper Input Validation Vulnerability2021-11-03Google Chromium V8 Engine contains an improper input validation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-30563GoogleChromium V8Google Chromium V8 Type Confusion Vulnerability2021-11-03Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2016-3718ImageMagickImageMagickImageMagick Server-Side Request Forgery (SSRF) Vulnerability2021-11-03ImageMagick contains an unspecified vulnerability that allows attackers to perform server-side request forgery (SSRF) via a crafted image.
CVE-2020-15505IvantiMobileIron Multiple ProductsIvanti MobileIron Multiple Products Remote Code Execution Vulnerability2021-11-03Ivanti MobileIron's Core & Connector, Sentry, and Monitor and Reporting Database (RDB) products contain an unspecified vulnerability that allows for remote code execution.
CVE-2021-22502Micro FocusOperation Bridge Reporter (OBR)Micro Focus Operation Bridge Report (OBR) Remote Code Execution Vulnerability2021-11-03Micro Focus Operation Bridge Report (OBR) contains an unspecified vulnerability that allows for remote code execution.
CVE-2014-1812MicrosoftWindowsMicrosoft Windows Group Policy Preferences Password Privilege Escalation Vulnerability2021-11-03Microsoft Windows Active Directory contains a privilege escalation vulnerability due to the way it distributes passwords that are configured using Group Policy preferences. An authenticated attacker who successfully exploits the vulnerability could decrypt the passwords and use them to elevate privileges on the domain.
CVE-2021-38647MicrosoftOpen Management Infrastructure (OMI)Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability2021-11-03Microsoft Open Management Infrastructure (OMI) within Azure VM Management Extensions contains an unspecified vulnerability allowing remote code execution.
CVE-2021-22506Micro FocusMicro Focus Access ManagerMicro Focus Access Manager Information Leakage Vulnerability2021-11-03Micro Focus Access Manager contains an information leakage vulnerability resulting from a SAML service provider redirection issue when the Assertion Consumer Service URL is used.
CVE-2021-23874McAfeeMcAfee Total Protection (MTP)McAfee Total Protection (MTP) Improper Privilege Management Vulnerability2021-11-03McAfee Total Protection (MTP) contains an improper privilege management vulnerability that allows a local user to gain elevated privileges and execute code, bypassing MTP self-defense.
CVE-2021-30116KaseyaVirtual System/Server Administrator (VSA)Kaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulnerability2021-11-03Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.
CVE-2020-7961LiferayLiferay PortalLiferay Portal Deserialization of Untrusted Data Vulnerability2021-11-03Liferay Portal contains a deserialization of untrusted data vulnerability that allows remote attackers to execute code via JSON web services.
CVE-2021-21193GoogleChromium BlinkGoogle Chromium Blink Use-After-Free Vulnerability2021-11-03Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
CVE-2021-30663AppleMultiple ProductsApple Multiple Products Integer Overflow Vulnerability2021-11-03Apple iOS, iPadOS, macOS, tvOS, and Safari WebKit contain an integer overflow vulnerability which may allow for code execution when processing maliciously crafted web content.
CVE-2019-6223AppleiOS and macOSApple iOS and macOS Group Facetime Vulnerability2021-11-03Apple iOS and macOS Group FaceTime contains an unspecified vulnerability where the call initiator can cause the recipient's Apple device to answer unknowingly or without user interaction.
CVE-2021-30860AppleMultiple ProductsApple Multiple Products Integer Overflow Vulnerability2021-11-03Apple iOS, iPadOS, macOS, and watchOS CoreGraphics contain an integer overflow vulnerability which may allow code execution when processing a maliciously crafted PDF. The vulnerability is also known under the moniker of FORCEDENTRY.
CVE-2020-27930AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2021-11-03Apple iOS, iPadOS, macOS, and watchOS FontParser contain a memory corruption vulnerability which may allow for code execution when processing maliciously crafted front.
CVE-2021-30858AppleiOS, iPadOS, and macOSApple iOS, iPadOS, macOS Use-After-Free Vulnerability2021-11-03Apple iOS, iPadOS, and macOS WebKit contains a use-after-free vulnerability that may allow for code execution when processing maliciously crafted web content.
CVE-2018-11776ApacheStrutsApache Struts Remote Code Execution Vulnerability2021-11-03Apache Struts contains a vulnerability that allows for remote code execution under two circumstances. One, where the alwaysSelectFullNamespace option is true and the value isn't set for a result defined in underlying configurations and in same time, its upper package configuration have no or wildcard namespace. Or, using URL tag which doesn�t have value and action set and in same time, its upper package configuration have no or wildcard namespace.
CVE-2020-17530ApacheStrutsApache Struts Remote Code Execution Vulnerability2021-11-03Forced Object-Graph Navigation Language (OGNL) evaluation in Apache Struts, when evaluated on raw user input in tag attributes, can lead to remote code execution.
CVE-2017-5638ApacheStrutsApache Struts Remote Code Execution Vulnerability2021-11-03Apache Struts Jakarta Multipart parser allows for malicious file upload using the Content-Type value, leading to remote code execution.
CVE-2021-30807AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2021-11-03Apple iOS, iPadOS, macOS, and watchOS IOMobileFrameBuffer contain a memory corruption vulnerability which may allow an application to execute code with kernel privileges.
CVE-2020-27950AppleMultiple ProductsApple Multiple Products Memory Initialization Vulnerability2021-11-03Apple iOS, iPadOS, macOS, and watchOS contain a memory initialization vulnerability that may allow a malicious application to disclose kernel memory.
CVE-2021-1782AppleMultiple ProductsApple Multiple Products Race Condition Vulnerability2021-11-03Apple iOS, iPadOs, macOS, watchOS, and tvOS contain a race condition vulnerability that may allow a malicious application to elevate privileges.
CVE-2021-1870AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS Remote Code Execution Vulnerability2021-11-03Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic issue which may allow a remote attacker to execute code.
CVE-2021-1871AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS Remote Code Execution Vulnerability2021-11-03Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic issue which may allow a remote attacker to execute code.
CVE-2021-30762AppleiOSApple iOS Use-After-Free Vulnerability2021-11-03Apple iOS WebKit contains a use-after-free vulnerability which may allow for code execution when processing maliciously crafted web content.
CVE-2020-9819AppleiOS, iPadOS, and watchOSApple iOS, iPadOS, and watchOS Memory Corruption Vulnerability2021-11-03Apple iOS, iPadOS, and watchOS Mail contains a memory corruption vulnerability that may allow heap corruption when processing a maliciously crafted mail message.
CVE-2020-27932AppleMultiple ProductsApple Multiple Products Type Confusion Vulnerability2021-11-03Apple iOS, iPadOS, macOS, and watchOS contain a type confusion vulnerability that may allow a malicious application to execute code with kernel privileges.
CVE-2020-9818AppleiOS, iPadOS, and watchOSApple iOS, iPadOS, and watchOS Out-of-Bounds Write Vulnerability2021-11-03Apple iOS, iPadOS, and watchOS Mail contains an out-of-bounds write vulnerability which may allow memory modification or application termination when processing a maliciously crafted mail message.
CVE-2019-17558ApacheSolrApache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability2021-11-03The Apache Solr VelocityResponseWriter plug-in contains an unspecified vulnerability which can allow for remote code execution.
CVE-2016-4437ApacheShiroApache Shiro Code Execution Vulnerability2021-11-03Apache Shiro contains a vulnerability which may allow remote attackers to execute code or bypass intended access restrictions via an unspecified request parameter when a cipher key has not been configured for the "remember me" feature.
CVE-2021-28550AdobeAcrobat and ReaderAdobe Acrobat and Reader Use-After-Free Vulnerability2021-11-03Adobe Acrobat and Reader contains a use-after-free vulnerability that could allow an unauthenticated attacker to achieve code execution in the context of the current user.
CVE-2018-4939AdobeColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2021-11-03Adobe ColdFusion contains a deserialization of untrusted data vulnerability that could allow for code execution.
CVE-2018-15961AdobeColdFusionAdobe ColdFusion Unrestricted File Upload Vulnerability2021-11-03Adobe ColdFusion contains an unrestricted file upload vulnerability that could allow for code execution.
CVE-2021-21017AdobeAcrobat and ReaderAdobe Acrobat and Reader Heap-based Buffer Overflow Vulnerability2021-11-03Acrobat Acrobat and Reader contain a heap-based buffer overflow vulnerability that could allow an unauthenticated attacker to achieve code execution in the context of the current user.
CVE-2021-27103AccellionFTAAccellion FTA Server-Side Request Forgery (SSRF) Vulnerability2021-11-03Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.
CVE-2021-27102AccellionFTAAccellion FTA OS Command Injection Vulnerability2021-11-03Accellion FTA contains an OS command injection vulnerability exploited via a local web service call.
CVE-2021-27101AccellionFTAAccellion FTA SQL Injection Vulnerability2021-11-03Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.
CVE-2018-4878AdobeFlash PlayerAdobe Flash Player Use-After-Free Vulnerability2021-11-03Adobe Flash Player contains a use-after-free vulnerability that could allow for code execution.
CVE-2020-5735AmcrestCameras and Network Video Recorder (NVR)Amcrest Cameras and NVR Stack-based Buffer Overflow Vulnerability2021-11-03Amcrest cameras and NVR contain a stack-based buffer overflow vulnerability through port 37777 that allows an unauthenticated, remote attacker to crash the device and possibly execute code.
CVE-2021-42013ApacheHTTP ServerApache HTTP Server Path Traversal Vulnerability2021-11-03Apache HTTP Server contains a path traversal vulnerability that allows an attacker to perform remote code execution if files outside directories configured by Alias-like directives are not under default �require all denied� or if CGI scripts are enabled. This CVE ID resolves an incomplete patch for CVE-2021-41773.
CVE-2021-41773ApacheHTTP ServerApache HTTP Server Path Traversal Vulnerability2021-11-03Apache HTTP Server contains a path traversal vulnerability that allows an attacker to perform remote code execution if files outside directories configured by Alias-like directives are not under default �require all denied� or if CGI scripts are enabled. The original patch issued under this CVE ID is insufficient, please review remediation information under CVE-2021-42013.
CVE-2019-0211ApacheHTTP ServerApache HTTP Server Privilege Escalation Vulnerability2021-11-03Apache HTTP Server, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute code with the privileges of the parent process (usually root) by manipulating the scoreboard.
CVE-2017-9805ApacheStrutsApache Struts Deserialization of Untrusted Data Vulnerability2021-11-03Apache Struts REST Plugin uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to remote code execution when deserializing XML payloads.
CVE-2020-0069MediaTekMultiple ChipsetsMediatek Multiple Chipsets Insufficient Input Validation Vulnerability2021-11-03Multiple MediaTek chipsets contain an insufficient input validation vulnerability and have missing SELinux restrictions in the Command Queue drivers ioctl handlers. This causes an out-of-bounds write leading to privilege escalation. This vulnerability was observed chained with CVE-2019-2215 and CVE-2020-0041 under exploit chain "AbstractEmu."
CVE-2019-2215AndroidAndroid KernelAndroid Kernel Use-After-Free Vulnerability2021-11-03Android Kernel contains a use-after-free vulnerability in binder.c that allows for privilege escalation from an application to the Linux Kernel. This vulnerability was observed chained with CVE-2020-0041 and CVE-2020-0069 under exploit chain "AbstractEmu."
CVE-2020-0041AndroidAndroid KernelAndroid Kernel Out-of-Bounds Write Vulnerability2021-11-03Android Kernel binder_transaction of binder.c contains an out-of-bounds write vulnerability due to an incorrect bounds check that could allow for local privilege escalation. This vulnerability was observed chained with CVE-2019-2215 and CVE-2020-0069 under exploit chain "AbstractEmu."
CVE-2021-1879AppleiOS, iPadOS, and watchOSApple iOS, iPadOS, and watchOS Cross-Site Scripting (XSS) Vulnerability2021-11-03Apple iOS, iPadOS, and watchOS WebKit contains a cross-site scripting (XSS) vulnerability when processing maliciously crafted web content.
CVE-2021-30661AppleMultiple ProductsApple Multiple Products Use-After-Free Vulnerability2021-11-03Apple iOS, iPadOS, macOS, watchOS, tvOS, and Safari WebKit Storage contain a use-after-free vulnerability which may allow for code execution when processing maliciously crafted web content.
CVE-2020-3118CiscoIOS XRCisco IOS XR Software Discovery Protocol Format String Vulnerability2021-11-03Cisco IOS XR improperly validates string input from certain fields in Cisco Discovery Protocol messages. Exploitation could allow an unauthenticated, adjacent attacker to execute code with administrative privileges or cause a reload on an affected device.
CVE-2020-3566CiscoIOS XRCisco IOS XR Software DVMRP Memory Exhaustion Vulnerability2021-11-03Cisco IOS XR Distance Vector Multicast Routing Protocol (DVMRP) incorrectly handles Internet Group Management Protocol (IGMP) packets. Exploitation could allow an unauthenticated, remote attacker to immediately crash the IGMP process or make it consume available memory and eventually crash.
CVE-2020-3569CiscoIOS XRCisco IOS XR Software DVMRP Memory Exhaustion Vulnerability2021-11-03Cisco IOS XR Distance Vector Multicast Routing Protocol (DVMRP) incorrectly handles Internet Group Management Protocol (IGMP) packets. Exploitation could allow an unauthenticated, remote attacker to immediately crash the IGMP process or make it consume available memory and eventually crash.
CVE-2018-0171CiscoIOS and IOS XECisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability2021-11-03Cisco IOS and IOS XE Software improperly validates packet data, allowing an unauthenticated, remote attacker to trigger a reload of an affected device, cause a denial-of-service (DoS) condition, or perform code execution on the affected device.
CVE-2021-1498CiscoHyperFlex HXCisco HyperFlex HX Data Platform Command Injection Vulnerability2021-11-03Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the tomcat8 user.
CVE-2020-3580CiscoAdaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Cisco ASA and FTD Cross-Site Scripting (XSS) Vulnerability2021-11-03Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an insufficient input validation vulnerability for user-supplied input by the web services interface. Successful exploitation could allow an attacker to perform cross-site scripting (XSS) in the context of the interface or access sensitive browser-based information.
CVE-2021-1497CiscoHyperFlex HXCisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability2021-11-03Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the�root�user.
CVE-2020-3161CiscoCisco IP PhonesCisco IP Phones Web Server Remote Code Execution and Denial-of-Service Vulnerability2021-11-03Cisco IP Phones contain an improper input validation vulnerability for HTTP requests. Exploitation could allow an attacker to execute code remotely with�root�privileges or cause a denial-of-service (DoS) condition.
CVE-2019-1653CiscoSmall Business RV320 and RV325 RoutersCisco Small Business RV320 and RV325 Routers Information Disclosure Vulnerability2021-11-03Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers contain improper access controls for URLs. Exploitation could allow an attacker to download the router configuration or detailed diagnostic information.
CVE-2020-8196CitrixApplication Delivery Controller (ADC), Gateway, and SD-WAN WANOP ApplianceCitrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability2021-11-03Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an information disclosure vulnerability.
CVE-2019-19781CitrixApplication Delivery Controller (ADC), Gateway, and SD-WAN WANOP ApplianceCitrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability2021-11-03Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an unspecified vulnerability that could allow an unauthenticated attacker to perform code execution.
CVE-2019-11634CitrixWorkspace Application and Receiver for WindowsCitrix Workspace Application and Receiver for Windows Remote Code Execution Vulnerability2021-11-03Citrix Workspace Application and Receiver for Windows contains remote code execution vulnerability resulting from local drive access preferences not being enforced into the clients' local drives.
CVE-2020-8195CitrixApplication Delivery Controller (ADC), Gateway, and SD-WAN WANOP ApplianceCitrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability2021-11-03Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an information disclosure vulnerability.
CVE-2020-8193CitrixApplication Delivery Controller (ADC), Gateway, and SD-WAN WANOP ApplianceCitrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability2021-11-03Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an authorization bypass vulnerability that may allow unauthenticated access to certain URL endpoints. The attacker must have access to the NetScaler IP (NSIP) in order to perform exploitation.
CVE-2018-0296CiscoAdaptive Security Appliance (ASA)Cisco Adaptive Security Appliance (ASA) Denial-of-Service Vulnerability2021-11-03Cisco Adaptive Security Appliance (ASA) contains an improper input validation vulnerability with HTTP URLs. Exploitation could allow an attacker to cause a denial-of-service (DoS) condition or information disclosure.
CVE-2019-13608CitrixStoreFront ServerCitrix StoreFront Server XML External Entity (XXE) Processing Vulnerability2021-11-03Citrix StoreFront Server contains an XML External Entity (XXE) processing vulnerability that may allow an unauthenticated attacker to retrieve potentially sensitive information.
CVE-2020-3452CiscoAdaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Cisco ASA and FTD Read-Only Path Traversal Vulnerability2021-11-03Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an improper input validation vulnerability when HTTP requests process URLs. An attacker could exploit this vulnerability by sending a crafted HTTP request containing directory traversal character sequences to an affected device. A successful exploit could allow the attacker to view arbitrary files within the web services file system on the targeted device.
CVE-2021-42258BQEBillQuick Web SuiteBQE BillQuick Web Suite SQL Injection Vulnerability2021-11-03BQE BillQuick Web Suite contains an SQL injection vulnerability when accessing the username parameter that may allow for unauthenticated, remote code execution.
CVE-2021-38645MicrosoftOpen Management Infrastructure (OMI)Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability2021-11-03Microsoft Open Management Infrastructure (OMI) within Azure VM Management Extensions contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-30761AppleiOSApple iOS Memory Corruption Vulnerability2021-11-03Apple iOS WebKit contains a memory corruption vulnerability which may allow for code execution when processing maliciously crafted web content.
CVE-2021-30869AppleiOS, iPadOS, and macOSApple iOS, iPadOS, and macOS Type Confusion Vulnerability2021-11-03Apple iOS, iPadOS, and macOS contain a type confusion vulnerability in the XNU which may allow a malicious application to execute code with kernel privileges.
CVE-2021-30665AppleMultiple ProductsApple Multiple Products Memory Corruption Vulnerability2021-11-03Apple iOS, iPadOS, macOS, watchOS, and tvOS WebKit contain a memory corruption vulnerability which may allow for code execution when processing maliciously crafted web content.
CVE-2021-30657ApplemacOSApple macOS Unspecified Vulnerability2021-11-03Apple macOS contains an unspecified logic issue in System Preferences that may allow a malicious application to bypass Gatekeeper checks.
CVE-2021-30666AppleiOSApple iOS Buffer Overflow Vulnerability2021-11-03Apple iOS WebKit contains a buffer-overflow vulnerability which may allow for code execution when processing maliciously crafted web content.
CVE-2021-30713ApplemacOSApple macOS Unspecified Vulnerability2021-11-03Apple macOS Transparency, Consent, and Control (TCC) contains an unspecified permissions issue which may allow a malicious application to bypass privacy preferences.
CVE-2020-9859AppleMultiple ProductsApple Multiple Products Code Execution Vulnerability2021-11-03Apple iOS, iPadOS, macOS, watchOS, and tvOS contain an unspecified vulnerability that may allow an application to execute code with kernel privileges.
CVE-2021-20090ArcadyanBuffalo FirmwareArcadyan Buffalo Firmware Path Traversal Vulnerability2021-11-03Arcadyan Buffalo firmware contains a path traversal vulnerability that could allow unauthenticated, remote attackers to bypass authentication and access sensitive information. This vulnerability affects multiple routers across several different vendors.
CVE-2021-26084AtlassianConfluence Server and Data CenterAtlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability2021-11-03Atlassian Confluence Server and Data Server contain an Object-Graph Navigation Language (OGNL) injection vulnerability that may allow an unauthenticated attacker to execute code.
CVE-2019-11580AtlassianCrowd and Crowd Data CenterAtlassian Crowd and Crowd Data Center Remote Code Execution Vulnerability2021-11-03Atlassian Crowd and Crowd Data Center contain a remote code execution vulnerability resulting from a pdkinstall development plugin being incorrectly enabled in release builds.
CVE-2019-3396AtlassianConfluence Server and Data ServerAtlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability2021-11-03Atlassian Confluence Server and Data Center contain a server-side template injection vulnerability that may allow an attacker to achieve path traversal and remote code execution.
CVE-2019-3398AtlassianConfluence Server and Data CenterAtlassian Confluence Server and Data Center Path Traversal Vulnerability2021-11-03Atlassian Confluence Server and Data Center contain a path traversal vulnerability in the downloadallattachments resource that may allow a privileged, remote attacker to write files. Exploitation can lead to remote code execution.
CVE-2021-28663ArmMali Graphics Processing Unit (GPU)Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability2021-11-03Arm Mali Graphics Processing Unit (GPU) kernel driver contains a use-after-free vulnerability that may allow a non-privileged user to make improper operations on GPU memory to gain root privilege, and/or disclose information.
CVE-2021-27562ArmTrusted FirmwareArm Trusted Firmware Out-of-Bounds Write Vulnerability2021-11-03Arm Trusted Firmware contains an out-of-bounds write vulnerability allowing the non-secure (NS) world to trigger a system halt, overwrite secure data, or print out secure data when calling secure functions under the non-secure processing environment (NSPE) handler mode. This vulnerability affects Yealink Device Management servers.
CVE-2021-28664ArmMali Graphics Processing Unit (GPU)Arm Mali Graphics Processing Unit (GPU) Unspecified Vulnerability2021-11-03Arm Mali Graphics Processing Unit (GPU) kernel driver contains an unspecified vulnerability that may allow a non-privileged user to gain write access to read-only memory, gain root privilege, corrupt memory, and modify the memory of other processes.
CVE-2020-29557D-LinkDIR-825 R1 DevicesD-Link DIR-825 R1 Devices Buffer Overflow Vulnerability2021-11-03D-Link DIR-825 R1 devices contain a buffer overflow vulnerability in the web interface that may allow for remote code execution.
CVE-2020-3952VMwarevCenter ServerVMware vCenter Server Information Disclosure Vulnerability2021-11-03VMware vCenter Server contains an information disclosure vulnerability in the VMware Directory Service (vmdir) when the Platform Services Controller (PSC) does not correctly implement access controls. Successful exploitation allows an attacker with network access to port 389 to extract sensitive information.
CVE-2019-16256SIMallianceToolbox BrowserSIMalliance Toolbox Browser Command Injection Vulnerability2021-11-03SIMalliance Toolbox Browser contains an command injection vulnerability that could allow remote attackers to retrieve location and IMEI information or execute a range of other attacks by modifying the attack message.
CVE-2020-10148SolarWindsOrionSolarWinds Orion Authentication Bypass Vulnerability2021-11-03SolarWinds Orion API contains an authentication bypass vulnerability that could allow a remote attacker to execute API commands.
CVE-2021-35211SolarWindsServ-USolarWinds Serv-U Remote Code Execution Vulnerability2021-11-03SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution.
CVE-2016-3976SAPNetWeaverSAP NetWeaver Directory Traversal Vulnerability2021-11-03SAP NetWeaver Application Server Java Platforms contains a directory traversal vulnerability via a ..\ (dot dot backslash) in the fileName parameter to CrashFileDownloadServlet. This allows remote attackers to read files.
CVE-2020-6207SAPSolution ManagerSAP Solution Manager Missing Authentication for Critical Function Vulnerability2021-11-03SAP Solution Manager User Experience Monitoring contains a missing authentication for critical function vulnerability which results in complete compromise of all SMDAgents connected to the Solution Manager.
CVE-2016-9563SAPNetWeaverSAP NetWeaver XML External Entity (XXE) Vulnerability2021-11-03SAP NetWeaver Application Server Java Platforms contains an unspecified vulnerability in BC-BMT-BPM-DSK which allows remote, authenticated users to conduct XML External Entity (XXE) attacks.
CVE-2020-6287SAPNetWeaverSAP NetWeaver Missing Authentication for Critical Function Vulnerability2021-11-03SAP NetWeaver Application Server Java Platforms contains a missing authentication for critical function vulnerability allowing unauthenticated access to execute configuration tasks and create administrative users.
CVE-2016-3643SolarWindsVirtualization ManagerSolarWinds Virtualization Manager Privilege Escalation Vulnerability2021-11-03SolarWinds Virtualization Manager allows for privilege escalation through leveraging a misconfiguration of sudo.
CVE-2020-10199SonatypeNexus RepositorySonatype Nexus Repository Remote Code Execution Vulnerability2021-11-03Sonatype Nexus Repository contains an unspecified vulnerability that allows for remote code execution.
CVE-2021-20016SonicWallSSLVPN SMA100SonicWall SSLVPN SMA100 SQL Injection Vulnerability2021-11-03SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by an unauthenticated attacker.
CVE-2020-12271SophosSFOSSophos SFOS SQL Injection Vulnerability2021-11-03Sophos Firewall operating system (SFOS) firmware contains a SQL injection vulnerability when configured with either the administration (HTTPS) service or the User Portal is exposed on the WAN zone. Successful exploitation may cause remote code execution to exfiltrate usernames and hashed passwords for the local device admin(s), portal admins, and user accounts used for remote access (but not external Active Directory or LDAP passwords).
CVE-2020-10181SumavisionEnhanced Multimedia Router (EMR)Sumavision EMR Cross-Site Request Forgery (CSRF) Vulnerability2021-11-03Sumavision Enhanced Multimedia Router (EMR) contains a cross-site request forgery (CSRF) vulnerability allowing the creation of users with elevated privileges as administrator on a device.
CVE-2021-20023SonicWallSonicWall Email SecuritySonicWall Email Security Path Traversal Vulnerability2021-11-03SonicWall Email Security contains a path traversal vulnerability that allows a post-authenticated attacker to read files on the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20022 to achieve privilege escalation.
CVE-2021-20022SonicWallSonicWall Email SecuritySonicWall Email Security Unrestricted Upload of File Vulnerability2021-11-03SonicWall Email Security contains an unrestricted upload of file with dangerous type vulnerability that allows a post-authenticated attacker to upload a file to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20023 to achieve privilege escalation.
CVE-2021-20021SonicWallSonicWall Email SecuritySonicWall Email Security Improper Privilege Management Vulnerability2021-11-03SonicWall Email Security contains an improper privilege management vulnerability that allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20022 and CVE-2021-20023 to achieve privilege escalation.
CVE-2019-7481SonicWallSMA100SonicWall SMA100 SQL Injection Vulnerability2021-11-03SonicWall SMA100 contains a SQL injection vulnerability allowing an unauthenticated user to gain read-only access to unauthorized resources.
CVE-2010-5326SAPNetWeaverSAP NetWeaver Remote Code Execution Vulnerability2021-11-03SAP NetWeaver Application Server Java Platforms Invoker Servlet does not require authentication, allowing for remote code execution via a HTTP or HTTPS request.
CVE-2018-2380SAPCustomer Relationship Management (CRM)SAP Customer Relationship Management (CRM) Path Traversal Vulnerability2021-11-03SAP Customer Relationship Management (CRM) contains a path traversal vulnerability that allows an attacker to exploit insufficient validation of path information provided by users.
CVE-2020-8260IvantiPulse Connect SecureIvanti Pulse Connect Secure Code Execution Vulnerability2021-11-03Pulse Connect Secure contains an unspecified vulnerability that allows an authenticated attacker to perform code execution using uncontrolled gzip extraction.Reference CISA's ED 21-03 (https://www.cisa.gov/emergency-directive-21-03) for further guidance and requirements.
CVE-2021-22899IvantiPulse Connect SecureIvanti Pulse Connect Secure Command Injection Vulnerability2021-11-03Ivanti Pulse Connect Secure contains a command injection vulnerability that allows remote authenticated users to perform remote code execution via Windows File Resource Profiles.Reference CISA's ED 21-03 (https://www.cisa.gov/emergency-directive-21-03) for further guidance and requirements.
CVE-2019-11510IvantiPulse Connect SecureIvanti Pulse Connect Secure Arbitrary File Read Vulnerability2021-11-03Ivanti Pulse Connect Secure contains an arbitrary file read vulnerability that allows an unauthenticated remote attacker with network access via HTTPS to send a specially crafted URI.Reference CISA's ED 21-03 (https://www.cisa.gov/emergency-directive-21-03) for further guidance and requirements.
CVE-2021-22894IvantiPulse Connect SecureIvanti Pulse Connect Secure Collaboration Suite Buffer Overflow Vulnerability2021-11-03Ivanti Pulse Connect Secure Collaboration Suite contains a buffer overflow vulnerabilities that allows a remote authenticated users to execute code as the root user via maliciously crafted meeting room.Reference CISA's ED 21-03 (https://www.cisa.gov/emergency-directive-21-03) for further guidance and requirements.
CVE-2021-22900IvantiPulse Connect SecureIvanti Pulse Connect Secure Unrestricted File Upload Vulnerability2021-11-03Ivanti Pulse Connect Secure contains an unrestricted file upload vulnerability that allows an authenticated administrator to perform a file write via a maliciously crafted archive upload in the administrator web interface.Reference CISA's ED 21-03 (https://www.cisa.gov/emergency-directive-21-03) for further guidance and requirements.
CVE-2021-22893IvantiPulse Connect SecureIvanti Pulse Connect Secure Use-After-Free Vulnerability2021-11-03Ivanti Pulse Connect Secure contains a use-after-free vulnerability that allow a remote, unauthenticated attacker to execute code via license services.Reference CISA's ED 21-03 (https://www.cisa.gov/emergency-directive-21-03) for further guidance and requirements.
CVE-2020-8243IvantiPulse Connect SecureIvanti Pulse Connect Secure Code Execution Vulnerability2021-11-03Ivanti Pulse Connect Secure contains an unspecified vulnerability in the admin web interface that could allow an authenticated attacker to upload a custom template to perform code execution.Reference CISA's ED 21-03 (https://www.cisa.gov/emergency-directive-21-03) for further guidance and requirements.
CVE-2019-11539IvantiPulse Connect Secure and Pulse Policy SecureIvanti Pulse Connect Secure and Policy Secure Command Injection Vulnerability2021-11-03Ivanti Pulse Connect Secure and Policy Secure allows an authenticated attacker from the admin web interface to inject and execute commands.
CVE-2021-1906QualcommMultiple ChipsetsQualcomm Multiple Chipsets Detection of Error Condition Without Action Vulnerability2021-11-03Multiple Qualcomm chipsets contain a detection of error condition without action vulnerability when improper handling of address deregistration on failure can lead to new GPU address allocation failure.
CVE-2020-11652SaltStackSaltSaltStack Salt Path Traversal Vulnerability2021-11-03SaltStack Salt contains a path traversal vulnerability in the salt-master process ClearFuncs which allows directory access to authenticated users. Salt users who follow fundamental internet security guidelines and best practices are not affected by this vulnerability.
CVE-2020-11651SaltStackSaltSaltStack Salt Authentication Bypass Vulnerability2021-11-03SaltStack Salt contains an authentication bypass vulnerability in the salt-master process ClearFuncs due to improperly validating method calls. The vulnerability allows a remote user to access some methods without authentication, which can be used to retrieve user tokens from the salt master and/or run commands on salt minions. Salt users who follow fundamental internet security guidelines and best practices are not affected by this vulnerability.
CVE-2020-16846SaltStackSaltSaltStack Salt Shell Injection Vulnerability2021-11-03SaltStack Salt allows an unauthenticated user with network access to the Salt API to use shell injections to run code on the Salt API using the SSH client. This vulnerability affects any users running the Salt API.
CVE-2017-16651RoundcubeRoundcube WebmailRoundcube Webmail File Disclosure Vulnerability2021-11-03Roundcube Webmail contains a file disclosure vulnerability caused by insufficient input validation in conjunction with file-based attachment plugins, which are used by default.
CVE-2021-35395RealtekAP-Router SDKRealtek AP-Router SDK Buffer Overflow Vulnerability2021-11-03Realtek AP-Router SDK HTTP web server �boa� contains a buffer overflow vulnerability due to unsafe copies of some overly long parameters submitted in the form that lead to denial-of-service (DoS).
CVE-2021-1905QualcommMultiple ChipsetsQualcomm Multiple Chipsets Use-After-Free Vulnerability2021-11-03Multiple Qualcomm Chipsets contain a use after free vulnerability due to improper handling of memory mapping of multiple processes simultaneously.
CVE-2020-10221rConfigrConfigrConfig OS Command Injection Vulnerability2021-11-03rConfig lib/ajaxHandlers/ajaxAddTemplate.php contains an OS command injection vulnerability that allows remote attackers to execute OS commands via shell metacharacters in the fileName POST parameter.
CVE-2017-6327SymantecSymantec Messaging GatewaySymantec Messaging Gateway Remote Code Execution Vulnerability2021-11-03Symantec Messaging Gateway contains an unspecified vulnerability which can allow for remote code execution. With the ability to perform remote code execution, an attacker may also desire to perform privilege escalating actions.
CVE-2019-18988TeamViewerDesktopTeamViewer Desktop Bypass Remote Login Vulnerability2021-11-03TeamViewer Desktop allows for bypass of remote-login access control because the same AES key is used for different customers' installations. If an attacker were to know this key, they could decrypt protected information stored in registry or configuration files or decryption of the Unattended Access password to the system (which allows for remote login to the system).
CVE-2021-27104AccellionFTAAccellion FTA OS Command Injection Vulnerability2021-11-03Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.
CVE-2021-21972VMwarevCenter ServerVMware vCenter Server Remote Code Execution Vulnerability2021-11-03VMware vCenter Server vSphere Client contains a remote code execution vulnerability in a vCenter Server plugin which allows an attacker with network access to port 443 to execute commands with unrestricted privileges on the underlying operating system.
CVE-2021-21985VMwarevCenter ServerVMware vCenter Server Improper Input Validation Vulnerability2021-11-03VMware vSphere Client contains an improper input validation vulnerability in the Virtual SAN Health Check plug-in, which is enabled by default in vCenter Server, which allows for remote code execution.
CVE-2021-22005VMwarevCenter ServerVMware vCenter Server File Upload Vulnerability2021-11-03VMware vCenter Server contains a file upload vulnerability in the Analytics service that allows a user with network access to port 443 to execute code.
CVE-2020-3950VMwareMultiple ProductsVMware Multiple Products Privilege Escalation Vulnerability2021-11-03VMware Fusion, Remote Console (VMRC) for Mac, and Horizon Client for Mac contain a privilege escalation vulnerability due to improper use of setuid binaries that allows attackers to escalate privileges to root.
CVE-2019-5544VMwareVMware ESXi and Horizon DaaSVMware ESXi and Horizon DaaS OpenSLP Heap-Based Buffer Overflow Vulnerability2021-11-03VMware ESXi and Horizon Desktop as a Service (DaaS) OpenSLP contains a heap-based buffer overflow vulnerability that allows an attacker with network access to port 427 to overwrite the heap of the OpenSLP service to perform remote code execution.
CVE-2020-3992VMwareESXiVMware ESXi OpenSLP Use-After-Free Vulnerability2021-11-03VMware ESXi OpenSLP contains a use-after-free vulnerability that allows an attacker residing in the management network with access to port 427 to perform remote code execution.
CVE-2020-4006VMwareMultiple ProductsMultiple VMware Products Command Injection Vulnerability2021-11-03VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector contain a command injection vulnerability. An attacker with network access to the administrative configurator on port 8443 and a valid password for the configurator administrator account can execute commands with unrestricted privileges on the underlying operating system.
CVE-2020-25213WordPressFile Manager PluginWordPress File Manager Plugin Remote Code Execution Vulnerability2021-11-03WordPress File Manager plugin contains a remote code execution vulnerability that allows unauthenticated users to execute PHP code and upload malicious files on a target site.
CVE-2020-10189ZohoManageEngineZoho ManageEngine Desktop Central File Upload Vulnerability2021-11-03Zoho ManageEngine Desktop Central contains a file upload vulnerability that allows for unauthenticated remote code execution.
CVE-2019-8394ZohoManageEngineZoho ManageEngine ServiceDesk Plus (SDP) File Upload Vulnerability2021-11-03Zoho ManageEngine ServiceDesk Plus (SDP) contains an unspecified vulnerability that allows remote users to upload files via login page customization.
CVE-2020-29583ZyxelMultiple ProductsZyxel Multiple Products Use of Hard-Coded Credentials Vulnerability2021-11-03Zyxel firewalls (ATP, USG, VM) and AP Controllers (NXC2500 and NXC5500) contain a use of hard-coded credentials vulnerability in an undocumented account ("zyfwp") with an unchangeable password.
CVE-2021-40539ZohoManageEngineZoho ManageEngine ADSelfService Plus Authentication Bypass Vulnerability2021-11-03Zoho ManageEngine ADSelfService Plus contains an authentication bypass vulnerability affecting the REST API URLs which allow for remote code execution.
CVE-2021-27561YealinkDevice ManagementYealink Device Management Server-Side Request Forgery (SSRF) Vulnerability2021-11-03Yealink Device Management contains a server-side request forgery (SSRF) vulnerability that allows for unauthenticated remote code execution.
CVE-2020-11738WordPressSnap Creek Duplicator PluginWordPress Snap Creek Duplicator Plugin File Download Vulnerability2021-11-03WordPress Snap Creek Duplicator plugin contains a file download vulnerability when an administrator creates a new copy of their site that allows an attacker to download the generated files from their Wordpress dashboard. This vulnerability affects Duplicator and Dulplicator Pro.
CVE-2019-9978WordPressSocial Warfare PluginWordPress Social Warfare Plugin Cross-Site Scripting (XSS) Vulnerability2021-11-03WordPress Social Warfare plugin contains a cross-site scripting (XSS) vulnerability that allows for remote code execution. This vulnerability affects Social Warfare and Social Warfare Pro.
CVE-2020-17496vBulletinvBulletinvBulletin PHP Module Remote Code Execution Vulnerability2021-11-03The PHP module within vBulletin contains an unspecified vulnerability that allows for remote code execution via crafted subWidgets data in an ajax/render/widget_tabbedcontainer_tab_panel request. This CVE ID resolves an incomplete patch for CVE-2019-16759.
CVE-2019-16759vBulletinvBulletinvBulletin PHP Module Remote Code Execution Vulnerability2021-11-03The PHP module within vBulletin contains an unspecified vulnerability that allows for remote code execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.
CVE-2018-20062ThinkPHPnoneCmsThinkPHP "noneCms" Remote Code Execution Vulnerability2021-11-03ThinkPHP "noneCms" contains an unspecified vulnerability that allows for remote code execution through crafted use of the filter parameter.
CVE-2019-9082ThinkPHPThinkPHPThinkPHP Remote Code Execution Vulnerability2021-11-03ThinkPHP contains an unspecified vulnerability that allows for remote code execution via public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]= followed by the command.
CVE-2019-18187Trend MicroOfficeScanTrend Micro OfficeScan Directory Traversal Vulnerability2021-11-03Trend Micro OfficeScan contains a directory traversal vulnerability by extracting files from a zip file to a specific folder on the OfficeScan server, leading to remote code execution.
CVE-2018-14558TendaAC7, AC9, and AC10 RoutersTenda AC7, AC9, and AC10 Routers Command Injection Vulnerability2021-11-03Tenda AC7, AC9, and AC10 devices contain a command injection vulnerability due to the "formsetUsbUnload" function executes a dosystemCmd function with untrusted input. Successful exploitation allows an attacker to execute OS commands via a crafted goform/setUsbUnload request.
CVE-2020-10987TendaAC1900 Router AC15 ModelTenda AC1900 Router AC15 Model Remote Code Execution Vulnerability2021-11-03Tenda AC1900 Router AC15 Model contains an unspecified vulnerability that allows remote attackers to execute system commands via the deviceName POST parameter.
CVE-2017-9248ProgressASP.NET AJAX and SitefinityProgress Telerik UI for ASP.NET AJAX and Sitefinity Cryptographic Weakness Vulnerability2021-11-03Progress Telerik UI for ASP.NET AJAX and Sitefinity have a cryptographic weakness in Telerik.Web.UI.dll that can be exploited to disclose encryption keys (Telerik.Web.UI.DialogParametersEncryptionKey and/or the MachineKey), perform cross-site-scripting (XSS) attacks, compromise the ASP.NET ViewState, and/or upload and download files.
CVE-2021-31755TendaAC11 RouterTenda AC11 Router Stack Buffer Overflow Vulnerability2021-11-03Tenda AC11 devices contain a stack buffer overflow vulnerability in /goform/setmac which allows attackers to execute code via a crafted post request.
CVE-2020-8467Trend MicroApex One and OfficeScanTrend Micro Apex One and OfficeScan Remote Code Execution Vulnerability2021-11-03Trend Micro Apex One and OfficeScan contain an unspecified vulnerability within a migration tool component that allows for remote code execution.
CVE-2020-8468Trend MicroApex One, OfficeScan and Worry-Free Business Security AgentsTrend Micro Multiple Products Content Validation Escape Vulnerability2021-11-03Trend Micro Apex One, OfficeScan, and Worry-Free Business Security agents contain a content validation escape vulnerability that could allow an attacker to manipulate certain agent client components.
CVE-2019-20085TVTNVMS-1000TVT NVMS-1000 Directory Traversal Vulnerability2021-11-03TVT devices utilizing NVMS-1000 software contain a directory traversal vulnerability via GET /.. requests.
CVE-2020-5849UnraidUnraidUnraid Authentication Bypass Vulnerability2021-11-03Unraid contains an authentication bypass vulnerability that allows attackers to gain access to the administrative interface. This CVE is chainable with CVE-2020-5847 for remote code execution.
CVE-2020-5847UnraidUnraidUnraid Remote Code Execution Vulnerability2021-11-03Unraid contains a vulnerability due to the insecure use of the extract PHP function that can be abused to execute remote code as root. This CVE is chainable with CVE-2020-5849 for initial access.
CVE-2021-36741Trend MicroApex One, Apex One as a Service, and Worry-Free Business SecurityTrend Micro Multiple Products Improper Input Validation Vulnerability2021-11-03Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security contain an improper input validation vulnerability that allows a remote attacker to upload files.https://success.trendmicro.com/dcx/s/solution/000287819?language=en_US, https://success.trendmicro.com/dcx/s/solution/000287820?language=en_US
CVE-2021-36742Trend MicroApex One, Apex One as a Service, and Worry-Free Business SecurityTrend Micro Multiple Products Improper Input Validation Vulnerability2021-11-03Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security contain an improper input validation vulnerability that allows for privilege escalation.https://success.trendmicro.com/dcx/s/solution/000287819?language=en_US, https://success.trendmicro.com/dcx/s/solution/000287820?language=en_US
CVE-2020-24557Trend MicroApex One, OfficeScan, and Worry-Free Business SecurityTrend Micro Multiple Products Improper Access Control Vulnerability2021-11-03Trend Micro Apex One, OfficeScan, and Worry-Free Business Security on Microsoft Windows contain an improper access control vulnerability that may allow an attacker to manipulate a particular product folder to disable the security temporarily, abuse a specific Windows function, and attain privilege escalation.
CVE-2020-8599Trend MicroApex One and OfficeScanTrend Micro Apex One and OfficeScan Authentication Bypass Vulnerability2021-11-03Trend Micro Apex One and OfficeScan server contain a vulnerable EXE file that could allow a remote attacker to write data to a path on affected installations and bypass root login.
CVE-2019-18935ProgressTelerik UI for ASP.NET AJAXProgress Telerik UI for ASP.NET AJAX Deserialization of Untrusted Data Vulnerability2021-11-03Progress Telerik UI for ASP.NET AJAX contains a deserialization of untrusted data vulnerability through RadAsyncUpload which leads to code execution on the server in the context of the w3wp.exe process.
CVE-2020-8644PlaySMSPlaySMSPlaySMS Server-Side Template Injection Vulnerability2021-11-03PlaySMS contains a server-side template injection vulnerability that allows for remote code execution.
CVE-2021-36942MicrosoftWindowsMicrosoft Windows Local Security Authority (LSA) Spoofing Vulnerability2021-11-03Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability allowing an unauthenticated attacker to call a method on the LSARPC interface and coerce the domain controller to authenticate against another server using NTLM.
CVE-2019-1215MicrosoftWindowsMicrosoft Windows Privilege Escalation Vulnerability2021-11-03Microsoft Windows contains an unspecified vulnerability due to the way ws2ifsl.sys (Winsock) handles objects in memory, allowing for privilege escalation. Successful exploitation allows an attacker to execute code with elevated privileges.�
CVE-2018-0798MicrosoftOfficeMicrosoft Office Memory Corruption Vulnerability2021-11-03Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful exploitation allows for remote code execution in the context of the current user. This vulnerability is known to be chained with CVE-2018-0802.
CVE-2019-0797MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k contains a privilege escalation vulnerability when the Win32k component fails to properly handle objects in memory. Successful exploitation allows an attacker to execute code in kernel mode.
CVE-2018-8653MicrosoftInternet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03Microsoft Internet Explorer contains a memory corruption vulnerability due to how the Scripting Engine handles objects in memory, leading to remote code execution.
CVE-2021-40444MicrosoftMSHTMLMicrosoft MSHTML Remote Code Execution Vulnerability2021-11-03Microsoft MSHTML contains a unspecified vulnerability that allows for remote code execution.
CVE-2017-8759Microsoft.NET FrameworkMicrosoft .NET Framework Remote Code Execution Vulnerability2021-11-03Microsoft .NET Framework contains a remote code execution vulnerability when processing untrusted input that could allow an attacker to take control of an affected system.
CVE-2018-0802MicrosoftOfficeMicrosoft Office Memory Corruption Vulnerability2021-11-03Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful exploitation allows for remote code execution in the context of the current user. This vulnerability is known to be chained with CVE-2018-0798.
CVE-2012-0158MicrosoftMSCOMCTL.OCXMicrosoft MSCOMCTL.OCX Remote Code Execution Vulnerability2021-11-03Microsoft MSCOMCTL.OCX contains an unspecified vulnerability that allows for remote code execution, allowing an attacker to take complete control of an affected system under the context of the current user.
CVE-2020-0674MicrosoftInternet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03Microsoft Internet Explorer contains a memory corruption vulnerability due to the way the Scripting Engine handles objects in memory. Successful exploitation could allow remote code execution in the context of the current user.
CVE-2021-27059MicrosoftOfficeMicrosoft Office Remote Code Execution Vulnerability2021-11-03Microsoft Office contains an unspecified vulnerability that allows for remote code execution.
CVE-2019-1367MicrosoftInternet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03Microsoft Internet Explorer contains a memory corruption vulnerability in how the scripting engine handles objects in memory. Successful exploitation allows for remote code execution in the context of the current user.
CVE-2017-11882MicrosoftOfficeMicrosoft Office Memory Corruption Vulnerability2021-11-03Microsoft Office contains a memory corruption vulnerability that allows remote code execution in the context of the current user.
CVE-2019-0541MicrosoftMSHTMLMicrosoft MSHTML Remote Code Execution Vulnerability2021-11-03Microsoft MSHTML engine contains an improper input validation vulnerability that allows for remote code execution vulnerability.
CVE-2015-1641MicrosoftOfficeMicrosoft Office Memory Corruption Vulnerability2021-11-03Microsoft Office contains a memory corruption vulnerability due to failure to properly handle rich text format files in memory. Successful exploitation allows for remote code execution in the context of the current user.
CVE-2021-27085MicrosoftInternet ExplorerMicrosoft Internet Explorer Remote Code Execution Vulnerability2021-11-03Microsoft Internet Explorer contains an unspecified vulnerability that allows for remote code execution.
CVE-2019-0859MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k fails to properly handle objects in memory causing privilege escalation. Successful exploitation allows an attacker to run code in kernel mode.
CVE-2021-26411MicrosoftInternet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2021-11-03Microsoft Internet Explorer contains an unspecified vulnerability that allows for memory corruption.
CVE-2017-0143MicrosoftWindowsMicrosoft Windows Server Message Block (SMBv1) Remote Code Execution Vulnerability2021-11-03Microsoft Windows Server Message Block 1.0 (SMBv1) contains an unspecified vulnerability that allows for remote code execution.
CVE-2016-7255MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k kernel-mode driver fails to properly handle objects in memory which allows for privilege escalation. Successful exploitation allows an attacker to run code in kernel mode.
CVE-2019-0708MicrosoftRemote Desktop ServicesMicrosoft Remote Desktop Services Remote Code Execution Vulnerability2021-11-03Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. Successful exploitation allows for remote code execution. The vulnerability is also known under the moniker of BlueKeep.
CVE-2020-0688MicrosoftExchange ServerMicrosoft Exchange Server Validation Key Remote Code Execution Vulnerability2021-11-03Microsoft Exchange Server Validation Key fails to properly create unique keys at install time, allowing for remote code execution.
CVE-2021-38649MicrosoftOpen Management Infrastructure (OMI)Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability2021-11-03Microsoft Open Management Infrastructure (OMI) within Azure VM Management Extensions contains an unspecified vulnerability allowing privilege escalation.
CVE-2017-7269MicrosoftInternet Information Services (IIS)Microsoft Windows Server Buffer Overflow Vulnerability2021-11-03Microsoft Windows Server 2003 R2 contains a buffer overflow vulnerability in Internet Information Services (IIS) 6.0 which allows remote attackers to execute code via a long header beginning with "If:
CVE-2021-36948MicrosoftWindowsMicrosoft Windows Update Medic Service Privilege Escalation Vulnerability2021-11-03Microsoft Windows Update Medic Service contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-34473MicrosoftExchange ServerMicrosoft Exchange Server Remote Code Execution Vulnerability2021-11-03Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution.
CVE-2020-1464MicrosoftWindowsMicrosoft Windows Spoofing Vulnerability2021-11-03Microsoft Windows contains a spoofing vulnerability when Windows incorrectly validates file signatures, allowing an attacker to bypass security features and load improperly signed files.
CVE-2020-1040MicrosoftHyper-V RemoteFXMicrosoft Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability2021-11-03Microsoft Hyper-V RemoteFX vGPU contains an improper input validation vulnerability due to the host server failing to properly validate input from an authenticated user on a guest operating system. Successful exploitation allows for remote code execution on the host operating system.
CVE-2021-28310MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Windows Win32k contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-1350MicrosoftWindowsMicrosoft Windows DNS Server Remote Code Execution Vulnerability2021-11-03Microsoft Windows DNS Servers fail to properly handle requests, allowing an attacker to perform remote code execution in the context of the Local System Account. The vulnerability is also known under the moniker of SIGRed.Reference CISA's ED 20-03 (https://www.cisa.gov/emergency-directive-20-03) for further guidance and requirements.
CVE-2019-0803MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k contains an unspecified vulnerability due to it failing to properly handle objects in memory causing privilege escalation. Successful exploitation allows an attacker to run code in kernel mode.
CVE-2021-31207MicrosoftExchange ServerMicrosoft Exchange Server Security Feature Bypass Vulnerability2021-11-03Microsoft Exchange Server contains an unspecified vulnerability that allows for security feature bypass.
CVE-2021-1732MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-34527MicrosoftWindowsMicrosoft Windows Print Spooler Remote Code Execution Vulnerability2021-11-03Microsoft Windows Print Spooler contains an unspecified vulnerability due to the Windows Print Spooler service improperly performing privileged file operations. Successful exploitation allows an attacker to perform remote code execution with SYSTEM privileges. The vulnerability is also known under the moniker of PrintNightmare.Reference CISA's ED 21-04 (https://www.cisa.gov/emergency-directive-21-04) for further guidance and requirements.
CVE-2017-0199MicrosoftOffice and WordPadMicrosoft Office and WordPad Remote Code Execution Vulnerability2021-11-03Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially crafted files. Successful exploitation allows for remote code execution.
CVE-2020-1380MicrosoftInternet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03Microsoft Internet Explorer contains a memory corruption vulnerability which can allow for remote code execution in the context of the current user.
CVE-2020-6820MozillaFirefox and ThunderbirdMozilla Firefox And Thunderbird Use-After-Free Vulnerability2021-11-03Mozilla Firefox and Thunderbird contain a race condition vulnerability when handling a ReadableStream under certain conditions. The race condition creates a use-after-free vulnerability, causing unspecified impacts.
CVE-2019-17026MozillaFirefox and ThunderbirdMozilla Firefox And Thunderbird Type Confusion Vulnerability2021-11-03Mozilla Firefox and Thunderbird contain a type confusion vulnerability due to incorrect alias information in the IonMonkey JIT compiler when setting array elements.
CVE-2019-15949NagiosNagios XINagios XI Remote Code Execution Vulnerability2021-11-03Nagios XI contains a remote code execution vulnerability in which a user can modify the check_plugin executable and insert malicious commands to execute as root.
CVE-2020-6819MozillaFirefox and ThunderbirdMozilla Firefox And Thunderbird Use-After-Free Vulnerability2021-11-03Mozilla Firefox and Thunderbird contain a race condition vulnerability when running the nsDocShell destructor under certain conditions. The race condition creates a use-after-free vulnerability, causing unspecified impacts.
CVE-2021-38648MicrosoftOpen Management Infrastructure (OMI)Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerability2021-11-03Microsoft Open Management Infrastructure (OMI) within Azure VM Management Extensions contains an unspecified vulnerability allowing privilege escalation.
CVE-2019-0863MicrosoftWindowsMicrosoft Windows Error Reporting (WER) Privilege Escalation Vulnerability2021-11-03Microsoft Windows Error Reporting (WER) contains a privilege escalation vulnerability due to the way it handles files, allowing for code execution in kernel mode.
CVE-2021-36955MicrosoftWindowsMicrosoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability2021-11-03Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-26919NETGEARJGS516PE DevicesNetgear JGS516PE Devices Missing Function Level Access Control Vulnerability2021-11-03Netgear JGS516PE devices contain a missing function level access control vulnerability.
CVE-2019-19356NetisWF2419 DevicesNetis WF2419 Devices Remote Code Execution Vulnerability2021-11-03Netis WF2419 devices contains an unspecified vulnerability that allows an attacker to perform remote code execution as root through the router's web management page.
CVE-2020-14750OracleWebLogic ServerOracle WebLogic Server Remote Code Execution Vulnerability2021-11-03Oracle WebLogic Server contains an unspecified vulnerability allowing an unauthenticated attacker to perform remote code execution. This vulnerability is related to CVE-2020-14882.
CVE-2020-14882OracleWebLogic ServerOracle WebLogic Server Remote Code Execution Vulnerability2021-11-03Oracle WebLogic Server contains an unspecified vulnerability, which is assessed to allow for remote code execution, based on this vulnerability being related to CVE-2020-14750.
CVE-2020-14883OracleWebLogic ServerOracle WebLogic Server Unspecified Vulnerability2021-11-03Oracle WebLogic Server contains an unspecified vulnerability in the Console component with high impacts to confidentilaity, integrity, and availability.
CVE-2015-4852OracleWebLogic ServerOracle WebLogic Server Deserialization of Untrusted Data Vulnerability2021-11-03Oracle WebLogic Server contains a deserialization of untrusted data vulnerability within Apache Commons, which can allow for for remote code execution.
CVE-2020-14871OracleSolaris and Zettabyte File System (ZFS)Oracle Solaris and Zettabyte File System (ZFS) Unspecified Vulnerability2021-11-03Oracle Solaris and Oracle ZFS Storage Appliance Kit contain an unspecified vulnerability causing high impacts to confidentiality, integrity, and availability of affected systems.
CVE-2020-2555OracleMultiple ProductsOracle Multiple Products Remote Code Execution Vulnerability2021-11-03Multiple Oracle products contain a remote code execution vulnerability that allows an unauthenticated attacker with network access via T3 or HTTP to takeover the affected system. Impacted Oracle products: Oracle Coherence in Fusion Middleware, Oracle Utilities Framework, Oracle Retail Assortment Planning, Oracle Commerce, Oracle Communications Diameter Signaling Router (DSR).
CVE-2012-3152OracleFusion MiddlewareOracle Fusion Middleware Unspecified Vulnerability2021-11-03Oracle Fusion Middleware Reports Developer contains an unspecified vulnerability that allows remote attackers to affect confidentiality and integrity of affected systems.
CVE-2016-3235MicrosoftOfficeMicrosoft Office OLE DLL Side Loading Vulnerability2021-11-03Microsoft Office Object Linking & Embedding (OLE) dynamic link library (DLL) contains a side loading vulnerability due to it improperly validating input before loading libraries. Successful exploitation allows for remote code execution.
CVE-2019-1214MicrosoftWindowsMicrosoft Windows Privilege Common Log File System (CLFS) Escalation Vulnerability2021-11-03Microsoft Windows Common Log File System (CLFS) driver improperly handles objects in memory which can allow for privilege escalation.
CVE-2021-26855MicrosoftExchange ServerMicrosoft Exchange Server Remote Code Execution Vulnerability2021-11-03Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain.Reference CISA's ED 21-02 (https://www.cisa.gov/emergency-directive-21-02) for further guidance and requirements.
CVE-2021-26858MicrosoftExchange ServerMicrosoft Exchange Server Remote Code Execution Vulnerability2021-11-03Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain.Reference CISA's ED 21-02 (https://www.cisa.gov/emergency-directive-21-02) for further guidance and requirements.
CVE-2021-27065MicrosoftExchange ServerMicrosoft Exchange Server Remote Code Execution Vulnerability2021-11-03Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain.Reference CISA's ED 21-02 (https://www.cisa.gov/emergency-directive-21-02) for further guidance and requirements.
CVE-2020-1472MicrosoftNetlogonMicrosoft Netlogon Privilege Escalation Vulnerability2021-11-03Microsoft's Netlogon Remote Protocol (MS-NRPC) contains a privilege escalation vulnerability when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller. An attacker who successfully exploits the vulnerability could run a specially crafted application on a device on the network. The vulnerability is also known under the moniker of Zerologon.Reference CISA's ED 20-03 (https://www.cisa.gov/emergency-directive-20-03) for further guidance and requirements.
CVE-2020-0968MicrosoftInternet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03Microsoft Internet Explorer contains a memory corruption vulnerability due to how the Scripting Engine handles objects in memory, leading to remote code execution.
CVE-2019-1429MicrosoftInternet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03Microsoft Internet Explorer contains a memory corruption vulnerability which can allow for remote code execution in the context of the current user.
CVE-2017-11774MicrosoftOfficeMicrosoft Office Outlook Security Feature Bypass Vulnerability2021-11-03Microsoft Office Outlook contains a security feature bypass vulnerability due to improperly handling objects in memory. Successful exploitation allows an attacker to execute commands.
CVE-2020-1054MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k contains a privilege escalation vulnerability when the Windows kernel-mode driver fails to properly handle objects in memory. Successful exploitation allows an attacker to execute code in kernel mode.
CVE-2021-1675MicrosoftWindowsMicrosoft Windows Print Spooler Remote Code Execution Vulnerability2021-11-03Microsoft Windows Print Spooler contains an unspecified vulnerability that allows for remote code execution.
CVE-2019-0808MicrosoftWin32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03Microsoft Win32k contains a privilege escalation vulnerability due to the component failing to properly handle objects in memory. Successful exploitation allows an attacker to run code in kernel mode.
CVE-2021-26857MicrosoftExchange ServerMicrosoft Exchange Server Remote Code Execution Vulnerability2021-11-03Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain.Reference CISA's ED 21-02 (https://www.cisa.gov/emergency-directive-21-02) for further guidance and requirements.
CVE-2020-1147Microsoft.NET Framework, SharePoint, Visual StudioMicrosoft .NET Framework, SharePoint, and Visual Studio Remote Code Execution Vulnerability2021-11-03Microsoft .NET Framework, Microsoft SharePoint, and Visual Studio contain a remote code execution vulnerability when the software fails to check the source markup of XML file input. Successful exploitation allows an attacker to execute code in the context of the process responsible for deserialization of the XML content.
CVE-2020-0646Microsoft.NET FrameworkMicrosoft .NET Framework Remote Code Execution Vulnerability2021-11-03Microsoft .NET Framework contains an improper input validation vulnerability that allows for remote code execution.
CVE-2019-0604MicrosoftSharePointMicrosoft SharePoint Remote Code Execution Vulnerability2021-11-03Microsoft SharePoint fails to check the source markup of an application package. An attacker who successfully exploits the vulnerability could run remote code in the context of the SharePoint application pool and the SharePoint server farm account.
CVE-2021-34448MicrosoftWindowsMicrosoft Windows Scripting Engine Memory Corruption Vulnerability2021-11-03Microsoft Windows Scripting Engine contains an unspecified vulnerability that allows for memory corruption.
CVE-2020-0601MicrosoftWindowsMicrosoft Windows CryptoAPI Spoofing Vulnerability2021-11-03Microsoft Windows CryptoAPI (Crypt32.dll) contains a spoofing vulnerability in the way it validates Elliptic Curve Cryptography (ECC) certificates. An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source. A successful exploit could also allow the attacker to conduct man-in-the-middle attacks and decrypt confidential information on user connections to the affected software. The vulnerability is also known under the moniker of CurveBall.Reference CISA's ED 20-02 (https://www.cisa.gov/emergency-directive-20-02) for further guidance and requirements.
CVE-2021-34523MicrosoftExchange ServerMicrosoft Exchange Server Privilege Escalation Vulnerability2021-11-03Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation.
ArcticStrike | Leading Security Operations to Stop Breaches and Drive Business Success