Multiple NETGEAR products command execution |
NAME__________Multiple NETGEAR products command executionPlatforms Affected:NETGEAR RAX45 NETGEAR RAX43 NETGEAR RAX40v2 NETGEAR RAX35v2 NETGEAR RAX42 NETGEAR RAX38v2 NETGEAR RAXE500 NETGEAR...
Gain Access
Trellix Enterprise Security Manager command execution | CVE-2023-3313
NAME__________Trellix Enterprise Security Manager command executionPlatforms Affected:Trellix Enterprise Security Manager 11.6.3 Trellix Enterprise Security Manager 11.6.2Risk Level:7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Trellix Enterprise...
IssabelPBX cross-site request forgery | CVE-2023-34839
NAME__________IssabelPBX cross-site request forgeryPlatforms Affected:Issabel IssabelPBX 4.0.0-6Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IssabelPBX is vulnerable to cross-site request forgery, caused by improper validation...
CloudExplorer-Lite brute force | CVE-2023-34240
NAME__________CloudExplorer-Lite brute forcePlatforms Affected:CloudExplorer-Lite Team of @fit2cloud CloudExplorer-Lite 1.1.0Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CloudExplorer-Lite is vulnerable to a brute force attack, caused...
MobiSystems Office Suite Premium directory traversal |
NAME__________MobiSystems Office Suite Premium directory traversalPlatforms Affected:MobiSystems Office Suite Premium 10.9.1.42602Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________MobiSystems Office Suite Premium could allow a...
Aterm WG2200HP command execution | CVE-2023-3333
NAME__________Aterm WG2200HP command executionPlatforms Affected:Aterm WG2200HPRisk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Aterm WG2200HP could allow a remote authenticated attacker to execute arbitrary commands...
WAVLINK WL-WN531AX2 file upload | CVE-2023-32621
NAME__________WAVLINK WL-WN531AX2 file uploadPlatforms Affected:WAVLINK WL-WN531AX2Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WAVLINK WL-WN531AX2 could allow a remote authenticated attacker to upload arbitrary files,...
AdvisoryID: 61867 | CVE-2023-27866
NAME__________AdvisoryID: 61867Platforms Affected:IBM Informix JDBC 4.10 IBM Informix JDBC 4.50Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IBM Informix JDBC Driver is susceptible to remote...
AWS data.all code execution | CVE-2023-36467
NAME__________AWS data.all code executionPlatforms Affected:AWS data.all 1.2.0 AWS data.all 1.5.1Risk Level:7.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AWS data.all could allow a remote authenticated attacker...
Form Builder Plugin for WordPress cross-site scripting | CVE-2023-23795
NAME__________Form Builder Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Form Builder Plugin for WordPress 1.9.9.0Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Form Builder Plugin for...
BigBlueButton server-side request forgery | CVE-2023-33176
NAME__________BigBlueButton server-side request forgeryPlatforms Affected:BigBlueButton BigBlueButton 2.2.4 BigBlueButton BigBlueButton 2.2.3 BigBlueButton BigBlueButton 2.2.2 BigBlueButton BigBlueButton 2.2.1 BigBlueButton BigBlueButton 2.2.0 BigBlueButton...
WAVLINK WL-WN531AX2 security bypass | CVE-2023-32621
NAME__________WAVLINK WL-WN531AX2 security bypassPlatforms Affected:WAVLINK WL-WN531AX2Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WAVLINK WL-WN531AX2 could allow a remote authenticated attacker to upload arbitrary files,...
WAVLINK WL-WN531AX2 command execution | CVE-2023-32622
NAME__________WAVLINK WL-WN531AX2 command executionPlatforms Affected:WAVLINK WL-WN531AX2Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WAVLINK WL-WN531AX2 could allow a remote authenticated attacker to execute arbitrary commands...
Silicon Labs Z/IP Gateway buffer overflow | CVE-2023-0970
NAME__________Silicon Labs Z/IP Gateway buffer overflowPlatforms Affected:Silicon Labs Z/IP Gateway 7.18.01Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Silicon Labs Z/IP Gateway is vulnerable to...
GLPI Agent command execution | CVE-2023-34254
NAME__________GLPI Agent command executionPlatforms Affected:GLPI glpi-agent 1.4Risk Level:7.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GLPI Agent could allow a remote authenticated attacker to execute arbitrary...
UpdraftPlus Plugin for WordPress cross-site request forgery | CVE-2023-32960
NAME__________UpdraftPlus Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress UpdraftPlus plugin for WordPress 1.23.3Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________UpdraftPlus Plugin for WordPress is...
Dell BIOS code execution | CVE-2023-32480
NAME__________Dell BIOS code executionPlatforms Affected:Dell BIOSRisk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell BIOS could allow a physically proximate attacker to execute arbitrary code...
NVIDIA Jetson code execution | CVE-2023-25518
NAME__________NVIDIA Jetson code executionPlatforms Affected:NVIDIA Jetson Xavier NX NVIDIA Jetson AGX Xavier seriesRisk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NVIDIA Jetson could allow a...
JCVI command execution | CVE-2023-35932
NAME__________JCVI command executionPlatforms Affected:JCVI JCVI 1.3.4Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________JCVI could allow a remote authenticated attacker to execute arbitrary commands on...
NVIDIA Jetson code execution | CVE-2023-25515
NAME__________NVIDIA Jetson code executionPlatforms Affected:NVIDIA Jetson Xavier NX NVIDIA Jetson AGX Xavier seriesRisk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NVIDIA Jetson could allow a...
Silicon Labs Z/IP Gateway buffer overflow | CVE-2023-0970
NAME__________Silicon Labs Z/IP Gateway buffer overflowPlatforms Affected:Silicon Labs Z/IP Gateway 7.18.01Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Silicon Labs Z/IP Gateway is vulnerable to...
HCL OSD Bare Metal Server weak security | CVE-2023-28006
NAME__________HCL OSD Bare Metal Server weak securityPlatforms Affected:HCL BigFix OSD Bare Metal Server 311.12Risk Level:7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HCL OSD Bare Metal...
Silicon Labs Z/IP Gateway buffer overflow | CVE-2023-0970
NAME__________Silicon Labs Z/IP Gateway buffer overflowPlatforms Affected:Silicon Labs Z/IP Gateway 7.18.01Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Silicon Labs Z/IP Gateway is vulnerable to...
Moodle server-side request forgery | CVE-2023-35133
NAME__________Moodle server-side request forgeryPlatforms Affected:Moodle Moodle 3.9 Moodle Moodle 3.11 Moodle Moodle 4.0 Moodle Moodle 4.1 Moodle Moodle 3.11.14 Moodle...
