Skip to main content
CVE-2014-4936 CRITICAL POC THREAT Emergency

The upgrade functionality in Malwarebytes Anti-Malware (MBAM) consumer before 2.0.3 and Malwarebytes Anti-Exploit (MBAE) consumer 1.04.1.1012 and earlier allow man-in-the-middle attackers to execute. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 18.9%.

RCE Malwarebytes Anti Exploit Malwarebytes Anti Malware
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
18.9%
CVE-2014-9357 CRITICAL PATCH Act Now

Docker 1.3.2 allows remote attackers to execute arbitrary code with root privileges via a crafted (1) image or (2) build in a Dockerfile in an LZMA (.xz) archive, related to the chroot for archive. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 36.2%.

Docker RCE Privilege Escalation
NVD
CVSS 2.0
10.0
EPSS
36.2%
CVE-2014-8118 CRITICAL Act Now

Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which triggers a stack-based buffer. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 11.8% and no vendor patch available.

RCE Buffer Overflow Rpm
NVD
CVSS 2.0
10.0
EPSS
11.8%
CVE-2014-9371 CRITICAL Act Now

The NativeAppServlet in ManageEngine Desktop Central MSP before 90075 allows remote attackers to execute arbitrary code via a crafted JSON object. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 10.2% and no vendor patch available.

Zoho RCE Manageengine Desktop Central
NVD
CVSS 2.0
10.0
EPSS
10.2%
CVE-2014-9373 CRITICAL Act Now

Directory traversal vulnerability in the CollectorConfInfoServlet servlet in ManageEngine NetFlow Analyzer allows remote attackers to execute arbitrary code via a .. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal RCE Zoho Netflow Analyzer
NVD
CVSS 2.0
10.0
EPSS
6.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy