Skip to main content
CVE-2016-8735 CRITICAL POC KEV PATCH THREAT Act Now

Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

Apache Oracle Tomcat RCE
NVD
CVSS 3.1
9.8
EPSS
93.8%
Threat
7.8
CVE-2017-6884 HIGH POC KEV THREAT Act Now

A command injection vulnerability was discovered on the Zyxel EMG2926 home router with firmware V1.00(AAQT.4)b8. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

Command Injection Zyxel
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
92.0%
Threat
7.5
CVE-2017-7237 CRITICAL POC THREAT Emergency

The Spiceworks TFTP Server, as distributed with Spiceworks Inventory 7.5, allows remote attackers to access the Spiceworks data\configurations directory by leveraging the unauthenticated nature of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 13.2%.

Information Disclosure Spiceworks
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
13.2%
CVE-2017-7575 CRITICAL POC Act Now

Schneider Electric Modicon TM221CE16R 1.3.3.3 devices allow remote attackers to discover the application-protection password via a \x00\x01\x00\x00\x00\x05\x01\x5a\x00\x03\x00 request to the Modbus. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Schneider Electric Information Disclosure
NVD VulDB
CVSS 3.1
9.8
EPSS
1.3%
CVE-2017-7571 HIGH POC This Week

public/rolechangeadmin in Faveo 1.9.3 allows CSRF. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Faveo Helpdesk
NVD GitHub Exploit-DB
CVSS 3.1
8.0
EPSS
0.3%
CVE-2016-10320 HIGH POC This Week

textract before 1.5.0 allows OS Command Injection attacks via a filename in a call to the process function. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Textract
NVD
CVSS 3.0
7.8
EPSS
0.8%
CVE-2017-7566 HIGH POC PATCH This Week

MyBB before 1.8.11 allows remote attackers to bypass an SSRF protection mechanism. Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SSRF Mybb
NVD GitHub
CVSS 3.0
7.7
EPSS
0.6%
CVE-2016-6809 CRITICAL PATCH Act Now

Apache Tika before 1.14 allows Java code execution for serialized objects embedded in MATLAB files. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Deserialization of Untrusted Data vulnerability could allow attackers to execute arbitrary code through malicious serialized objects.

Deserialization Java Apache RCE Nutch +1
NVD
CVSS 3.1
9.8
EPSS
7.0%
CVE-2017-3834 CRITICAL Act Now

A vulnerability in Cisco Aironet 1830 Series and Cisco Aironet 1850 Series Access Points running Cisco Mobility Express Software could allow an unauthenticated, remote attacker to take complete. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Aironet Access Point Firmware
NVD
CVSS 3.1
9.8
EPSS
6.2%
CVE-2017-0305 CRITICAL Act Now

F5 SSL Intercept iApp version 1.5.0 - 1.5.7 is vulnerable to an unauthenticated, remote attack that may allow modification of the BIG-IP system configuration, extraction of sensitive system files,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ssl Intercept Iapp
NVD
CVSS 3.0
9.8
EPSS
2.9%
CVE-2015-8965 CRITICAL PATCH Act Now

Rogue Wave JViews before 8.8 patch 21 and 8.9 before patch 1 allows remote attackers to execute arbitrary Java code that exists in the classpath, such as test code or administration code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Java Privilege Escalation Jviews Data Integrator
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2017-7576 CRITICAL Act Now

DragonWave Horizon 1.01.03 wireless radios have hardcoded login credentials (such as the username of energetic and password of wireless) meant to allow the vendor to access the devices. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Horizon Wireless Radio Firmware
NVD
CVSS 3.1
9.8
EPSS
0.3%
CVE-2017-7574 CRITICAL Act Now

Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Schneider Electric
NVD VulDB
CVSS 3.1
9.8
EPSS
0.3%
CVE-2017-7565 HIGH This Week

Splunk Hadoop Connect App has a path traversal vulnerability that allows remote authenticated users to execute arbitrary code, aka ERP-2041. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Splunk RCE Hadoop Connect
NVD
CVSS 3.0
8.8
EPSS
2.6%
CVE-2017-6968 HIGH This Week

GMV Checker ATM Security prior to 5.0.18 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka PT-2017-03. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Checker Atm Security
NVD
CVSS 3.0
8.8
EPSS
0.7%
CVE-2017-4964 HIGH PATCH This Week

Cloud Foundry Foundation BOSH Azure CPI v22 could potentially allow a maliciously crafted stemcell to execute arbitrary code on VMs created by the director, aka a "CPI code injection vulnerability.". Rated high severity (CVSS 8.8), this vulnerability is low attack complexity.

RCE Microsoft Code Injection Bosh Azure Cpi
NVD
CVSS 3.1
8.8
EPSS
0.2%
CVE-2017-7569 HIGH This Week

In vBulletin before 5.3.0, remote attackers can bypass the CVE-2016-6483 patch and conduct SSRF attacks by leveraging the behavior of the PHP parse_url function, aka VBV-17037. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF PHP Vbulletin
NVD
CVSS 3.0
8.6
EPSS
0.4%
CVE-2017-7572 HIGH This Week

The _checkPolkitPrivilege function in serviceHelper.py in Back In Time (aka backintime) 1.1.18 and earlier uses a deprecated polkit authorization method (unix-process) that is subject to a race. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Race Condition Information Disclosure Backintime
NVD GitHub
CVSS 3.0
8.1
EPSS
0.6%
CVE-2017-3832 HIGH This Week

A vulnerability in the web management interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco Privilege Escalation Wireless Lan Controller Firmware
NVD
CVSS 3.1
7.5
EPSS
1.6%
CVE-2017-2675 HIGH This Week

Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Little Snitch
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-9219 HIGH This Week

A vulnerability with IPv6 UDP ingress packet processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Information Disclosure Wireless Lan Controller Firmware Wireless Lan Controller Software
NVD
CVSS 3.0
7.5
EPSS
0.4%
CVE-2017-7192 HIGH PATCH This Week

WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because of incorrect management of the certValidated variable (it can be set to true but cannot be set to false). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Starscream
NVD GitHub
CVSS 3.0
7.5
EPSS
0.2%
CVE-2017-5887 HIGH PATCH This Week

WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because pinning occurs in the stream function (this is too late; pinning should occur in the initStreamsWithData function). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Starscream
NVD GitHub
CVSS 3.0
7.5
EPSS
0.2%
CVE-2017-6130 HIGH This Week

F5 SSL Intercept iApp 1.5.0 - 1.5.7 and SSL Orchestrator 2.0 is vulnerable to a Server-Side Request Forgery (SSRF) attack when deployed using the Dynamic Domain Bypass (DDB) feature feature plus SNAT. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Ssl Intercept Iapp Ssl Orchestrator
NVD
CVSS 3.0
7.4
EPSS
0.3%
CVE-2016-9194 MEDIUM This Month

A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco Wireless Lan Controller Wireless Lan Controller 6 0 Wireless Lan Controller 7 0 +3
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-1000307 MEDIUM This Month

Multiple Cross Site Scripting (XSS) Vulnerabilities in ClipBucket v2.8.1 and probably prior allow Remote Attackers to inject arbitrary web script or HTML via (1) profile_desc, about_me, schools,. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Clipbucket
NVD GitHub
CVSS 3.0
6.1
EPSS
0.2%
CVE-2016-10319 MEDIUM PATCH This Month

In ARM Trusted Firmware 1.2 and 1.3, a malformed firmware update SMC can result in copying unexpectedly large data into secure memory because of integer overflows. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Integer Overflow Buffer Overflow Arm Trusted Firmware
NVD GitHub
CVSS 3.0
5.9
EPSS
0.4%
CVE-2017-7454 MEDIUM PATCH This Month

The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Denial Of Service Information Disclosure Imageworsener
NVD GitHub
CVSS 3.0
5.5
EPSS
0.3%
CVE-2017-7453 MEDIUM PATCH This Month

The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service Imageworsener
NVD GitHub
CVSS 3.0
5.5
EPSS
0.3%
CVE-2017-7452 MEDIUM PATCH This Month

The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service Imageworsener
NVD GitHub
CVSS 3.0
5.5
EPSS
0.3%
CVE-2016-5349 MEDIUM PATCH This Month

The high level operating systems (HLOS) was not providing sufficient memory address information to ensure that secure applications inside Qualcomm Secure Execution Environment (QSEE) only write to. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Linux Google Qualcomm Information Disclosure Privilege Escalation +1
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2015-4673 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in ClipBucket 2.7.0.5 allow remote authenticated users to inject arbitrary web script or HTML via (1) the collection_description parameter to. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS PHP Clipbucket
NVD
CVSS 3.0
5.4
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy