Skip to main content
CVE-2019-9120 CRITICAL POC Act Now

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection M2 Firmware C1 Firmware
NVD GitHub
CVSS 3.0
9.8
EPSS
6.2%
CVE-2019-9119 CRITICAL POC Act Now

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection M2 Firmware C1 Firmware
NVD GitHub
CVSS 3.0
9.8
EPSS
6.2%
CVE-2019-9118 CRITICAL POC Act Now

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection M2 Firmware C1 Firmware
NVD GitHub
CVSS 3.0
9.8
EPSS
6.2%
CVE-2019-9117 CRITICAL POC Act Now

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection M2 Firmware C1 Firmware
NVD GitHub
CVSS 3.0
9.8
EPSS
6.2%
CVE-2019-0192 CRITICAL POC PATCH THREAT Act Now

In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Apache Deserialization Solr Storage Automation Store
NVD
CVSS 3.0
9.8
EPSS
77.5%
CVE-2019-5019 CRITICAL POC Act Now

A heap-based overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Converter V7.0 Pro R1 (7,0,2018,1113). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Heap Overflow Microsoft RCE Office Server Document Converter
NVD
CVSS 3.1
9.8
EPSS
2.3%
CVE-2019-9626 CRITICAL POC Act Now

PHPSHE 1.7 allows module/index/cart.php pintuan_id SQL Injection to index.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Phpshe
NVD
CVSS 3.0
9.8
EPSS
1.4%
CVE-2019-9623 CRITICAL POC Act Now

Feng Office 3.7.0.5 allows remote attackers to execute arbitrary code via "<!--#exec cmd=" in a .shtml file to ck_upload_handler.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Microsoft RCE Feng Office
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
8.1%
CVE-2019-9121 CRITICAL Act Now

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection M2 Firmware C1 Firmware
NVD GitHub
CVSS 3.0
9.8
EPSS
4.1%
CVE-2019-3777 CRITICAL Act Now

Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Application Service
NVD
CVSS 3.0
9.8
EPSS
1.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy