Skip to main content
CVE-2023-25136 MEDIUM POC PATCH THREAT This Month

OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 88.3%.

RCE SSH Openssh Fedora Ontap Select Deploy Administration Utility +3
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
88.3%
Threat
5.4
CVE-2023-0663 CRITICAL POC Act Now

A vulnerability was found in Calendar Event Management System 2.3.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Calendar Event Management System
NVD VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-23088 CRITICAL POC Act Now

Buffer OverFlow Vulnerability in Barenboim json-parser master and v1.1.0 fixed in v1.1.1 allows an attacker to execute arbitrary code via the json_value_parse function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Json Parser
NVD GitHub
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-23087 CRITICAL POC Act Now

An issue was found in MojoJson v1.2.3 allows attackers to execute arbitary code via the destroy function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Null Pointer Dereference Mojojson
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-23086 CRITICAL POC Act Now

Buffer OverFlow Vulnerability in MojoJson v1.2.3 allows an attacker to execute arbitrary code via the SkipString function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Mojojson
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-24157 CRITICAL POC Act Now

A command injection vulnerability in the serverIp parameter in the function updateWifiInfo of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2023-24156 CRITICAL POC Act Now

A command injection vulnerability in the ip parameter in the function recvSlaveUpgstatus of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2023-24155 CRITICAL POC Act Now

TOTOLINK T8 V4.1.5cu was discovered to contain a hard code password for the telnet service which is stored in the component /web_cste/cgi-bin/product.ini. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-24154 CRITICAL POC Act Now

TOTOLINK T8 V4.1.5cu was discovered to contain a command injection vulnerability via the slaveIpList parameter in the function setUpgradeFW. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24153 CRITICAL POC Act Now

A command injection vulnerability in the version parameter in the function recvSlaveCloudCheckStatus of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2023-24152 CRITICAL POC Act Now

A command injection vulnerability in the serverIp parameter in the function meshSlaveUpdate of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2023-24151 CRITICAL POC Act Now

A command injection vulnerability in the ip parameter in the function recvSlaveCloudCheckStatus of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2023-24150 CRITICAL POC Act Now

A command injection vulnerability in the serverIp parameter in the function meshSlaveDlfw of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection T8 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2023-24149 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a hard code password for root which is stored in the component /etc/shadow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-24148 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the FileName parameter in the setUploadUserData function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2023-24146 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the minute parameter in the setRebootScheCfg function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24145 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the plugin_version parameter in the setUnloadUserData function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2023-24144 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the hour parameter in the setRebootScheCfg function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24143 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagTracertHop parameter in the setNetworkDiag function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24142 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagPingSize parameter in the setNetworkDiag function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24141 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagPingTimeOut parameter in the setNetworkDiag function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24140 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagPingNum parameter in the setNetworkDiag function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24139 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the NetDiagHost parameter in the setNetworkDiag function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-24138 CRITICAL POC Act Now

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the host_time parameter in the NTPSyncWithHost function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-25139 CRITICAL POC Act Now

sprintf in the GNU C Library (glibc) 2.37 has a buffer overflow (out-of-bounds write) in some situations with a correct buffer size. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Glibc
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2023-25135 CRITICAL POC THREAT Act Now

vBulletin before 5.6.9 PL1 allows an unauthenticated remote attacker to execute arbitrary code via a crafted HTTP request that triggers deserialization. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Deserialization Vbulletin
NVD
CVSS 3.1
9.8
EPSS
23.9%
CVE-2023-24147 HIGH POC This Week

TOTOLINK CA300-PoE V6.2c.884 was discovered to contain a hard code password for the telnet service which is stored in the component /etc/config/product.ini. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ca300 Poe Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2023-22975 MEDIUM POC This Month

A cross-site scripting (XSS) vulnerability in JFinal CMS v5.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email parameter under. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jfinal Cms
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-24576 CRITICAL PATCH Act Now

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service (nsrexecd) irrespective of any auth used. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Code Injection Emc Networker
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-23477 CRITICAL Act Now

IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a specially crafted sequence of serialized objects. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection IBM Websphere Application Server
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2021-36712 MEDIUM POC This Month

Cross Site Scripting (XSS) vulnerability in yzmcms 6.1 allows attackers to steal user cookies via image clipping function. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Yzmcms
NVD GitHub VulDB
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-23636 MEDIUM POC PATCH This Month

In Jellyfin 10.8.x through 10.8.3, the name of a playlist is vulnerable to stored XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jellyfin
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2023-23635 MEDIUM POC PATCH This Month

In Jellyfin 10.8.x through 10.8.3, the name of a collection is vulnerable to stored XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jellyfin
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2023-23082 MEDIUM POC PATCH This Month

A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Denial Of Service Kodi
NVD GitHub
CVSS 3.1
4.6
EPSS
0.7%
CVE-2023-20854 HIGH PATCH This Week

VMware Workstation contains an arbitrary file deletion vulnerability. Rated high severity (CVSS 8.4), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation VMware Workstation
NVD
CVSS 3.1
8.4
EPSS
0.3%
CVE-2023-22474 HIGH PATCH This Week

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Node.js Authentication Bypass Parse Server
NVD GitHub
CVSS 3.1
8.1
EPSS
0.7%
CVE-2022-45588 HIGH This Week

All versions before R2022-09 of Talend's Remote Engine Gen 2 are potentially vulnerable to XML External Entity (XXE) type of attacks. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

XXE Remote Engine Gen 2
NVD VulDB
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-0124 HIGH This Week

Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to an out-of-bounds write, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow RCE Dopsoft
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-0123 HIGH This Week

Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code when a malformed file is. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Stack Overflow Buffer Overflow RCE Dopsoft
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-22746 HIGH PATCH This Week

CKAN is an open-source DMS (data management system) for powering data hubs and data portals. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Docker Ckan
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2023-23941 HIGH PATCH This Week

SwagPayPal is a PayPal integration for shopware/platform. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Swagpaypal
NVD GitHub
CVSS 3.1
7.5
EPSS
0.3%
CVE-2023-23932 HIGH PATCH This Week

OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (DDS). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Opendds
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2023-23925 HIGH PATCH This Week

Switcher Client is a JavaScript SDK to work with Switcher API which is cloud-based Feature Flag. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Switcher Client
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-0659 HIGH This Week

A vulnerability was found in BDCOM 1704-WGL 2.0.6314. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure 1704 Wgl Firmware
NVD VulDB
CVSS 3.1
7.5
EPSS
0.7%
CVE-2023-0658 HIGH This Week

A vulnerability, which was classified as critical, was found in Multilaser RE057 and RE170 2.1/2.2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Re057 Firmware Re170 Firmware
NVD VulDB
CVSS 3.1
7.5
EPSS
0.7%
CVE-2023-24029 HIGH This Week

In Progress WS_FTP Server before 8.8, it is possible for a host administrator to elevate their privileges via the administrative interface due to insufficient authorization controls applied on user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Ws Ftp Server
NVD
CVSS 3.1
7.2
EPSS
0.9%
CVE-2023-23937 MEDIUM PATCH This Month

Pimcore is an Open Source Data & Experience Management Platform: PIM, MDM, CDP, DAM, DXP/CMS & Digital Commerce. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Unrestricted File Upload vulnerability could allow attackers to upload malicious files that can be executed on the server.

File Upload Pimcore
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-23615 MEDIUM This Month

Discourse is an open source discussion platform. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Discourse
NVD GitHub
CVSS 3.1
5.3
EPSS
0.5%
CVE-2023-23940 MEDIUM PATCH This Month

OpenZeppelin Contracts for Cairo is a library for secure smart contract development written in Cairo for StarkNet, a decentralized ZK Rollup. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable.

Authentication Bypass Contracts
NVD GitHub
CVSS 3.1
5.3
EPSS
0.2%
CVE-2023-24613 MEDIUM This Month

The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Denial Of Service Arrayos Ag
NVD
CVSS 3.1
4.9
EPSS
0.8%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy