| CVE ID | CVE-2025-29824 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability |
| Date Added | 2025-04-08 |
| Short Description | Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally. |
| Patch | Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2025-31161 |
|---|---|
| Vendor Project | CrushFTP |
| Product | CrushFTP |
| Vulnerability Name | CrushFTP Authentication Bypass Vulnerability |
| Date Added | 2025-04-07 |
| Short Description | CrushFTP contains an authentication bypass vulnerability in the HTTP authorization header that allows a remote unauthenticated attacker to authenticate to any known or guessable user account (e.g., crushadmin), potentially leading to a full compromise. |
| Patch | Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2025-24472 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS and FortiProxy |
| Vulnerability Name | Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability |
| Date Added | 2025-03-18 |
| Short Description | Fortinet FortiOS and FortiProxy contain an authentication bypass vulnerability that allows a remote attacker to gain super-admin privileges via crafted CSF proxy requests. |
| Patch | Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2025-26633 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Management Console (MMC) Improper Neutralization Vulnerability |
| Date Added | 2025-03-11 |
| Short Description | Microsoft Windows Management Console (MMC) contains an improper neutralization vulnerability that allows an unauthorized attacker to bypass a security feature locally. |
| Patch | Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2018-8639 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability |
| Date Added | 2025-03-03 |
| Short Description | Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. |
| Patch | Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-55591 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS and FortiProxy |
| Vulnerability Name | Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability |
| Date Added | 2025-01-14 |
| Short Description | Fortinet FortiOS and FortiProxy contain an authentication bypass vulnerability that may allow an unauthenticated, remote attacker to gain super-admin privileges via crafted requests to Node.js websocket module. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-48365 |
|---|---|
| Vendor Project | Qlik |
| Product | Sense |
| Vulnerability Name | Qlik Sense HTTP Tunneling Vulnerability |
| Date Added | 2025-01-13 |
| Short Description | Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-55956 |
|---|---|
| Vendor Project | Cleo |
| Product | Multiple Products |
| Vulnerability Name | Cleo Multiple Products Unauthenticated File Upload Vulnerability |
| Date Added | 2024-12-17 |
| Short Description | Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted file upload vulnerability that could allow an unauthenticated user to import and execute arbitrary bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-50623 |
|---|---|
| Vendor Project | Cleo |
| Product | Multiple Products |
| Vulnerability Name | Cleo Multiple Products Unrestricted File Upload Vulnerability |
| Date Added | 2024-12-13 |
| Short Description | Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted file upload and download vulnerability that can lead to remote code execution with elevated privileges. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-51378 |
|---|---|
| Vendor Project | CyberPersons |
| Product | CyberPanel |
| Vulnerability Name | CyberPanel Incorrect Default Permissions Vulnerability |
| Date Added | 2024-12-04 |
| Short Description | CyberPanel contains an incorrect default permissions vulnerability that allows for authentication bypass and the execution of arbitrary commands using shell metacharacters in the statusfile property. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-11667 |
|---|---|
| Vendor Project | Zyxel |
| Product | Multiple Firewalls |
| Vulnerability Name | Zyxel Multiple Firewalls Path Traversal Vulnerability |
| Date Added | 2024-12-03 |
| Short Description | Multiple Zyxel firewalls contain a path traversal vulnerability in the web management interface that could allow an attacker to download or upload files via a crafted URL. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-28461 |
|---|---|
| Vendor Project | Array Networks |
| Product | AG/vxAG ArrayOS |
| Vulnerability Name | Array Networks AG and vxAG ArrayOS Missing Authentication for Critical Function Vulnerability |
| Date Added | 2024-11-25 |
| Short Description | Array Networks AG and vxAG ArrayOS contain a missing authentication for critical function vulnerability that allows an attacker to read local files and execute code on the SSL VPN gateway. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-38094 |
|---|---|
| Vendor Project | Microsoft |
| Product | SharePoint |
| Vulnerability Name | Microsoft SharePoint Deserialization Vulnerability |
| Date Added | 2024-10-22 |
| Short Description | Microsoft SharePoint contains a deserialization vulnerability that allows for remote code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-40711 |
|---|---|
| Vendor Project | Veeam |
| Product | Backup & Replication |
| Vulnerability Name | Veeam Backup and Replication Deserialization Vulnerability |
| Date Added | 2024-10-17 |
| Short Description | Veeam Backup and Replication contains a deserialization vulnerability allowing an unauthenticated user to perform remote code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-6670 |
|---|---|
| Vendor Project | Progress |
| Product | WhatsUp Gold |
| Vulnerability Name | Progress WhatsUp Gold SQL Injection Vulnerability |
| Date Added | 2024-09-16 |
| Short Description | Progress WhatsUp Gold contains a SQL injection vulnerability that allows an unauthenticated attacker to retrieve the user's encrypted password if the application is configured with only a single user. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2017-1000253 |
|---|---|
| Vendor Project | Linux |
| Product | Kernel |
| Vulnerability Name | Linux Kernel PIE Stack Buffer Corruption Vulnerability |
| Date Added | 2024-09-09 |
| Short Description | Linux kernel contains a position-independent executable (PIE) stack buffer corruption vulnerability in load_elf_ binary() that allows a local attacker to escalate privileges. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-40766 |
|---|---|
| Vendor Project | SonicWall |
| Product | SonicOS |
| Vulnerability Name | SonicWall SonicOS Improper Access Control Vulnerability |
| Date Added | 2024-09-09 |
| Short Description | SonicWall SonicOS contains an improper access control vulnerability that could lead to unauthorized resource access and, under certain conditions, may cause the firewall to crash. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-23897 |
|---|---|
| Vendor Project | Jenkins |
| Product | Jenkins Command Line Interface (CLI) |
| Vulnerability Name | Jenkins Command Line Interface (CLI) Path Traversal Vulnerability |
| Date Added | 2024-08-19 |
| Short Description | Jenkins Command Line Interface (CLI) contains a path traversal vulnerability that allows attackers limited read access to certain files, which can lead to code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-37085 |
|---|---|
| Vendor Project | VMware |
| Product | ESXi |
| Vulnerability Name | VMware ESXi Authentication Bypass Vulnerability |
| Date Added | 2024-07-30 |
| Short Description | VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions can gain full access to an ESXi host that was previously configured to use AD for user management by re-creating the configured AD group ('ESXi Admins' by default) after it was deleted from AD. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-26169 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability |
| Date Added | 2024-06-13 |
| Short Description | Microsoft Windows Error Reporting Service contains an improper privilege management vulnerability that allows a local attacker with user permissions to gain SYSTEM privileges. |
| Patch | Apply updates per vendor instructions or discontinue use of the product if updates are unavailable. |
| CVE ID | CVE-2024-4577 |
|---|---|
| Vendor Project | PHP Group |
| Product | PHP |
| Vulnerability Name | PHP-CGI OS Command Injection Vulnerability |
| Date Added | 2024-06-12 |
| Short Description | PHP, specifically Windows-based PHP used in CGI mode, contains an OS command injection vulnerability that allows for arbitrary code execution. This vulnerability is a patch bypass for CVE-2012-1823. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-24919 |
|---|---|
| Vendor Project | Check Point |
| Product | Quantum Security Gateways |
| Vulnerability Name | Check Point Quantum Security Gateways Information Disclosure Vulnerability |
| Date Added | 2024-05-30 |
| Short Description | Check Point Quantum Security Gateways contain an unspecified information disclosure vulnerability. The vulnerability potentially allows an attacker to access information on Gateways connected to the internet, with IPSec VPN, Remote Access VPN or Mobile Access enabled. This issue affects several product lines from Check Point, including CloudGuard Network, Quantum Scalable Chassis, Quantum Security Gateways, and Quantum Spark Appliances. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-30051 |
|---|---|
| Vendor Project | Microsoft |
| Product | DWM Core Library |
| Vulnerability Name | Microsoft DWM Core Library Privilege Escalation Vulnerability |
| Date Added | 2024-05-14 |
| Short Description | Microsoft DWM Core Library contains a privilege escalation vulnerability that allows an attacker to gain SYSTEM privileges. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-3400 |
|---|---|
| Vendor Project | Palo Alto Networks |
| Product | PAN-OS |
| Vulnerability Name | Palo Alto Networks PAN-OS Command Injection Vulnerability |
| Date Added | 2024-04-12 |
| Short Description | Palo Alto Networks PAN-OS GlobalProtect feature contains a command injection vulnerability that allows an unauthenticated attacker to execute commands with root privileges on the firewall. |
| Patch | Apply mitigations per vendor instructions as they become available. Otherwise, users with vulnerable versions of affected devices should enable Threat Prevention IDs available from the vendor. See the vendor bulletin for more details and a patch release schedule. |
| CVE ID | CVE-2023-24955 |
|---|---|
| Vendor Project | Microsoft |
| Product | SharePoint Server |
| Vulnerability Name | Microsoft SharePoint Server Code Injection Vulnerability |
| Date Added | 2024-03-26 |
| Short Description | Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-48788 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiClient EMS |
| Vulnerability Name | Fortinet FortiClient EMS SQL Injection Vulnerability |
| Date Added | 2024-03-25 |
| Short Description | Fortinet FortiClient EMS contains a SQL injection vulnerability that allows an unauthenticated attacker to execute commands as SYSTEM via specifically crafted requests. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-27198 |
|---|---|
| Vendor Project | JetBrains |
| Product | TeamCity |
| Vulnerability Name | JetBrains TeamCity Authentication Bypass Vulnerability |
| Date Added | 2024-03-07 |
| Short Description | JetBrains TeamCity contains an authentication bypass vulnerability that allows an attacker to perform admin actions. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-21338 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability |
| Date Added | 2024-03-04 |
| Short Description | Microsoft Windows Kernel contains an exposed IOCTL with insufficient access control vulnerability within the IOCTL (input and output control) dispatcher in appid.sys that allows a local attacker to achieve privilege escalation. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2024-1709 |
|---|---|
| Vendor Project | ConnectWise |
| Product | ScreenConnect |
| Vulnerability Name | ConnectWise ScreenConnect Authentication Bypass Vulnerability |
| Date Added | 2024-02-22 |
| Short Description | ConnectWise ScreenConnect contains an authentication bypass vulnerability that allows an attacker with network access to the management interface to create a new, administrator-level account on affected devices. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2020-3259 |
|---|---|
| Vendor Project | Cisco |
| Product | Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) |
| Vulnerability Name | Cisco ASA and FTD Information Disclosure Vulnerability |
| Date Added | 2024-02-15 |
| Short Description | Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an information disclosure vulnerability. An attacker could retrieve memory contents on an affected device, which could lead to the disclosure of confidential information due to a buffer tracking issue when the software parses invalid URLs that are requested from the web services interface. This vulnerability affects only specific AnyConnect and WebVPN configurations. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-22527 |
|---|---|
| Vendor Project | Atlassian |
| Product | Confluence Data Center and Server |
| Vulnerability Name | Atlassian Confluence Data Center and Server Template Injection Vulnerability |
| Date Added | 2024-01-24 |
| Short Description | Atlassian Confluence Data Center and Server contain an unauthenticated OGNL template injection vulnerability that can lead to remote code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-35082 |
|---|---|
| Vendor Project | Ivanti |
| Product | Endpoint Manager Mobile (EPMM) and MobileIron Core |
| Vulnerability Name | Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypass Vulnerability |
| Date Added | 2024-01-18 |
| Short Description | Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core contain an authentication bypass vulnerability that allows unauthorized users to access restricted functionality or resources of the application. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-29357 |
|---|---|
| Vendor Project | Microsoft |
| Product | SharePoint Server |
| Vulnerability Name | Microsoft SharePoint Server Privilege Escalation Vulnerability |
| Date Added | 2024-01-10 |
| Short Description | Microsoft SharePoint Server contains an unspecified vulnerability that allows an unauthenticated attacker, who has gained access to spoofed JWT authentication tokens, to use them for executing a network attack. This attack bypasses authentication, enabling the attacker to gain administrator privileges. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-29300 |
|---|---|
| Vendor Project | Adobe |
| Product | ColdFusion |
| Vulnerability Name | Adobe ColdFusion Deserialization of Untrusted Data Vulnerability |
| Date Added | 2024-01-08 |
| Short Description | Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-38203 |
|---|---|
| Vendor Project | Adobe |
| Product | ColdFusion |
| Vulnerability Name | Adobe ColdFusion Deserialization of Untrusted Data Vulnerability |
| Date Added | 2024-01-08 |
| Short Description | Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-41266 |
|---|---|
| Vendor Project | Qlik |
| Product | Sense |
| Vulnerability Name | Qlik Sense Path Traversal Vulnerability |
| Date Added | 2023-12-07 |
| Short Description | Qlik Sense contains a path traversal vulnerability that allows a remote, unauthenticated attacker to create an anonymous session by sending maliciously crafted HTTP requests. This anonymous session could allow the attacker to send further requests to unauthorized endpoints. |
| Patch | Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable. |
| CVE ID | CVE-2023-41265 |
|---|---|
| Vendor Project | Qlik |
| Product | Sense |
| Vulnerability Name | Qlik Sense HTTP Tunneling Vulnerability |
| Date Added | 2023-12-07 |
| Short Description | Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software. |
| Patch | Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable. |
| CVE ID | CVE-2023-47246 |
|---|---|
| Vendor Project | SysAid |
| Product | SysAid Server |
| Vulnerability Name | SysAid Server Path Traversal Vulnerability |
| Date Added | 2023-11-13 |
| Short Description | SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-22518 |
|---|---|
| Vendor Project | Atlassian |
| Product | Confluence Data Center and Server |
| Vulnerability Name | Atlassian Confluence Data Center and Server Improper Authorization Vulnerability |
| Date Added | 2023-11-07 |
| Short Description | Atlassian Confluence Data Center and Server contain an improper authorization vulnerability that can result in significant data loss when exploited by an unauthenticated attacker. There is no impact on confidentiality since the attacker cannot exfiltrate any data. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-46604 |
|---|---|
| Vendor Project | Apache |
| Product | ActiveMQ |
| Vulnerability Name | Apache ActiveMQ Deserialization of Untrusted Data Vulnerability |
| Date Added | 2023-11-02 |
| Short Description | Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-46747 |
|---|---|
| Vendor Project | F5 |
| Product | BIG-IP Configuration Utility |
| Vulnerability Name | F5 BIG-IP Configuration Utility Authentication Bypass Vulnerability |
| Date Added | 2023-10-31 |
| Short Description | F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-4966 |
|---|---|
| Vendor Project | Citrix |
| Product | NetScaler ADC and NetScaler Gateway |
| Vulnerability Name | Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability |
| Date Added | 2023-10-18 |
| Short Description | Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server. |
| Patch | Apply mitigations and kill all active and persistent sessions per vendor instructions [https://www.netscaler.com/blog/news/cve-2023-4966-critical-security-update-now-available-for-netscaler-adc-and-netscaler-gateway/] OR discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-22515 |
|---|---|
| Vendor Project | Atlassian |
| Product | Confluence Data Center and Server |
| Vulnerability Name | Atlassian Confluence Data Center and Server Broken Access Control Vulnerability |
| Date Added | 2023-10-05 |
| Short Description | Atlassian Confluence Data Center and Server contains a broken access control vulnerability that allows an attacker to create unauthorized Confluence administrator accounts and access Confluence. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. Check all affected Confluence instances for evidence of compromise per vendor instructions and report any positive findings to CISA. |
| CVE ID | CVE-2023-40044 |
|---|---|
| Vendor Project | Progress |
| Product | WS_FTP Server |
| Vulnerability Name | Progress WS_FTP Server Deserialization of Untrusted Data Vulnerability |
| Date Added | 2023-10-05 |
| Short Description | Progress WS_FTP Server contains a deserialization of untrusted data vulnerability in the Ad Hoc Transfer module that allows an authenticated attacker to execute remote commands on the underlying operating system. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-42793 |
|---|---|
| Vendor Project | JetBrains |
| Product | TeamCity |
| Vulnerability Name | JetBrains TeamCity Authentication Bypass Vulnerability |
| Date Added | 2023-10-04 |
| Short Description | JetBrains TeamCity contains an authentication bypass vulnerability that allows for remote code execution on TeamCity Server. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2021-3129 |
|---|---|
| Vendor Project | Laravel |
| Product | Ignition |
| Vulnerability Name | Laravel Ignition File Upload Vulnerability |
| Date Added | 2023-09-18 |
| Short Description | Laravel Ignition contains a file upload vulnerability that allows unauthenticated remote attackers to execute malicious code due to insecure usage of file_get_contents() and file_put_contents(). |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-20269 |
|---|---|
| Vendor Project | Cisco |
| Product | Adaptive Security Appliance and Firepower Threat Defense |
| Vulnerability Name | Cisco Adaptive Security Appliance and Firepower Threat Defense Unauthorized Access Vulnerability |
| Date Added | 2023-09-13 |
| Short Description | Cisco Adaptive Security Appliance and Firepower Threat Defense contain an unauthorized access vulnerability that could allow an unauthenticated, remote attacker to conduct a brute force attack in an attempt to identify valid username and password combinations or establish a clientless SSL VPN session with an unauthorized user. |
| Patch | Apply mitigations per vendor instructions for group-lock and vpn-simultaneous-logins or discontinue use of the product for unsupported devices. |
| CVE ID | CVE-2023-38831 |
|---|---|
| Vendor Project | RARLAB |
| Product | WinRAR |
| Vulnerability Name | RARLAB WinRAR Code Execution Vulnerability |
| Date Added | 2023-08-24 |
| Short Description | RARLAB WinRAR contains an unspecified vulnerability that allows an attacker to execute code when a user attempts to view a benign file within a ZIP archive. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-27532 |
|---|---|
| Vendor Project | Veeam |
| Product | Backup & Replication |
| Vulnerability Name | Veeam Backup & Replication Cloud Connect Missing Authentication for Critical Function Vulnerability |
| Date Added | 2023-08-22 |
| Short Description | Veeam Backup & Replication Cloud Connect component contains a missing authentication for critical function vulnerability that allows an unauthenticated user operating within the backup infrastructure network perimeter to obtain encrypted credentials stored in the configuration database. This may lead to an attacker gaining access to the backup infrastructure hosts. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-38035 |
|---|---|
| Vendor Project | Ivanti |
| Product | Sentry |
| Vulnerability Name | Ivanti Sentry Authentication Bypass Vulnerability |
| Date Added | 2023-08-22 |
| Short Description | Ivanti Sentry, formerly known as MobileIron Sentry, contains an authentication bypass vulnerability that may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-35078 |
|---|---|
| Vendor Project | Ivanti |
| Product | Endpoint Manager Mobile (EPMM) |
| Vulnerability Name | Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability |
| Date Added | 2023-07-25 |
| Short Description | Ivanti Endpoint Manager Mobile (EPMM, previously branded MobileIron Core) contains an authentication bypass vulnerability that allows unauthenticated access to specific API paths. An attacker with access to these API paths can access personally identifiable information (PII) such as names, phone numbers, and other mobile device details for users on a vulnerable system. An attacker can also make other configuration changes including installing software and modifying security profiles on registered devices. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-3519 |
|---|---|
| Vendor Project | Citrix |
| Product | NetScaler ADC and NetScaler Gateway |
| Vulnerability Name | Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability |
| Date Added | 2023-07-19 |
| Short Description | Citrix NetScaler ADC and NetScaler Gateway contains a code injection vulnerability that allows for unauthenticated remote code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2023-36884 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Search Remote Code Execution Vulnerability |
| Date Added | 2023-07-17 |
| Short Description | Microsoft Windows Search contains an unspecified vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file, leading to remote code execution. |
| Patch | Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. |
| CVE ID | CVE-2022-31199 |
|---|---|
| Vendor Project | Netwrix |
| Product | Auditor |
| Vulnerability Name | Netwrix Auditor Insecure Object Deserialization Vulnerability |
| Date Added | 2023-07-11 |
| Short Description | Netwrix Auditor User Activity Video Recording component contains an insecure objection deserialization vulnerability that allows an unauthenticated, remote attacker to execute code as the NT AUTHORITY\SYSTEM user. Successful exploitation requires that the attacker is able to reach port 9004/TCP, which is commonly blocked by standard enterprise firewalling. |
| Patch | Apply updates per vendor instructions or discontinue use of the product if updates are unavailable. |
| CVE ID | CVE-2023-27997 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS and FortiProxy SSL-VPN |
| Vulnerability Name | Fortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow Vulnerability |
| Date Added | 2023-06-13 |
| Short Description | Fortinet FortiOS and FortiProxy SSL-VPN contain a heap-based buffer overflow vulnerability which can allow an unauthenticated, remote attacker to execute code or commands via specifically crafted requests. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2023-34362 |
|---|---|
| Vendor Project | Progress |
| Product | MOVEit Transfer |
| Vulnerability Name | Progress MOVEit Transfer SQL Injection Vulnerability |
| Date Added | 2023-06-02 |
| Short Description | Progress MOVEit Transfer contains a SQL injection vulnerability that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database in addition to executing SQL statements that alter or delete database elements. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-45046 |
|---|---|
| Vendor Project | Apache |
| Product | Log4j2 |
| Vulnerability Name | Apache Log4j2 Deserialization of Untrusted Data Vulnerability |
| Date Added | 2023-05-01 |
| Short Description | Apache Log4j2 contains a deserialization of untrusted data vulnerability due to the incomplete fix of CVE-2021-44228, where the Thread Context Lookup Pattern is vulnerable to remote code execution in certain non-default configurations. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2023-27350 |
|---|---|
| Vendor Project | PaperCut |
| Product | MF/NG |
| Vulnerability Name | PaperCut MF/NG Improper Access Control Vulnerability |
| Date Added | 2023-04-21 |
| Short Description | PaperCut MF/NG contains an improper access control vulnerability within the SetupCompleted class that allows authentication bypass and code execution in the context of system. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2023-28252 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability |
| Date Added | 2023-04-11 |
| Short Description | Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27876 |
|---|---|
| Vendor Project | Veritas |
| Product | Backup Exec Agent |
| Vulnerability Name | Veritas Backup Exec Agent File Access Vulnerability |
| Date Added | 2023-04-07 |
| Short Description | Veritas Backup Exec (BE) Agent contains a file access vulnerability that could allow an attacker to specially craft input parameters on a data management protocol command to access files on the BE Agent machine. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27877 |
|---|---|
| Vendor Project | Veritas |
| Product | Backup Exec Agent |
| Vulnerability Name | Veritas Backup Exec Agent Improper Authentication Vulnerability |
| Date Added | 2023-04-07 |
| Short Description | Veritas Backup Exec (BE) Agent contains an improper authentication vulnerability that could allow an attacker unauthorized access to the BE Agent via SHA authentication scheme. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27878 |
|---|---|
| Vendor Project | Veritas |
| Product | Backup Exec Agent |
| Vulnerability Name | Veritas Backup Exec Agent Command Execution Vulnerability |
| Date Added | 2023-04-07 |
| Short Description | Veritas Backup Exec (BE) Agent contains a command execution vulnerability that could allow an attacker to use a data management protocol command to execute a command on the BE Agent machine. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1388 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Certificate Dialog Privilege Escalation Vulnerability |
| Date Added | 2023-04-07 |
| Short Description | Microsoft Windows Certificate Dialog contains a privilege escalation vulnerability, allowing attackers to run processes in an elevated context. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-7494 |
|---|---|
| Vendor Project | Samba |
| Product | Samba |
| Vulnerability Name | Samba Remote Code Execution Vulnerability |
| Date Added | 2023-03-30 |
| Short Description | Samba contains a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share and then cause the server to load and execute it. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2023-24880 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows SmartScreen Security Feature Bypass Vulnerability |
| Date Added | 2023-03-14 |
| Short Description | Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-36537 |
|---|---|
| Vendor Project | ZK Framework |
| Product | AuUploader |
| Vulnerability Name | ZK Framework AuUploader Unspecified Vulnerability |
| Date Added | 2023-02-27 |
| Short Description | ZK Framework AuUploader servlets contain an unspecified vulnerability that could allow an attacker to retrieve the content of a file located in the web context. The ZK Framework is an open-source Java framework. This vulnerability can impact multiple products, including but not limited to ConnectWise R1Soft Server Backup Manager. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-47986 |
|---|---|
| Vendor Project | IBM |
| Product | Aspera Faspex |
| Vulnerability Name | IBM Aspera Faspex Code Execution Vulnerability |
| Date Added | 2023-02-21 |
| Short Description | IBM Aspera Faspex could allow a remote attacker to execute code on the system, caused by a YAML deserialization flaw. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-41223 |
|---|---|
| Vendor Project | Mitel |
| Product | MiVoice Connect |
| Vulnerability Name | Mitel MiVoice Connect Code Injection Vulnerability |
| Date Added | 2023-02-21 |
| Short Description | The Director component in Mitel MiVoice Connect allows an authenticated attacker with internal network access to execute code within the context of the application. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-40765 |
|---|---|
| Vendor Project | Mitel |
| Product | MiVoice Connect |
| Vulnerability Name | Mitel MiVoice Connect Command Injection Vulnerability |
| Date Added | 2023-02-21 |
| Short Description | The Mitel Edge Gateway component of MiVoice Connect allows an authenticated attacker with internal network access to execute commands within the context of the system. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2023-23376 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability |
| Date Added | 2023-02-14 |
| Short Description | Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-24990 |
|---|---|
| Vendor Project | TerraMaster |
| Product | TerraMaster OS |
| Vulnerability Name | TerraMaster OS Remote Command Execution Vulnerability |
| Date Added | 2023-02-10 |
| Short Description | TerraMaster OS contains a remote command execution vulnerability that allows an unauthenticated user to execute commands on the target endpoint. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2023-0669 |
|---|---|
| Vendor Project | Fortra |
| Product | GoAnywhere MFT |
| Vulnerability Name | Fortra GoAnywhere MFT Remote Code Execution Vulnerability |
| Date Added | 2023-02-10 |
| Short Description | Fortra (formerly, HelpSystems) GoAnywhere MFT contains a pre-authentication remote code execution vulnerability in the License Response Servlet due to deserializing an attacker-controlled object. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2015-2291 |
|---|---|
| Vendor Project | Intel |
| Product | Ethernet Diagnostics Driver for Windows |
| Vulnerability Name | Intel Ethernet Diagnostics Driver for Windows Denial-of-Service Vulnerability |
| Date Added | 2023-02-10 |
| Short Description | Intel ethernet diagnostics driver for Windows IQVW32.sys and IQVW64.sys contain an unspecified vulnerability that allows for a denial-of-service (DoS). |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-21587 |
|---|---|
| Vendor Project | Oracle |
| Product | E-Business Suite |
| Vulnerability Name | Oracle E-Business Suite Unspecified Vulnerability |
| Date Added | 2023-02-02 |
| Short Description | Oracle E-Business Suite contains an unspecified vulnerability that allows an unauthenticated attacker with network access via HTTP to compromise Oracle Web Applications Desktop Integrator. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-11357 |
|---|---|
| Vendor Project | Telerik |
| Product | User Interface (UI) for ASP.NET AJAX |
| Vulnerability Name | Telerik UI for ASP.NET AJAX Insecure Direct Object Reference Vulnerability |
| Date Added | 2023-01-26 |
| Short Description | Telerik UI for ASP.NET AJAX contains an insecure direct object reference vulnerability in RadAsyncUpload that can result in file uploads in a limited location and/or remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-47966 |
|---|---|
| Vendor Project | Zoho |
| Product | ManageEngine |
| Vulnerability Name | Zoho ManageEngine Multiple Products Remote Code Execution Vulnerability |
| Date Added | 2023-01-23 |
| Short Description | Multiple Zoho ManageEngine products contain an unauthenticated remote code execution vulnerability due to the usage of an outdated third-party dependency, Apache Santuario. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-41080 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Privilege Escalation Vulnerability |
| Date Added | 2023-01-10 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation. This vulnerability is chainable with CVE-2022-41082, which allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-44698 |
|---|---|
| Vendor Project | Microsoft |
| Product | Defender |
| Vulnerability Name | Microsoft Defender SmartScreen Security Feature Bypass Vulnerability |
| Date Added | 2022-12-13 |
| Short Description | Microsoft Defender SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-26500 |
|---|---|
| Vendor Project | Veeam |
| Product | Backup & Replication |
| Vulnerability Name | Veeam Backup & Replication Remote Code Execution Vulnerability |
| Date Added | 2022-12-13 |
| Short Description | The Veeam Distribution Service in the Backup & Replication application allows unauthenticated users to access internal API functions. A remote attacker can send input to the internal API which may lead to uploading and executing of malicious code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-26501 |
|---|---|
| Vendor Project | Veeam |
| Product | Backup & Replication |
| Vulnerability Name | Veeam Backup & Replication Remote Code Execution Vulnerability |
| Date Added | 2022-12-13 |
| Short Description | The Veeam Distribution Service in the Backup & Replication application allows unauthenticated users to access internal API functions. A remote attacker can send input to the internal API which may lead to uploading and executing of malicious code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-42475 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS |
| Vulnerability Name | Fortinet FortiOS Heap-Based Buffer Overflow Vulnerability |
| Date Added | 2022-12-13 |
| Short Description | Multiple versions of Fortinet FortiOS SSL-VPN contain a heap-based buffer overflow vulnerability which can allow an unauthenticated, remote attacker to execute arbitrary code or commands via specifically crafted requests. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-41073 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Print Spooler Privilege Escalation Vulnerability |
| Date Added | 2022-11-08 |
| Short Description | Microsoft Windows Print Spooler contains an unspecified vulnerability that allows an attacker to gain SYSTEM-level privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-3433 |
|---|---|
| Vendor Project | Cisco |
| Product | AnyConnect Secure |
| Vulnerability Name | Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability |
| Date Added | 2022-10-24 |
| Short Description | Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-3153 |
|---|---|
| Vendor Project | Cisco |
| Product | AnyConnect Secure |
| Vulnerability Name | Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability |
| Date Added | 2022-10-24 |
| Short Description | Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-19323 |
|---|---|
| Vendor Project | GIGABYTE |
| Product | Multiple Products |
| Vulnerability Name | GIGABYTE Multiple Products Privilege Escalation Vulnerability |
| Date Added | 2022-10-24 |
| Short Description | The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-19322 |
|---|---|
| Vendor Project | GIGABYTE |
| Product | Multiple Products |
| Vulnerability Name | GIGABYTE Multiple Products Code Execution Vulnerability |
| Date Added | 2022-10-24 |
| Short Description | The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-19321 |
|---|---|
| Vendor Project | GIGABYTE |
| Product | Multiple Products |
| Vulnerability Name | GIGABYTE Multiple Products Privilege Escalation Vulnerability |
| Date Added | 2022-10-24 |
| Short Description | The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-19320 |
|---|---|
| Vendor Project | GIGABYTE |
| Product | Multiple Products |
| Vulnerability Name | GIGABYTE Multiple Products Unspecified Vulnerability |
| Date Added | 2022-10-24 |
| Short Description | The GDrv low-level driver in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-40684 |
|---|---|
| Vendor Project | Fortinet |
| Product | Multiple Products |
| Vulnerability Name | Fortinet Multiple Products Authentication Bypass Vulnerability |
| Date Added | 2022-10-11 |
| Short Description | Fortinet FortiOS, FortiProxy, and FortiSwitchManager contain an authentication bypass vulnerability that could allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-41082 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Remote Code Execution Vulnerability |
| Date Added | 2022-09-30 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for authenticated remote code execution. Dubbed "ProxyNotShell," this vulnerability is chainable with CVE-2022-41040 which allows for the remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-41040 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Server-Side Request Forgery Vulnerability |
| Date Added | 2022-09-30 |
| Short Description | Microsoft Exchange Server allows for server-side request forgery. Dubbed "ProxyNotShell," this vulnerability is chainable with CVE-2022-41082 which allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-27593 |
|---|---|
| Vendor Project | QNAP |
| Product | Photo Station |
| Vulnerability Name | QNAP Photo Station Externally Controlled Reference Vulnerability |
| Date Added | 2022-09-08 |
| Short Description | Certain QNAP NAS running Photo Station with internet exposure contain an externally controlled reference to a resource vulnerability which can allow an attacker to modify system files. This vulnerability was observed being utilized in a Deadbolt ransomware campaign. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-6530 |
|---|---|
| Vendor Project | D-Link |
| Product | Multiple Routers |
| Vulnerability Name | D-Link Multiple Routers OS Command Injection Vulnerability |
| Date Added | 2022-09-08 |
| Short Description | Multiple D-Link routers contain an unspecified vulnerability that allows for execution of OS commands. |
| Patch | The vendor D-Link published an advisory stating the fix under CVE-2018-20114 properly patches KEV entry CVE-2018-6530. If the device is still supported, apply updates per vendor instructions. If the affected device has since entered its end-of-life, it should be disconnected if still in use. |
| CVE ID | CVE-2018-13374 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS and FortiADC |
| Vulnerability Name | Fortinet FortiOS and FortiADC Improper Access Control Vulnerability |
| Date Added | 2022-09-08 |
| Short Description | Fortinet FortiOS and FortiADC contain an improper access control vulnerability that allows attackers to obtain the LDAP server login credentials configured in FortiGate by pointing a LDAP server connectivity test request to a rogue LDAP server. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-26352 |
|---|---|
| Vendor Project | dotCMS |
| Product | dotCMS |
| Vulnerability Name | dotCMS Unrestricted Upload of File Vulnerability |
| Date Added | 2022-08-25 |
| Short Description | dotCMS ContentResource API contains an unrestricted upload of file with a dangerous type vulnerability that allows for directory traversal, in which the file is saved outside of the intended storage location. Exploitation allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-27925 |
|---|---|
| Vendor Project | Synacor |
| Product | Zimbra Collaboration Suite (ZCS) |
| Vulnerability Name | Synacor Zimbra Collaboration Suite (ZCS) Arbitrary File Upload Vulnerability |
| Date Added | 2022-08-11 |
| Short Description | Synacor Zimbra Collaboration Suite (ZCS) contains flaw in the mboximport functionality, allowing an authenticated attacker to upload arbitrary files to perform remote code execution. This vulnerability was chained with CVE-2022-37042 which allows for unauthenticated remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-37042 |
|---|---|
| Vendor Project | Synacor |
| Product | Zimbra Collaboration Suite (ZCS) |
| Vulnerability Name | Synacor Zimbra Collaboration Suite (ZCS) Authentication Bypass Vulnerability |
| Date Added | 2022-08-11 |
| Short Description | Synacor Zimbra Collaboration Suite (ZCS) contains an authentication bypass vulnerability in MailboxImportServlet. This vulnerability was chained with CVE-2022-27925 which allows for unauthenticated remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-29499 |
|---|---|
| Vendor Project | Mitel |
| Product | MiVoice Connect |
| Vulnerability Name | Mitel MiVoice Connect Data Validation Vulnerability |
| Date Added | 2022-06-27 |
| Short Description | The Service Appliance component in Mitel MiVoice Connect allows remote code execution due to incorrect data validation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-7195 |
|---|---|
| Vendor Project | QNAP |
| Product | Photo Station |
| Vulnerability Name | QNAP Photo Station Path Traversal Vulnerability |
| Date Added | 2022-06-08 |
| Short Description | QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-7194 |
|---|---|
| Vendor Project | QNAP |
| Product | Photo Station |
| Vulnerability Name | QNAP Photo Station Path Traversal Vulnerability |
| Date Added | 2022-06-08 |
| Short Description | QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-7193 |
|---|---|
| Vendor Project | QNAP |
| Product | QTS |
| Vulnerability Name | QNAP QTS Improper Input Validation Vulnerability |
| Date Added | 2022-06-08 |
| Short Description | QNAP QTS contains an improper input validation vulnerability allowing remote attackers to inject code on the system. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-7192 |
|---|---|
| Vendor Project | QNAP |
| Product | Photo Station |
| Vulnerability Name | QNAP Photo Station Improper Access Control Vulnerability |
| Date Added | 2022-06-08 |
| Short Description | QNAP NAS devices running Photo Station contain an improper access control vulnerability allowing remote attackers to gain unauthorized access to the system. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-26134 |
|---|---|
| Vendor Project | Atlassian |
| Product | Confluence Server/Data Center |
| Vulnerability Name | Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability |
| Date Added | 2022-06-02 |
| Short Description | Atlassian Confluence Server and Data Center contain a remote code execution vulnerability that allows for an unauthenticated attacker to perform remote code execution. |
| Patch | Immediately block all internet traffic to and from affected products AND apply the update per vendor instructions [https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html] OR remove the affected products by the due date on the right. Note: Once the update is successfully deployed, agencies can reassess the internet blocking rules. |
| CVE ID | CVE-2016-0034 |
|---|---|
| Vendor Project | Microsoft |
| Product | Silverlight |
| Vulnerability Name | Microsoft Silverlight Runtime Remote Code Execution Vulnerability |
| Date Added | 2022-05-25 |
| Short Description | Microsoft Silverlight mishandles negative offsets during decoding, which allows attackers to execute remote code or cause a denial-of-service (DoS). |
| Patch | The impacted products are end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2013-3993 |
|---|---|
| Vendor Project | IBM |
| Product | InfoSphere BigInsights |
| Vulnerability Name | IBM InfoSphere BigInsights Invalid Input Vulnerability |
| Date Added | 2022-05-25 |
| Short Description | Certain APIs within BigInsights can take invalid input that might allow attackers unauthorized access to read, write, modify, or delete data. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2013-0431 |
|---|---|
| Vendor Project | Oracle |
| Product | Java Runtime Environment (JRE) |
| Vulnerability Name | Oracle JRE Sandbox Bypass Vulnerability |
| Date Added | 2022-05-25 |
| Short Description | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle allows remote attackers to bypass the Java security sandbox. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2013-0074 |
|---|---|
| Vendor Project | Microsoft |
| Product | Silverlight |
| Vulnerability Name | Microsoft Silverlight Double Dereference Vulnerability |
| Date Added | 2022-05-25 |
| Short Description | Microsoft Silverlight does not properly validate pointers during HTML object rendering, which allows remote attackers to execute code via a crafted Silverlight application. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2010-1428 |
|---|---|
| Vendor Project | Red Hat |
| Product | JBoss |
| Vulnerability Name | Red Hat JBoss Information Disclosure Vulnerability |
| Date Added | 2022-05-25 |
| Short Description | Unauthenticated access to the JBoss Application Server Web Console (/web-console) is blocked by default. However, it was found that this block was incomplete, and only blocked GET and POST HTTP verbs. A remote attacker could use this flaw to gain access to sensitive information. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2010-0738 |
|---|---|
| Vendor Project | Red Hat |
| Product | JBoss |
| Vulnerability Name | Red Hat JBoss Authentication Bypass Vulnerability |
| Date Added | 2022-05-25 |
| Short Description | The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-19953 |
|---|---|
| Vendor Project | QNAP |
| Product | Network Attached Storage (NAS) |
| Vulnerability Name | QNAP NAS File Station Cross-Site Scripting Vulnerability |
| Date Added | 2022-05-24 |
| Short Description | A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-19949 |
|---|---|
| Vendor Project | QNAP |
| Product | Network Attached Storage (NAS) |
| Vulnerability Name | QNAP NAS File Station Command Injection Vulnerability |
| Date Added | 2022-05-24 |
| Short Description | A command injection vulnerability affecting QNAP NAS File Station could allow remote attackers to run commands. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-19943 |
|---|---|
| Vendor Project | QNAP |
| Product | Network Attached Storage (NAS) |
| Vulnerability Name | QNAP NAS File Station Cross-Site Scripting Vulnerability |
| Date Added | 2022-05-24 |
| Short Description | A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0147 |
|---|---|
| Vendor Project | Microsoft |
| Product | SMBv1 server |
| Vulnerability Name | Microsoft Windows SMBv1 Information Disclosure Vulnerability |
| Date Added | 2022-05-24 |
| Short Description | The SMBv1 server in Microsoft Windows allows remote attackers to obtain sensitive information from process memory via a crafted packet. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-18362 |
|---|---|
| Vendor Project | Kaseya |
| Product | Virtual System/Server Administrator (VSA) |
| Vulnerability Name | Kaseya VSA SQL Injection Vulnerability |
| Date Added | 2022-05-24 |
| Short Description | ConnectWise ManagedITSync integration for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2016-3351 |
|---|---|
| Vendor Project | Microsoft |
| Product | Internet Explorer and Edge |
| Vulnerability Name | Microsoft Internet Explorer and Edge Information Disclosure Vulnerability |
| Date Added | 2022-05-24 |
| Short Description | An information disclosure vulnerability exists in the way that certain functions in Internet Explorer and Edge handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-0638 |
|---|---|
| Vendor Project | Microsoft |
| Product | Update Notification Manager |
| Vulnerability Name | Microsoft Update Notification Manager Privilege Escalation Vulnerability |
| Date Added | 2022-05-23 |
| Short Description | Microsoft Update Notification Manager contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1385 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows AppX Deployment Extensions Privilege Escalation Vulnerability |
| Date Added | 2022-05-23 |
| Short Description | A privilege escalation vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1130 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows AppX Deployment Service Privilege Escalation Vulnerability |
| Date Added | 2022-05-23 |
| Short Description | A privilege escalation vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-1388 |
|---|---|
| Vendor Project | F5 |
| Product | BIG-IP |
| Vulnerability Name | F5 BIG-IP Missing Authentication Vulnerability |
| Date Added | 2022-05-10 |
| Short Description | F5 BIG-IP contains a missing authentication in critical function vulnerability which can allow for remote code execution, creation or deletion of files, or disabling services. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-29464 |
|---|---|
| Vendor Project | WSO2 |
| Product | Multiple Products |
| Vulnerability Name | WSO2 Multiple Products Unrestrictive Upload of File Vulnerability |
| Date Added | 2022-04-25 |
| Short Description | Multiple WSO2 products allow for unrestricted file upload, resulting in remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-6882 |
|---|---|
| Vendor Project | Zimbra |
| Product | Collaboration Suite (ZCS) |
| Vulnerability Name | Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability |
| Date Added | 2022-04-19 |
| Short Description | Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability that might allow remote attackers to inject arbitrary web script or HTML. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-16057 |
|---|---|
| Vendor Project | D-Link |
| Product | DNS-320 Storage Device |
| Vulnerability Name | D-Link DNS-320 Remote Code Execution Vulnerability |
| Date Added | 2022-04-15 |
| Short Description | The login_mgr.cgi script in D-Link DNS-320 is vulnerable to remote code execution. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2022-22954 |
|---|---|
| Vendor Project | VMware |
| Product | Workspace ONE Access and Identity Manager |
| Vulnerability Name | VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability |
| Date Added | 2022-04-14 |
| Short Description | VMware Workspace ONE Access and Identity Manager allow for remote code execution due to server-side template injection. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-24521 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows CLFS Driver Privilege Escalation Vulnerability |
| Date Added | 2022-04-13 |
| Short Description | Microsoft Windows Common Log File System (CLFS) Driver contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-7602 |
|---|---|
| Vendor Project | Drupal |
| Product | Core |
| Vulnerability Name | Drupal Core Remote Code Execution Vulnerability |
| Date Added | 2022-04-13 |
| Short Description | A remote code execution vulnerability exists within multiple subsystems of Drupal that can allow attackers to exploit multiple attack vectors on a Drupal site. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-20753 |
|---|---|
| Vendor Project | Kaseya |
| Product | Virtual System/Server Administrator (VSA) |
| Vulnerability Name | Kaseya VSA Remote Code Execution Vulnerability |
| Date Added | 2022-04-13 |
| Short Description | Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-42287 |
|---|---|
| Vendor Project | Microsoft |
| Product | Active Directory |
| Vulnerability Name | Microsoft Active Directory Domain Services Privilege Escalation Vulnerability |
| Date Added | 2022-04-11 |
| Short Description | Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-42278 |
|---|---|
| Vendor Project | Microsoft |
| Product | Active Directory |
| Vulnerability Name | Microsoft Active Directory Domain Services Privilege Escalation Vulnerability |
| Date Added | 2022-04-11 |
| Short Description | Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0148 |
|---|---|
| Vendor Project | Microsoft |
| Product | SMBv1 server |
| Vulnerability Name | Microsoft SMBv1 Server Remote Code Execution Vulnerability |
| Date Added | 2022-04-06 |
| Short Description | The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-28799 |
|---|---|
| Vendor Project | QNAP |
| Product | Network Attached Storage (NAS) |
| Vulnerability Name | QNAP NAS Improper Authorization Vulnerability |
| Date Added | 2022-03-31 |
| Short Description | QNAP NAS running HBS 3 contains an improper authorization vulnerability which can allow remote attackers to log in to a device. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-10562 |
|---|---|
| Vendor Project | Dasan |
| Product | Gigabit Passive Optical Network (GPON) Routers |
| Vulnerability Name | Dasan GPON Routers Command Injection Vulnerability |
| Date Added | 2022-03-31 |
| Short Description | Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10561, exploitation can allow an attacker to perform remote code execution. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2021-38646 |
|---|---|
| Vendor Project | Microsoft |
| Product | Office |
| Vulnerability Name | Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | Microsoft Office Access Connectivity Engine contains an unspecified vulnerability which can allow for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-26085 |
|---|---|
| Vendor Project | Atlassian |
| Product | Confluence Server |
| Vulnerability Name | Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a pre-authorization arbitrary file read vulnerability in the /s/ endpoint. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-20028 |
|---|---|
| Vendor Project | SonicWall |
| Product | Secure Remote Access (SRA) |
| Vulnerability Name | SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | SonicWall Secure Remote Access (SRA) products contain an improper neutralization of a SQL Command leading to SQL injection. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2018-8440 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Privilege Escalation Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-8406 |
|---|---|
| Vendor Project | Microsoft |
| Product | DirectX Graphics Kernel (DXGKRNL) |
| Vulnerability Name | Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-8405 |
|---|---|
| Vendor Project | Microsoft |
| Product | DirectX Graphics Kernel (DXGKRNL) |
| Vulnerability Name | Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0213 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Privilege Escalation Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | Microsoft Windows COM Aggregate Marshaler allows for privilege escalation when an attacker runs a specially crafted application. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2016-0151 |
|---|---|
| Vendor Project | Microsoft |
| Product | Client-Server Run-time Subsystem (CSRSS) |
| Vulnerability Name | Microsoft Windows CSRSS Security Feature Bypass Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | The Client-Server Run-time Subsystem (CSRSS) in Microsoft mismanages process tokens, which allows local users to gain privileges via a crafted application. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2013-2551 |
|---|---|
| Vendor Project | Microsoft |
| Product | Internet Explorer |
| Vulnerability Name | Microsoft Internet Explorer Use-After-Free Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute remote code via a crafted web site that triggers access to a deleted object. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2013-2465 |
|---|---|
| Vendor Project | Oracle |
| Product | Java SE |
| Vulnerability Name | Oracle Java SE Unspecified Vulnerability |
| Date Added | 2022-03-28 |
| Short Description | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to 2D |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-42237 |
|---|---|
| Vendor Project | Sitecore |
| Product | XP |
| Vulnerability Name | Sitecore XP Remote Command Execution Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | Sitcore XP contains an insecure deserialization vulnerability which can allow for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-22941 |
|---|---|
| Vendor Project | Citrix |
| Product | ShareFile |
| Vulnerability Name | Citrix ShareFile Improper Access Control Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | Improper Access Control in Citrix ShareFile storage zones controller may allow an unauthenticated attacker to remotely compromise the storage zones controller. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-2021 |
|---|---|
| Vendor Project | Palo Alto Networks |
| Product | PAN-OS |
| Vulnerability Name | Palo Alto Networks PAN-OS Authentication Bypass Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | Palo Alto Networks PAN-OS contains a vulnerability in SAML which allows an attacker to bypass authentication. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-11043 |
|---|---|
| Vendor Project | PHP |
| Product | FastCGI Process Manager (FPM) |
| Vulnerability Name | PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-1273 |
|---|---|
| Vendor Project | VMware Tanzu |
| Product | Spring Data Commons |
| Vulnerability Name | VMware Tanzu Spring Data Commons Property Binder Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | Spring Data Commons contains a property binder vulnerability which can allow an attacker to perform remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-11138 |
|---|---|
| Vendor Project | Quest |
| Product | KACE System Management Appliance |
| Vulnerability Name | Quest KACE System Management Appliance Remote Command Execution Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance is accessible by anonymous users and can be abused to perform remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-12615 |
|---|---|
| Vendor Project | Apache |
| Product | Tomcat |
| Vulnerability Name | Apache Tomcat on Windows Remote Code Execution Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | When running Apache Tomcat on Windows with HTTP PUTs enabled, it is possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0146 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows SMB Remote Code Execution Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | The SMBv1 server in Microsoft Windows allows remote attackers to perform remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2010-2861 |
|---|---|
| Vendor Project | Adobe |
| Product | ColdFusion |
| Vulnerability Name | Adobe ColdFusion Directory Traversal Vulnerability |
| Date Added | 2022-03-25 |
| Short Description | A directory traversal vulnerability exists in the administrator console in Adobe ColdFusion which allows remote attackers to read arbitrary files. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1405 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1322 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1315 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Error Reporting Manager Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when Windows Error Reporting manager improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1253 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows AppX Deployment Server Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when the Windows AppX Deployment Server improperly handles junctions. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1129 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1069 |
|---|---|
| Vendor Project | Microsoft |
| Product | Task Scheduler |
| Vulnerability Name | Microsoft Task Scheduler Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1064 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-0841 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-0543 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-8120 |
|---|---|
| Vendor Project | Microsoft |
| Product | Win32k |
| Vulnerability Name | Microsoft Win32k Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0101 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Transaction Manager Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2016-3309 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Kernel Privilege Escalation Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2015-2546 |
|---|---|
| Vendor Project | Microsoft |
| Product | Win32k |
| Vulnerability Name | Microsoft Win32k Memory Corruption Vulnerability |
| Date Added | 2022-03-15 |
| Short Description | The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2009-3960 |
|---|---|
| Vendor Project | Adobe |
| Product | BlazeDS |
| Vulnerability Name | Adobe BlazeDS Information Disclosure Vulnerability |
| Date Added | 2022-03-07 |
| Short Description | Adobe BlazeDS, which is utilized in LifeCycle and Coldfusion, contains a vulnerability that allows for information disclosure. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-41379 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Installer Privilege Escalation Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-8581 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Privilege Escalation Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | A privilege escalation vulnerability exists in Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could attempt to impersonate any other user of the Exchange server. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2016-1019 |
|---|---|
| Vendor Project | Adobe |
| Product | Flash Player |
| Vulnerability Name | Adobe Flash Player Arbitrary Code Execution Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | Adobe Flash Player allows remote attackers to cause a denial of service or possibly execute arbitrary code. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2016-0099 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Secondary Logon Service Privilege Escalation Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | A privilege escalation vulnerability exists in Microsoft Windows if the Windows Secondary Logon Service fails to properly manage request handles in memory. An attacker who successfully exploited this vulnerability could run arbitrary code as an administrator. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2015-1701 |
|---|---|
| Vendor Project | Microsoft |
| Product | Win32k |
| Vulnerability Name | Microsoft Win32k Privilege Escalation Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | An unspecified vulnerability exists in the Win32k.sys kernel-mode driver in Microsoft Windows Server that allows a local attacker to execute arbitrary code with elevated privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2012-1723 |
|---|---|
| Vendor Project | Oracle |
| Product | Java SE |
| Vulnerability Name | Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Hotspot. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2012-0507 |
|---|---|
| Vendor Project | Oracle |
| Product | Java SE |
| Vulnerability Name | Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | An incorrect type vulnerability exists in the Concurrency component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2010-0188 |
|---|---|
| Vendor Project | Adobe |
| Product | Reader and Acrobat |
| Vulnerability Name | Adobe Reader and Acrobat Arbitrary Code Execution Vulnerability |
| Date Added | 2022-03-03 |
| Short Description | Unspecified vulnerability in Adobe Reader and Acrobat allows attackers to cause a denial of service or possibly execute arbitrary code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2022-24682 |
|---|---|
| Vendor Project | Zimbra |
| Product | Webmail |
| Vulnerability Name | Zimbra Webmail Cross-Site Scripting Vulnerability |
| Date Added | 2022-02-25 |
| Short Description | Zimbra webmail clients running versions 8.8.15 P29 & P30 contain a XSS vulnerability that would allow attackers to steal session cookie files. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-0752 |
|---|---|
| Vendor Project | Microsoft |
| Product | Internet Explorer |
| Vulnerability Name | Microsoft Internet Explorer Type Confusion Vulnerability |
| Date Added | 2022-02-15 |
| Short Description | A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-8174 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows VBScript Engine Out-of-Bounds Write Vulnerability |
| Date Added | 2022-02-15 |
| Short Description | A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution" |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-20250 |
|---|---|
| Vendor Project | RARLAB |
| Product | WinRAR |
| Vulnerability Name | WinRAR Absolute Path Traversal Vulnerability |
| Date Added | 2022-02-15 |
| Short Description | WinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-15982 |
|---|---|
| Vendor Project | Adobe |
| Product | Flash Player |
| Vulnerability Name | Adobe Flash Player Use-After-Free Vulnerability |
| Date Added | 2022-02-15 |
| Short Description | Adobe Flash Player com.adobe.tvsdk.mediacore.metadata Use After Free Vulnerability |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2020-0796 |
|---|---|
| Vendor Project | Microsoft |
| Product | SMBv3 |
| Vulnerability Name | Microsoft SMBv3 Remote Code Execution Vulnerability |
| Date Added | 2022-02-10 |
| Short Description | A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-10271 |
|---|---|
| Vendor Project | Oracle |
| Product | WebLogic Server |
| Vulnerability Name | Oracle Corporation WebLogic Server Remote Code Execution Vulnerability |
| Date Added | 2022-02-10 |
| Short Description | Oracle Corporation WebLogic Server contains a vulnerability that allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0145 |
|---|---|
| Vendor Project | Microsoft |
| Product | SMBv1 |
| Vulnerability Name | Microsoft SMBv1 Remote Code Execution Vulnerability |
| Date Added | 2022-02-10 |
| Short Description | The SMBv1 server in multiple Microsoft Windows versions allows remote attackers to execute arbitrary code via crafted packets. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0144 |
|---|---|
| Vendor Project | Microsoft |
| Product | SMBv1 |
| Vulnerability Name | Microsoft SMBv1 Remote Code Execution Vulnerability |
| Date Added | 2022-02-10 |
| Short Description | The SMBv1 server in multiple Microsoft Windows versions allows remote attackers to execute arbitrary code via crafted packets. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-20038 |
|---|---|
| Vendor Project | SonicWall |
| Product | SMA 100 Appliances |
| Vulnerability Name | SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability |
| Date Added | 2022-01-28 |
| Short Description | SonicWall SMA 100 devies are vulnerable to an unauthenticated stack-based buffer overflow vulnerability where exploitation can result in code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-0787 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability |
| Date Added | 2022-01-28 |
| Short Description | Microsoft Windows BITS is vulnerable to to a privilege elevation vulnerability if it improperly handles symbolic links. An actor can exploit this vulnerability to execute arbitrary code with system-level privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-8453 |
|---|---|
| Vendor Project | Microsoft |
| Product | Win32k |
| Vulnerability Name | Microsoft Win32k Privilege Escalation Vulnerability |
| Date Added | 2022-01-21 |
| Short Description | Microsoft Windows Win32k contains a vulnerability that allows an attacker to escalate privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-21975 |
|---|---|
| Vendor Project | VMware |
| Product | vRealize Operations Manager API |
| Vulnerability Name | VMware Server Side Request Forgery in vRealize Operations Manager API |
| Date Added | 2022-01-18 |
| Short Description | Server Side Request Forgery (SSRF) in vRealize Operations Manager API prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API to perform a SSRF attack to steal administrative credentials. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1458 |
|---|---|
| Vendor Project | Microsoft |
| Product | Win32k |
| Vulnerability Name | Microsoft Win32k Privilege Escalation Vulnerability |
| Date Added | 2022-01-10 |
| Short Description | A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k EoP. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-2725 |
|---|---|
| Vendor Project | Oracle |
| Product | WebLogic Server |
| Vulnerability Name | Oracle WebLogic Server, Injection |
| Date Added | 2022-01-10 |
| Short Description | Injection vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-13382 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS and FortiProxy |
| Vulnerability Name | Fortinet FortiOS and FortiProxy Improper Authorization |
| Date Added | 2022-01-10 |
| Short Description | An Improper Authorization vulnerability in Fortinet FortiOS and FortiProxy under SSL VPN web portal allows an unauthenticated attacker to modify the password. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-13383 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS and FortiProxy |
| Vulnerability Name | Fortinet FortiOS and FortiProxy Out-of-bounds Write |
| Date Added | 2022-01-10 |
| Short Description | A heap buffer overflow in Fortinet FortiOS and FortiProxy may cause the SSL VPN web service termination for logged in users. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1579 |
|---|---|
| Vendor Project | Palo Alto Networks |
| Product | PAN-OS |
| Vulnerability Name | Palo Alto Networks PAN-OS Remote Code Execution Vulnerability |
| Date Added | 2022-01-10 |
| Short Description | Remote Code Execution in PAN-OS with GlobalProtect Portal or GlobalProtect Gateway Interface enabled. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-12149 |
|---|---|
| Vendor Project | Red Hat |
| Product | JBoss Application Server |
| Vulnerability Name | Red Hat JBoss Application Server Remote Code Execution Vulnerability |
| Date Added | 2021-12-10 |
| Short Description | The JBoss Application Server, shipped with Red Hat Enterprise Application Platform 5.2, allows an attacker to execute arbitrary code via crafted serialized data. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-44228 |
|---|---|
| Vendor Project | Apache |
| Product | Log4j2 |
| Vulnerability Name | Apache Log4j2 Remote Code Execution Vulnerability |
| Date Added | 2021-12-10 |
| Short Description | Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution. |
| Patch | For all affected software assets for which updates exist, the only acceptable remediation actions are: 1) Apply updates; OR 2) remove affected assets from agency networks. Temporary mitigations using one of the measures provided at https://www.cisa.gov/uscert/ed-22-02-apache-log4j-recommended-mitigation-measures are only acceptable until updates are available. |
| CVE ID | CVE-2021-40449 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Win32k Privilege Escalation Vulnerability |
| Date Added | 2021-11-17 |
| Short Description | Unspecified vulnerability allows for an authenticated user to escalate privileges. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-42321 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange |
| Vulnerability Name | Microsoft Exchange Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-17 |
| Short Description | An authenticated attacker could leverage improper validation in cmdlet arguments within Microsoft Exchange and perform remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27104 |
|---|---|
| Vendor Project | Accellion |
| Product | FTA |
| Vulnerability Name | Accellion FTA OS Command Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27102 |
|---|---|
| Vendor Project | Accellion |
| Product | FTA |
| Vulnerability Name | Accellion FTA OS Command Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Accellion FTA contains an OS command injection vulnerability exploited via a local web service call. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27101 |
|---|---|
| Vendor Project | Accellion |
| Product | FTA |
| Vulnerability Name | Accellion FTA SQL Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27103 |
|---|---|
| Vendor Project | Accellion |
| Product | FTA |
| Vulnerability Name | Accellion FTA Server-Side Request Forgery (SSRF) Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-4878 |
|---|---|
| Vendor Project | Adobe |
| Product | Flash Player |
| Vulnerability Name | Adobe Flash Player Use-After-Free Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Adobe Flash Player contains a use-after-free vulnerability that could allow for code execution. |
| Patch | The impacted product is end-of-life and should be disconnected if still in use. |
| CVE ID | CVE-2021-42013 |
|---|---|
| Vendor Project | Apache |
| Product | HTTP Server |
| Vulnerability Name | Apache HTTP Server Path Traversal Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Apache HTTP Server contains a path traversal vulnerability that allows an attacker to perform remote code execution if files outside directories configured by Alias-like directives are not under default �require all denied� or if CGI scripts are enabled. This CVE ID resolves an incomplete patch for CVE-2021-41773. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-41773 |
|---|---|
| Vendor Project | Apache |
| Product | HTTP Server |
| Vulnerability Name | Apache HTTP Server Path Traversal Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Apache HTTP Server contains a path traversal vulnerability that allows an attacker to perform remote code execution if files outside directories configured by Alias-like directives are not under default �require all denied� or if CGI scripts are enabled. The original patch issued under this CVE ID is insufficient, please review remediation information under CVE-2021-42013. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-5638 |
|---|---|
| Vendor Project | Apache |
| Product | Struts |
| Vulnerability Name | Apache Struts Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Apache Struts Jakarta Multipart parser allows for malicious file upload using the Content-Type value, leading to remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-26084 |
|---|---|
| Vendor Project | Atlassian |
| Product | Confluence Server and Data Center |
| Vulnerability Name | Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Atlassian Confluence Server and Data Server contain an Object-Graph Navigation Language (OGNL) injection vulnerability that may allow an unauthenticated attacker to execute code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-3396 |
|---|---|
| Vendor Project | Atlassian |
| Product | Confluence Server and Data Server |
| Vulnerability Name | Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Atlassian Confluence Server and Data Center contain a server-side template injection vulnerability that may allow an attacker to achieve path traversal and remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-42258 |
|---|---|
| Vendor Project | BQE |
| Product | BillQuick Web Suite |
| Vulnerability Name | BQE BillQuick Web Suite SQL Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | BQE BillQuick Web Suite contains an SQL injection vulnerability when accessing the username parameter that may allow for unauthenticated, remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-13608 |
|---|---|
| Vendor Project | Citrix |
| Product | StoreFront Server |
| Vulnerability Name | Citrix StoreFront Server XML External Entity (XXE) Processing Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Citrix StoreFront Server contains an XML External Entity (XXE) processing vulnerability that may allow an unauthenticated attacker to retrieve potentially sensitive information. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-19781 |
|---|---|
| Vendor Project | Citrix |
| Product | Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance |
| Vulnerability Name | Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an unspecified vulnerability that could allow an unauthenticated attacker to perform code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-11634 |
|---|---|
| Vendor Project | Citrix |
| Product | Workspace Application and Receiver for Windows |
| Vulnerability Name | Citrix Workspace Application and Receiver for Windows Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Citrix Workspace Application and Receiver for Windows contains remote code execution vulnerability resulting from local drive access preferences not being enforced into the clients' local drives. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-9822 |
|---|---|
| Vendor Project | DotNetNuke (DNN) |
| Product | DotNetNuke (DNN) |
| Vulnerability Name | DotNetNuke (DNN) Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | DotNetNuke (DNN) contains a vulnerability that may allow for remote code execution via cookie deserialization. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-7600 |
|---|---|
| Vendor Project | Drupal |
| Product | Drupal Core |
| Vulnerability Name | Drupal Core Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vectors on a Drupal site, resulting in complete site compromise. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-6789 |
|---|---|
| Vendor Project | Exim |
| Product | Exim |
| Vulnerability Name | Exim Buffer Overflow Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Exim contains a buffer overflow vulnerability in the base64d function part of the SMTP listener that may allow for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-5902 |
|---|---|
| Vendor Project | F5 |
| Product | BIG-IP |
| Vulnerability Name | F5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | F5 BIG-IP Traffic Management User Interface (TMUI) contains a remote code execution vulnerability in undisclosed pages. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-22986 |
|---|---|
| Vendor Project | F5 |
| Product | BIG-IP and BIG-IQ Centralized Management |
| Vulnerability Name | F5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | F5 BIG-IP and BIG-IQ Centralized Management contain a remote code execution vulnerability in the iControl REST interface that allows unauthenticated attackers with network access to execute system commands, create or delete files, and disable services. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-35464 |
|---|---|
| Vendor Project | ForgeRock |
| Product | Access Management (AM) |
| Vulnerability Name | ForgeRock Access Management (AM) Core Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | ForgeRock Access Management (AM) Core Server allows an attacker who sends a specially crafted HTTP request to one of three endpoints (/ccversion/Version, /ccversion/Masthead, or /ccversion/ButtonFrame) to execute code in the context of the current user (unless ForgeRock AM is running as root user, which the vendor does not recommend). |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-12812 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS |
| Vulnerability Name | Fortinet FortiOS SSL VPN Improper Authentication Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Fortinet FortiOS SSL VPN contains an improper authentication vulnerability that may allow a user to login successfully without being prompted for the second factor of authentication (FortiToken) if they change the case in their username. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-13379 |
|---|---|
| Vendor Project | Fortinet |
| Product | FortiOS |
| Vulnerability Name | Fortinet FortiOS SSL VPN Path Traversal Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Fortinet FortiOS SSL VPN web portal contains a path traversal vulnerability that may allow an unauthenticated attacker to download FortiOS system files through specially crafted HTTP resource requests. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-30116 |
|---|---|
| Vendor Project | Kaseya |
| Product | Virtual System/Server Administrator (VSA) |
| Vulnerability Name | Kaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-38647 |
|---|---|
| Vendor Project | Microsoft |
| Product | Open Management Infrastructure (OMI) |
| Vulnerability Name | Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Open Management Infrastructure (OMI) within Azure VM Management Extensions contains an unspecified vulnerability allowing remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2016-0167 |
|---|---|
| Vendor Project | Microsoft |
| Product | Win32k |
| Vulnerability Name | Microsoft Win32k Privilege Escalation Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation via a crafted application |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-0878 |
|---|---|
| Vendor Project | Microsoft |
| Product | Edge and Internet Explorer |
| Vulnerability Name | Microsoft Edge and Internet Explorer Memory Corruption Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Edge and Internet Explorer contain a memory corruption vulnerability that allows attackers to execute code in the context of the current user. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-34523 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Privilege Escalation Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-0688 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server Validation Key fails to properly create unique keys at install time, allowing for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0143 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Server Message Block (SMBv1) Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Windows Server Message Block 1.0 (SMBv1) contains an unspecified vulnerability that allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-34473 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-1732 |
|---|---|
| Vendor Project | Microsoft |
| Product | Win32k |
| Vulnerability Name | Microsoft Win32k Privilege Escalation Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-34527 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Print Spooler Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Windows Print Spooler contains an unspecified vulnerability due to the Windows Print Spooler service improperly performing privileged file operations. Successful exploitation allows an attacker to perform remote code execution with SYSTEM privileges. The vulnerability is also known under the moniker of PrintNightmare. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-31207 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Security Feature Bypass Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for security feature bypass. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-26411 |
|---|---|
| Vendor Project | Microsoft |
| Product | Internet Explorer |
| Vulnerability Name | Microsoft Internet Explorer Memory Corruption Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Internet Explorer contains an unspecified vulnerability that allows for memory corruption. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-40444 |
|---|---|
| Vendor Project | Microsoft |
| Product | MSHTML |
| Vulnerability Name | Microsoft MSHTML Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft MSHTML contains a unspecified vulnerability that allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-36942 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Local Security Authority (LSA) Spoofing Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability allowing an unauthenticated attacker to call a method on the LSARPC interface and coerce the domain controller to authenticate against another server using NTLM. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1215 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Privilege Escalation Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Windows contains an unspecified vulnerability due to the way ws2ifsl.sys (Winsock) handles objects in memory, allowing for privilege escalation. Successful exploitation allows an attacker to execute code with elevated privileges.� |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-11882 |
|---|---|
| Vendor Project | Microsoft |
| Product | Office |
| Vulnerability Name | Microsoft Office Memory Corruption Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Office contains a memory corruption vulnerability that allows remote code execution in the context of the current user. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-1367 |
|---|---|
| Vendor Project | Microsoft |
| Product | Internet Explorer |
| Vulnerability Name | Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Internet Explorer contains a memory corruption vulnerability in how the scripting engine handles objects in memory. Successful exploitation allows for remote code execution in the context of the current user. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2017-0199 |
|---|---|
| Vendor Project | Microsoft |
| Product | Office and WordPad |
| Vulnerability Name | Microsoft Office and WordPad Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially crafted files. Successful exploitation allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-1472 |
|---|---|
| Vendor Project | Microsoft |
| Product | Netlogon |
| Vulnerability Name | Microsoft Netlogon Privilege Escalation Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft's Netlogon Remote Protocol (MS-NRPC) contains a privilege escalation vulnerability when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller. An attacker who successfully exploits the vulnerability could run a specially crafted application on a device on the network. The vulnerability is also known under the moniker of Zerologon. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-26855 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-26858 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-27065 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-1675 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Print Spooler Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Windows Print Spooler contains an unspecified vulnerability that allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-0604 |
|---|---|
| Vendor Project | Microsoft |
| Product | SharePoint |
| Vulnerability Name | Microsoft SharePoint Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft SharePoint fails to check the source markup of an application package. An attacker who successfully exploits the vulnerability could run remote code in the context of the SharePoint application pool and the SharePoint server farm account. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-26857 |
|---|---|
| Vendor Project | Microsoft |
| Product | Exchange Server |
| Vulnerability Name | Microsoft Exchange Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-36955 |
|---|---|
| Vendor Project | Microsoft |
| Product | Windows |
| Vulnerability Name | Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-18935 |
|---|---|
| Vendor Project | Progress |
| Product | Telerik UI for ASP.NET AJAX |
| Vulnerability Name | Progress Telerik UI for ASP.NET AJAX Deserialization of Untrusted Data Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Progress Telerik UI for ASP.NET AJAX contains a deserialization of untrusted data vulnerability through RadAsyncUpload which leads to code execution on the server in the context of the w3wp.exe process. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-22893 |
|---|---|
| Vendor Project | Ivanti |
| Product | Pulse Connect Secure |
| Vulnerability Name | Ivanti Pulse Connect Secure Use-After-Free Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Ivanti Pulse Connect Secure contains a use-after-free vulnerability that allow a remote, unauthenticated attacker to execute code via license services. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-11510 |
|---|---|
| Vendor Project | Ivanti |
| Product | Pulse Connect Secure |
| Vulnerability Name | Ivanti Pulse Connect Secure Arbitrary File Read Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Ivanti Pulse Connect Secure contains an arbitrary file read vulnerability that allows an unauthenticated remote attacker with network access via HTTPS to send a specially crafted URI. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-11539 |
|---|---|
| Vendor Project | Ivanti |
| Product | Pulse Connect Secure and Pulse Policy Secure |
| Vulnerability Name | Ivanti Pulse Connect Secure and Policy Secure Command Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Ivanti Pulse Connect Secure and Policy Secure allows an authenticated attacker from the admin web interface to inject and execute commands. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2018-2380 |
|---|---|
| Vendor Project | SAP |
| Product | Customer Relationship Management (CRM) |
| Vulnerability Name | SAP Customer Relationship Management (CRM) Path Traversal Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | SAP Customer Relationship Management (CRM) contains a path traversal vulnerability that allows an attacker to exploit insufficient validation of path information provided by users. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-35211 |
|---|---|
| Vendor Project | SolarWinds |
| Product | Serv-U |
| Vulnerability Name | SolarWinds Serv-U Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-20021 |
|---|---|
| Vendor Project | SonicWall |
| Product | SonicWall Email Security |
| Vulnerability Name | SonicWall Email Security Improper Privilege Management Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | SonicWall Email Security contains an improper privilege management vulnerability that allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20022 and CVE-2021-20023 to achieve privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-7481 |
|---|---|
| Vendor Project | SonicWall |
| Product | SMA100 |
| Vulnerability Name | SonicWall SMA100 SQL Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | SonicWall SMA100 contains a SQL injection vulnerability allowing an unauthenticated user to gain read-only access to unauthorized resources. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-20022 |
|---|---|
| Vendor Project | SonicWall |
| Product | SonicWall Email Security |
| Vulnerability Name | SonicWall Email Security Unrestricted Upload of File Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | SonicWall Email Security contains an unrestricted upload of file with dangerous type vulnerability that allows a post-authenticated attacker to upload a file to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20023 to achieve privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-20023 |
|---|---|
| Vendor Project | SonicWall |
| Product | SonicWall Email Security |
| Vulnerability Name | SonicWall Email Security Path Traversal Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | SonicWall Email Security contains a path traversal vulnerability that allows a post-authenticated attacker to read files on the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20022 to achieve privilege escalation. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-20016 |
|---|---|
| Vendor Project | SonicWall |
| Product | SSLVPN SMA100 |
| Vulnerability Name | SonicWall SSLVPN SMA100 SQL Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by an unauthenticated attacker. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-12271 |
|---|---|
| Vendor Project | Sophos |
| Product | SFOS |
| Vulnerability Name | Sophos SFOS SQL Injection Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Sophos Firewall operating system (SFOS) firmware contains a SQL injection vulnerability when configured with either the administration (HTTPS) service or the User Portal is exposed on the WAN zone. Successful exploitation may cause remote code execution to exfiltrate usernames and hashed passwords for the local device admin(s), portal admins, and user accounts used for remote access (but not external Active Directory or LDAP passwords). |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2019-5544 |
|---|---|
| Vendor Project | VMware |
| Product | VMware ESXi and Horizon DaaS |
| Vulnerability Name | VMware ESXi and Horizon DaaS OpenSLP Heap-Based Buffer Overflow Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | VMware ESXi and Horizon Desktop as a Service (DaaS) OpenSLP contains a heap-based buffer overflow vulnerability that allows an attacker with network access to port 427 to overwrite the heap of the OpenSLP service to perform remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-3992 |
|---|---|
| Vendor Project | VMware |
| Product | ESXi |
| Vulnerability Name | VMware ESXi OpenSLP Use-After-Free Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | VMware ESXi OpenSLP contains a use-after-free vulnerability that allows an attacker residing in the management network with access to port 427 to perform remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-22005 |
|---|---|
| Vendor Project | VMware |
| Product | vCenter Server |
| Vulnerability Name | VMware vCenter Server File Upload Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | VMware vCenter Server contains a file upload vulnerability in the Analytics service that allows a user with network access to port 443 to execute code. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-21972 |
|---|---|
| Vendor Project | VMware |
| Product | vCenter Server |
| Vulnerability Name | VMware vCenter Server Remote Code Execution Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | VMware vCenter Server vSphere Client contains a remote code execution vulnerability in a vCenter Server plugin which allows an attacker with network access to port 443 to execute commands with unrestricted privileges on the underlying operating system. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-21985 |
|---|---|
| Vendor Project | VMware |
| Product | vCenter Server |
| Vulnerability Name | VMware vCenter Server Improper Input Validation Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | VMware vSphere Client contains an improper input validation vulnerability in the Virtual SAN Health Check plug-in, which is enabled by default in vCenter Server, which allows for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2021-40539 |
|---|---|
| Vendor Project | Zoho |
| Product | ManageEngine |
| Vulnerability Name | Zoho ManageEngine ADSelfService Plus Authentication Bypass Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Zoho ManageEngine ADSelfService Plus contains an authentication bypass vulnerability affecting the REST API URLs which allow for remote code execution. |
| Patch | Apply updates per vendor instructions. |
| CVE ID | CVE-2020-3580 |
|---|---|
| Vendor Project | Cisco |
| Product | Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) |
| Vulnerability Name | Cisco ASA and FTD Cross-Site Scripting (XSS) Vulnerability |
| Date Added | 2021-11-03 |
| Short Description | Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an insufficient input validation vulnerability for user-supplied input by the web services interface. Successful exploitation could allow an attacker to perform cross-site scripting (XSS) in the context of the interface or access sensitive browser-based information. |
| Patch | Apply updates per vendor instructions. |