- Advertisement -
Current Threats
QNAP myQNAPcloud Connect 1.3.4.0317 Username/Password Denial Of ServiceOracle Business Intelligence And XML Publisher XML InjectionOracle Business Intelligence Directory Traversal[local] Evernote 7.9 – Code Execution via Path Traversal[remote] ManageEngine Applications Manager 11.0 < 14.0 – SQL Injection / Remote Code Execution (Metasploit)[dos] Netwide Assembler (NASM) 2.14rc15 – NULL Pointer Dereference (PoC)SystemTap 1.3 MODPROBE_OPTIONS Privilege Escalation[local] LibreOffice < 6.0.7 / 6.1.3 – Macro Code Execution (Metasploit)Vuln: ISC BIND CVE-2018-5741 Security Bypass VulnerabilityVuln: ISC BIND CVE-2018-5745 Remote Denial of Service VulnerabilityVuln: Linux Kernel ‘fs/cifs/cifsencrypt.c’ Denial of Service VulnerabilityVuln: Ghostscript CVE-2019-3835 Security Bypass VulnerabilityVuln: Mozilla Firefox Multiple Security VulnerabilitiesVuln: Microsoft Azure CVE-2019-0816 Security Bypass VulnerabilityEvernote 7.9 Path Traversal / Code ExecutionManageEngine Applications Manager 14 SQL Injection / Remote Code ExecutionNetwide Assembler (NASM) 2.14rc15 Null Pointer DereferenceAtlassian Confluence Widget Connector Macro Velocity Template InjectionUbuntu Security Notice USN-3950-1[remote] MailCarrier 2.51 – POP3 ‘RETR’ SEH Buffer OverflowRedacted Report On The Investigation Into Russian Interference In The 2016 Presidential Election[dos] ASUS HG100 – Denial of Service[dos] DHCP Server 2.5.2 – Denial of Service (PoC)[dos] Oracle Java Runtime Environment – Heap Corruption During TTF font Rendering in sc_FindExtrema4Vuln: FreeType 2 CVE-2017-8105 Out of Bounds Write Heap Buffer Overflow Vulnerability[dos] Oracle Java Runtime Environment – Heap Corruption During TTF font Rendering in GlyphIterator::setCurrGlyphIDVuln: Microsoft Windows Win32k CVE-2019-0859 Local Privilege Escalation VulnerabilityOpenSSH 8.0p1Vuln: Spring Security and Spring Framework CVE-2018-1258 Authorization Bypass VulnerabilityVuln: Cisco IOS Software CVE-2018-0161 Denial of Service VulnerabilityVuln: FasterXML Jackson-databind CVE-2018-14718 Remote Code Execution VulnerabilityLibreOffice Macro Code Execution[webapps] DirectAdmin 1.561 – Multiple Vulnerabilities[remote] MailCarrier 2.51 – ‘RCPT TO’ Buffer OverflowOAMbuster Multi-Threaded CVE-2018-2879 Scanner[shellcode] Linux/x86 – MMX-PUNPCKLBW Encoder Shellcode (61 bytes)Oracle Java Runtime Environment sc_FindExtrema4 Heap Corruption[remote] RemoteMouse 3.008 – Arbitrary Remote Command ExecutionOracle Java Runtime Environment GlyphIterator::setCurrGlyphID Heap Corruption[remote] CuteNews 2.1.2 – ‘avatar’ Remote Code Execution (Metasploit)[remote] MailCarrier 2.51 – POP3 ‘USER’ Buffer Overflow[remote] MailCarrier 2.51 – POP3 ‘LIST’ SEH Buffer Overflow[remote] MailCarrier 2.51 – POP3 ‘TOP’ SEH Buffer Overflow[dos] UltraVNC Viewer 1.2.2.4 – ‘VNC Server’ Denial of Service (PoC)Vuln: Apache Tomcat CVE-2018-11784 Open Redirection Vulnerability[dos] UltraVNC Launcher 1.2.2.4 – ‘Path’ Denial of Service (PoC)Vuln: Oracle Primavera Unifier Multiple Security Vulnerabilities[shellcode] Linux/x86 – Cat File Encode to base64 and post via curl to Webserver Shellcode (125 bytes)Vuln: FasterXML Jackson-databind CVE-2018-12023 Remote Code Execution Vulnerability[remote] Cisco RV130W Routers – Management Interface Remote Command Execution (Metasploit)Vuln: Apache HTTP Server CVE-2018-11763 Denial of Service Vulnerability[webapps] Zyxel ZyWall 310 / ZyWall 110 / USG1900 / ATP500 / USG40 – Login Page Cross-Site ScriptingVuln: Oracle Enterprise Manager Ops Center CVE-2016-4000 Remote Security Vulnerability[local] Zoho ManageEngine ADManager Plus 6.6 (Build < 6659) – Privilege EscalationVuln: Multiple CPU Hardware CVE-2017-5754 Information Disclosure Vulnerability[dos] PCHelpWare V2 1.0.0.5 – ‘SC’ Denial of Service (PoC)Vuln: OpenSSL CVE-2019-1559 Information Disclosure Vulnerability[dos] PCHelpWare V2 1.0.0.5 – ‘Group’ Denial of Service (PoC)Vuln: Apache Tomcat CVE-2017-5664 Security Bypass Vulnerability[webapps] Joomla Core 1.5.0 – 3.9.4 – Directory Traversal / Authenticated Arbitrary File DeletionVuln: Oracle E-Business Suite cpuapr2019 Multiple Security Vulnerabilities[dos] AdminExpress 1.2.5 – ‘Folder Path’ Denial of Service (PoC)Vuln: Oracle MySQL Server CVE-2019-2634 Local Security Vulnerability[local] Microsoft Windows 10 1809 / 1709 – CSRSS SxSSrv Cached Manifest Privilege EscalationVuln: Oracle Java SE CVE-2019-2602 Remote Security Vulnerability[local] Microsoft Windows 10 1809 – LUAFV Delayed Virtualization MAXIMUM_ACCESS DesiredAccess Privilege Escalation[local] Microsoft Windows 10 1809 – LUAFV Delayed Virtualization Cross Process Handle Duplication Privilege EscalationUbuntu Security Notice USN-3948-1[local] Microsoft Windows 10 1809 – LUAFV LuafvCopyShortName Arbitrary Short Name Privilege EscalationUbuntu Security Notice USN-3949-1[local] Microsoft Windows 10 1809 – LUAFV NtSetCachedSigningLevel Device Guard Bypass[local] Microsoft Windows 10 1809 – LUAFV Delayed Virtualization Cache Manager Poisoning Privilege Escalation[local] Microsoft Windows 10 1809 – LUAFV PostLuafvPostReadWrite SECTION_OBJECT_POINTERS Race Condition Privilege Escalation[remote] WordPress 5.0.0 – Crop-image Shell Upload (Metasploit)[webapps] Jobgator – ‘experience’ SQL Injection[webapps] Bolt CMS 3.6.6 – Cross-Site Request Forgery / Remote Code Execution[local] FlexHEX 2.71 – SEH Buffer Overflow (Unicode)[webapps] ShoreTel Connect ONSITE < 19.49.1500.0 – Multiple Vulnerabilities[webapps] SaLICru -SLC-20-cube3(5) – HTML Injection[local] AllPlayer 7.4 – SEH Buffer Overflow (Unicode)[webapps] CentOS Web Panel 0.9.8.793 (Free) / 0.9.8.753 (Pro) – Cross-Site Scripting[local] River Past Cam Do 3.7.6 – ‘Activation Code’ Local Buffer Overflow[webapps] Tradebox CryptoCurrency – ‘symbol’ SQL Injection[webapps] WordPress Plugin Limit Login Attempts Reloaded 2.7.4 – Login Limit Bypass[local] Download Accelerator Plus (DAP) 10.0.6.0 – SEH Buffer Overflow[webapps] ManageEngine ServiceDesk Plus 9.3 – User Enumeration[remote] QNAP Netatalk < 3.1.12 – Authentication Bypass[local] Apache 2.4.17 < 2.4.38 – 'apache2ctl graceful' 'logrotate' Local Privilege Escalation[remote] PHP 7.2 – ‘imagecolormatch()’ Out of Band Heap Write[remote] TP-LINK TL-WR940N / TL-WR941ND – Buffer Overflow[shellcode] Linux/x64 – XANAX Encoder Shellcode (127 bytes)[shellcode] Linux/x64 – XANAX Decoder Shellcode (127 bytes)[webapps] Ashop Shopping Cart Software – ‘bannedcustomers.php?blacklistitemid’ SQL InjectionVuln: Google Chrome Prior to 66.0.3359.117 Multiple Security Vulnerabilities[remote] Apache Axis 1.4 – Remote Code ExecutionVuln: Cisco NX-OS CVE-2019-1601 Unauthorized File Access Vulnerability[local] Microsoft Windows – AppX Deployment Service Privilege EscalationVuln: Action View CVE-2019-5418 Information Disclosure Vulnerability[webapps] Dell KACE Systems Management Appliance (K1000) 6.4.120756 – Unauthenticated Remote Code ExecutionVuln: RETIRED: Apple iOS APPLE-SA-2018-04-24-1 Multiple Security Vulnerabilities

Cyber Watch

- Advertisement -

Deeper Learning