Active threat advisories and known exploited vulnerabilities.

Critical CVE-2019-16256 SIMalliance · Toolbox Browser Added Nov 3, 2021

SIMalliance Toolbox Browser Command Injection Vulnerability

SIMalliance Toolbox Browser contains an command injection vulnerability that could allow remote attackers to retrieve location and IMEI information or execute a range of other attacks by modifying the attack message.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-10148 SolarWinds · Orion Added Nov 3, 2021

SolarWinds Orion Authentication Bypass Vulnerability

SolarWinds Orion API contains an authentication bypass vulnerability that could allow a remote attacker to execute API commands.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2021-35211 SolarWinds · Serv-U Added Nov 3, 2021

SolarWinds Serv-U Remote Code Execution Vulnerability

SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2016-3643 SolarWinds · Virtualization Manager Added Nov 3, 2021

SolarWinds Virtualization Manager Privilege Escalation Vulnerability

SolarWinds Virtualization Manager allows for privilege escalation through leveraging a misconfiguration of sudo.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-10199 Sonatype · Nexus Repository Added Nov 3, 2021

Sonatype Nexus Repository Remote Code Execution Vulnerability

Sonatype Nexus Repository contains an unspecified vulnerability that allows for remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2021-20021 SonicWall · SonicWall Email Security Added Nov 3, 2021

SonicWall Email Security Improper Privilege Management Vulnerability

SonicWall Email Security contains an improper privilege management vulnerability that allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20022 and CVE-2021-20023 to achieve privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2019-7481 SonicWall · SMA100 Added Nov 3, 2021

SonicWall SMA100 SQL Injection Vulnerability

SonicWall SMA100 contains a SQL injection vulnerability allowing an unauthenticated user to gain read-only access to unauthorized resources.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2021-20022 SonicWall · SonicWall Email Security Added Nov 3, 2021

SonicWall Email Security Unrestricted Upload of File Vulnerability

SonicWall Email Security contains an unrestricted upload of file with dangerous type vulnerability that allows a post-authenticated attacker to upload a file to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20023 to achieve privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2021-20023 SonicWall · SonicWall Email Security Added Nov 3, 2021

SonicWall Email Security Path Traversal Vulnerability

SonicWall Email Security contains a path traversal vulnerability that allows a post-authenticated attacker to read files on the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20022 to achieve privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2021-20016 SonicWall · SSLVPN SMA100 Added Nov 3, 2021

SonicWall SSLVPN SMA100 SQL Injection Vulnerability

SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by an unauthenticated attacker.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-12271 Sophos · SFOS Added Nov 3, 2021

Sophos SFOS SQL Injection Vulnerability

Sophos Firewall operating system (SFOS) firmware contains a SQL injection vulnerability when configured with either the administration (HTTPS) service or the User Portal is exposed on the WAN zone. Successful exploitation may cause remote code execution to exfiltrate usernames and hashed passwords for the local device admin(s), portal admins, and user accounts used for remote access (but not external Active Directory or LDAP passwords).

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-10181 Sumavision · Enhanced Multimedia Router (EMR) Added Nov 3, 2021

Sumavision EMR Cross-Site Request Forgery (CSRF) Vulnerability

Sumavision Enhanced Multimedia Router (EMR) contains a cross-site request forgery (CSRF) vulnerability allowing the creation of users with elevated privileges as administrator on a device.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2017-6327 Symantec · Symantec Messaging Gateway Added Nov 3, 2021

Symantec Messaging Gateway Remote Code Execution Vulnerability

Symantec Messaging Gateway contains an unspecified vulnerability which can allow for remote code execution. With the ability to perform remote code execution, an attacker may also desire to perform privilege escalating actions.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2019-18988 TeamViewer · Desktop Added Nov 3, 2021

TeamViewer Desktop Bypass Remote Login Vulnerability

TeamViewer Desktop allows for bypass of remote-login access control because the same AES key is used for different customers' installations. If an attacker were to know this key, they could decrypt protected information stored in registry or configuration files or decryption of the Unattended Access password to the system (which allows for remote login to the system).

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2017-9248 Progress · ASP.NET AJAX and Sitefinity Added Nov 3, 2021

Progress Telerik UI for ASP.NET AJAX and Sitefinity Cryptographic Weakness Vulnerability

Progress Telerik UI for ASP.NET AJAX and Sitefinity have a cryptographic weakness in Telerik.Web.UI.dll that can be exploited to disclose encryption keys (Telerik.Web.UI.DialogParametersEncryptionKey and/or the MachineKey), perform cross-site-scripting (XSS) attacks, compromise the ASP.NET ViewState, and/or upload and download files.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2021-31755 Tenda · AC11 Router Added Nov 3, 2021

Tenda AC11 Router Stack Buffer Overflow Vulnerability

Tenda AC11 devices contain a stack buffer overflow vulnerability in /goform/setmac which allows attackers to execute code via a crafted post request.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-10987 Tenda · AC1900 Router AC15 Model Added Nov 3, 2021

Tenda AC1900 Router AC15 Model Remote Code Execution Vulnerability

Tenda AC1900 Router AC15 Model contains an unspecified vulnerability that allows remote attackers to execute system commands via the deviceName POST parameter.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2018-14558 Tenda · AC7, AC9, and AC10 Routers Added Nov 3, 2021

Tenda AC7, AC9, and AC10 Routers Command Injection Vulnerability

Tenda AC7, AC9, and AC10 devices contain a command injection vulnerability due to the "formsetUsbUnload" function executes a dosystemCmd function with untrusted input. Successful exploitation allows an attacker to execute OS commands via a crafted goform/setUsbUnload request.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2018-20062 ThinkPHP · noneCms Added Nov 3, 2021

ThinkPHP "noneCms" Remote Code Execution Vulnerability

ThinkPHP "noneCms" contains an unspecified vulnerability that allows for remote code execution through crafted use of the filter parameter.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2019-9082 ThinkPHP · ThinkPHP Added Nov 3, 2021

ThinkPHP Remote Code Execution Vulnerability

ThinkPHP contains an unspecified vulnerability that allows for remote code execution via public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]= followed by the command.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2019-18187 Trend Micro · OfficeScan Added Nov 3, 2021

Trend Micro OfficeScan Directory Traversal Vulnerability

Trend Micro OfficeScan contains a directory traversal vulnerability by extracting files from a zip file to a specific folder on the OfficeScan server, leading to remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-8467 Trend Micro · Apex One and OfficeScan Added Nov 3, 2021

Trend Micro Apex One and OfficeScan Remote Code Execution Vulnerability

Trend Micro Apex One and OfficeScan contain an unspecified vulnerability within a migration tool component that allows for remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-8468 Trend Micro · Apex One, OfficeScan and Worry-Free Business Security Agents Added Nov 3, 2021

Trend Micro Multiple Products Content Validation Escape Vulnerability

Trend Micro Apex One, OfficeScan, and Worry-Free Business Security agents contain a content validation escape vulnerability that could allow an attacker to manipulate certain agent client components.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-24557 Trend Micro · Apex One, OfficeScan, and Worry-Free Business Security Added Nov 3, 2021

Trend Micro Multiple Products Improper Access Control Vulnerability

Trend Micro Apex One, OfficeScan, and Worry-Free Business Security on Microsoft Windows contain an improper access control vulnerability that may allow an attacker to manipulate a particular product folder to disable the security temporarily, abuse a specific Windows function, and attain privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2020-8599 Trend Micro · Apex One and OfficeScan Added Nov 3, 2021

Trend Micro Apex One and OfficeScan Authentication Bypass Vulnerability

Trend Micro Apex One and OfficeScan server contain a vulnerable EXE file that could allow a remote attacker to write data to a path on affected installations and bypass root login.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed