Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CISA known exploited database update #582

Merged
merged 1 commit into from
Apr 16, 2023
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
19 changes: 12 additions & 7 deletions config/known_exploited_vulnerabilities.csv
Original file line number Diff line number Diff line change
Expand Up @@ -9,9 +9,9 @@
"CVE-2018-15961","Adobe","ColdFusion","Adobe ColdFusion Remote Code Execution","2021-11-03","Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2018-4878","Adobe","Flash Player","Adobe Flash Player Use-After-Free Vulnerability","2021-11-03","A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018.","The impacted product is end-of-life and should be disconnected if still in use.","2022-05-03",""
"CVE-2020-5735","Amcrest","Cameras and Network Video Recorder (NVR)","Amcrest Camera and NVR Buffer Overflow Vulnerability","2021-11-03","Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2019-2215","Android","Android OS","Android ""AbstractEmu"" Root Access Vulnerabilities","2021-11-03","","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2020-0041","Android","Android OS","Android ""AbstractEmu"" Root Access Vulnerabilities","2021-11-03","","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2020-0069","Android","Android OS","Android ""AbstractEmu"" Root Access Vulnerabilities","2021-11-03","","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2019-2215","Android","Kernel","Android Kernel Use-After-Free Vulnerability","2021-11-03","Android Kernel contains a use-after-free vulnerability in binder.c which allows for privilege escalation from an application to the Linux Kernel. This vulnerability was observed chained with CVE-2020-0041 and CVE-2020-0069 under exploit chain ""AbstractEmu.""","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2020-0041","Android","Kernel","Android Kernel Out-of-Bounds Write Vulnerability","2021-11-03","Android Kernel binder_transaction of binder.c contains an out-of-bounds write vulnerability due to an incorrect bounds check that could allow for local privilege escalation. This vulnerability was observed chained with CVE-2019-2215 and CVE-2020-0069 under exploit chain ""AbstractEmu.""","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2020-0069","MediaTek","Multiple Chipsets","Mediatek Multiple Chipsets Insufficient Input Validation Vulnerability","2021-11-03","Multiple MediaTek chipsets contain an insufficient input validation vulnerability and have missing SELinux restrictions in the Command Queue drivers ioctl handlers. This causes an out-of-bounds write leading to privilege escalation. This vulnerability was observed chained with CVE-2019-2215 and CVE-2020-0041 under exploit chain ""AbstractEmu.""","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2017-9805","Apache","Struts","Apache Struts Multiple Versions Remote Code Execution Vulnerability","2021-11-03","The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 contains a vulnerability which can lead to Remote Code Execution.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2021-42013","Apache","HTTP Server","Apache HTTP Server 2.4.49 and 2.4.50 Path Traversal","2021-11-03","Apache HTTP server vulnerabilities allow an attacker to use a path traversal attack to map URLs to files outside the expected document root and perform Remote Code Execution.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-41773","Apache","HTTP Server","Apache HTTP Server Path Traversal Vulnerability","2021-11-03","A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration ""require all denied"", these requests can succeed. If CGI scripts are also enabled for these aliased pathes, this could allow for remote code execution. This issue is known to be exploited in the wild. This issue only affects Apache 2.4.49 and not earlier versions. The fix in Apache HTTP Server 2.4.50 was found to be incomplete, see CVE-2021-42013.","Apply updates per vendor instructions.","2021-11-17",""
Expand All @@ -25,7 +25,7 @@
"CVE-2019-6223","Apple","FaceTime","Apple FaceTime Vulnerability","2021-11-03","A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. The initiator of a Group FaceTime call may be able to cause the recipient to answer.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2021-30860","Apple","iOS","Apple iOS ""FORCEDENTRY"" Remote Code Execution Vulnerability","2021-11-03","An integer overflow was addressed with improved input validation vulnerability affecting iOS devices that allows for remote code execution.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2020-27930","Apple","iOS and macOS","Apple iOS and macOS FontParser Remote Code Execution Vulnerability","2021-11-03","A memory corruption issue was addressed with improved input validation. Processing a maliciously crafted font may lead to arbitrary code execution.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2021-30807","Apple","iOS and macOS","Apple iOS and macOS Memory Corruption Vulnerability","2021-11-03","","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-30807","Apple","Multiple Products","Apple Multiple Products Memory Corruption Vulnerability","2021-11-03","Apple iOS, iPadOS, macOS, and watchOS, contain a memory corruption vulnerability in?IOMobileFrameBuffer?that may allow an application to execute code with kernel privileges.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2020-27950","Apple","iOS and macOS","Apple iOS and macOS Kernel Memory Initialization Vulnerability","2021-11-03","A malicious application may be able to disclose kernel memory.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2020-27932","Apple","iOS and macOS","Apple iOS and macOS Kernel Type Confusion Vulnerability","2021-11-03","A malicious application may be able to execute arbitrary code with kernel privileges.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2020-9818","Apple","iOS Mail","Apple iOS Mail OOB Vulnerability","2021-11-03","Processing a maliciously crafted mail message may lead to unexpected memory modification or application termination.","Apply updates per vendor instructions.","2022-05-03",""
Expand Down Expand Up @@ -104,8 +104,8 @@
"CVE-2020-6418","Google","Chromium V8 Engine","Chromium V8 Type Confusion Vulnerability","2021-11-03","Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.","Apply updates per vendor instructions.","2022-05-03",""
"CVE-2021-30554","Google","Chrome","Google Chrome WebGL Use-After-Free Vulnerability","2021-11-03","Use after free in WebGL in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-21206","Google","Chromium Blink","Chromium Blink Use-After-Free Vulnerability","2021-11-03","Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-38000","Google","Chromium V8 Engine","Google Chromium V8 Insufficient Input Validation Vulnerability","2021-11-03","","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-38003","Google","Chromium V8 Engine","Google Chromium V8 Incorrect Implementation Vulnerability","2021-11-03","","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-38000","Google","Chromium","Google Chromium Improper Input Validation Vulnerability","2021-11-03","Google Chromium Intents contains an improper input validation vulnerability that allows a remote attacker to navigate to a malicious URL via a crafted HTML page.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-38003","Google","Chromium V8 Engine","Google Chromium V8 Engine Memory Corruption Vulnerability","2021-11-03","Google Chromium V8 Engine contains a memory corruption vulnerability due to a bug in JSON.stringify.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-21224","Google","Chromium V8 Engine","Chromium V8 JavaScript Engine Remote Code Execution Vulnerability","2021-11-03","Type confusion in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-21193","Google","Chromium V8 Engine","Chromium V8 Use-After-Free Vulnerability","2021-11-03","Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.","Apply updates per vendor instructions.","2021-11-17",""
"CVE-2021-21220","Google","Chromium V8 Engine","Chromium V8 Input Validation Vulnerability","2021-11-03","Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.","Apply updates per vendor instructions.","2021-11-17",""
Expand Down Expand Up @@ -894,7 +894,7 @@
"CVE-2023-23397","Microsoft","Office","Microsoft Office Outlook Privilege Escalation Vulnerability","2023-03-14","Microsoft Office Outlook contains a privilege escalation vulnerability that allows for a NTLM Relay attack against another service to authenticate as the user.","Apply updates per vendor instructions.","2023-04-04","https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-23397, https://msrc.microsoft.com/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability/,"
"CVE-2023-24880","Microsoft","Windows","Microsoft Windows SmartScreen Security Feature Bypass Vulnerability","2023-03-14","Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to evade Mark of the Web (MOTW) defenses via a specially crafted malicious file.","Apply updates per vendor instructions.","2023-04-04","https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-24880"
"CVE-2022-41328","Fortinet","FortiOS","Fortinet FortiOS Path Traversal Vulnerability","2023-03-14","Fortinet FortiOS contains a path traversal vulnerability that may allow a local privileged attacker to read and write files via crafted CLI commands.","Apply updates per vendor instructions.","2023-04-04","https://www.fortiguard.com/psirt/FG-IR-22-369"
"CVE-2023-26360","Adobe","ColdFusion","Adobe ColdFusion Improper Access Control Vulnerability","2023-03-15","Adobe ColdFusion contains an improper access control vulnerability that allows for remote code execution.","Apply updates per vendor instructions.","2023-04-05","https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html"
"CVE-2023-26360","Adobe","ColdFusion","Adobe ColdFusion Deserialization of Untrusted Data Vulnerability","2023-03-15","Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for remote code execution.","Apply updates per vendor instructions.","2023-04-05","https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html"
"CVE-2013-3163","Microsoft","Internet Explorer","Microsoft Internet Explorer Memory Corruption Vulnerability","2023-03-30","Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause a denial of service via a crafted website.","The impacted product is end-of-life and should be disconnected if still in use.","2023-04-20","https://learn.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-055"
"CVE-2017-7494","Samba","Samba","Samba Remote Code Execution Vulnerability","2023-03-30","Samba contains a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share and then cause the server to load and execute it.","Apply updates per vendor instructions.","2023-04-20","https://www.samba.org/samba/security/CVE-2017-7494.html"
"CVE-2022-42948","Fortra","Cobalt Strike","Fortra Cobalt Strike User Interface Remote Code Execution Vulnerability","2023-03-30","Fortra Cobalt Strike User Interface contains an unspecified vulnerability rooted in Java Swing that may allow remote code execution.","Apply updates per vendor instructions.","2023-04-20","https://www.cobaltstrike.com/blog/out-of-band-update-cobalt-strike-4-7-2/"
Expand All @@ -910,3 +910,8 @@
"CVE-2021-27878","Veritas","Backup Exec Agent","Veritas Backup Exec Agent Command Execution Vulnerability","2023-04-07","Veritas Backup Exec (BE) Agent contains a command execution vulnerability that could allow an attacker to use a data management protocol command to execute a command on the BE Agent machine.","Apply updates per vendor instructions.","2023-04-28","https://www.veritas.com/support/en_US/security/VTS21-001"
"CVE-2019-1388","Microsoft","Windows","Microsoft Windows Certificate Dialog Privilege Escalation Vulnerability","2023-04-07","Microsoft Windows Certificate Dialog contains a privilege escalation vulnerability, allowing attackers to run processes in an elevated context.","Apply updates per vendor instructions.","2023-04-28","https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1388"
"CVE-2023-26083","Arm","Mali Graphics Processing Unit (GPU)","Arm Mali GPU Kernel Driver Information Disclosure Vulnerability","2023-04-07","Arm Mali GPU Kernel Driver contains an information disclosure vulnerability that allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.","Apply updates per vendor instructions.","2023-04-28","https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities"
"CVE-2023-28205","Apple","Multiple Products","Apple Multiple Products WebKit Use-After-Free Vulnerability","2023-04-10","Apple iOS, iPadOS, macOS, and Safari WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content.","Apply updates per vendor instructions.","2023-05-01","https://support.apple.com/en-us/HT213720,https://support.apple.com/en-us/HT213721,https://support.apple.com/en-us/HT213722,https://support.apple.com/en-us/HT213723"
"CVE-2023-28206","Apple","iOS, iPadOS, and macOS","Apple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerability","2023-04-10","Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to execute code with kernel privileges.","Apply updates per vendor instructions.","2023-05-01","https://support.apple.com/en-us/HT213720, https://support.apple.com/en-us/HT213721"
"CVE-2023-28252","Microsoft","Windows","Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability","2023-04-11","Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation.","Apply updates per vendor instructions.","2023-05-02","https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-28252"
"CVE-2023-20963","Android","Framework","Android Framework Privilege Escalation Vulnerability","2023-04-13","Android Framework contains an unspecified vulnerability that allows for privilege escalation after updating an app to a higher Target SDK with no additional execution privileges needed.","Apply updates per vendor instructions.","2023-05-04","https://source.android.com/docs/security/bulletin/2023-03-01"
"CVE-2023-29492","Novi Survey","Novi Survey","Novi Survey Insecure Deserialization Vulnerability","2023-04-13","Novi Survey contains an insecure deserialization vulnerability that allows remote attackers to execute code on the server in the context of the service account.","Apply updates per vendor instructions.","2023-05-04","https://novisurvey.net/blog/novi-survey-security-advisory-apr-2023.aspx"