CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2023-36844	High	94.3%	JuniperJunos OS	Juniper Junos OS on EX Series contains a PHP external variable modification vulnerability that allows an unauthenticated, network-based attacker to control certain, important environment variables. Using a crafted request an attacker is able to modify certain PHP environment variables, leading to partial loss of integrity, which may allow chaining to other vulnerabilities.	Nov 13, 2023	KEV
CVE-2023-36847	High	94.0%	JuniperJunos OS	Juniper Junos OS on EX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to installAppPackage.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.	Nov 13, 2023	KEV
CVE-2023-29552	High	93.0%	IETFService Location Protocol (SLP)	The Service Location Protocol (SLP) contains a denial-of-service (DoS) vulnerability that could allow an unauthenticated, remote attacker to register services and use spoofed UDP traffic to conduct a denial-of-service (DoS) attack with a significant amplification factor.	Nov 8, 2023	KEV
CVE-2023-22518	High	94.4%	AtlassianConfluence Data Center and Server	Atlassian Confluence Data Center and Server contain an improper authorization vulnerability that can result in significant data loss when exploited by an unauthenticated attacker. There is no impact on confidentiality since the attacker cannot exfiltrate any data.	Nov 7, 2023	KEV
CVE-2023-46604	High	94.4%	ApacheActiveMQ	Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath.	Nov 2, 2023	KEV
CVE-2023-46748	High	4.3%	F5BIG-IP Configuration Utility	F5 BIG-IP Configuration utility contains an SQL injection vulnerability that may allow an authenticated attacker with network access through the BIG-IP management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46747.	Oct 31, 2023	KEV
CVE-2023-46747	High	94.4%	F5BIG-IP Configuration Utility	F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748.	Oct 31, 2023	KEV
CVE-2023-5631	High	83.4%	RoundcubeWebmail	Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.	Oct 26, 2023	KEV
CVE-2023-20273	High	92.4%	CiscoCisco IOS XE Web UI	Cisco IOS XE contains a command injection vulnerability in the web user interface. When chained with CVE-2023-20198, the attacker can leverage the new local user to elevate privilege to root and write the implant to the file system. Cisco identified CVE-2023-20273 as the vulnerability exploited to deploy the implant. CVE-2021-1435, previously associated with the exploitation events, is no longer believed to be related to this activity.	Oct 23, 2023	KEV
CVE-2023-4966(4)	High	94.3%	CitrixNetScaler ADC and NetScaler Gateway	Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.	Oct 18, 2023	KEV
CVE-2023-20198	High	94.0%	CiscoIOS XE Web UI	Cisco IOS XE Web UI contains a privilege escalation vulnerability in the web user interface that could allow a remote, unauthenticated attacker to create an account with privilege level 15 access. The attacker can then use that account to gain control of the affected device.	Oct 16, 2023	KEV
CVE-2023-36563	High	2.5%	MicrosoftWordPad	Microsoft WordPad contains an unspecified vulnerability that allows for information disclosure.	Oct 10, 2023	KEV
CVE-2023-20109	High	0.6%	CiscoIOS and IOS XE	Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.	Oct 10, 2023	KEV
CVE-2023-44487	High	94.4%	IETFHTTP/2	HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS).	Oct 10, 2023	KEV
CVE-2023-41763	High	12.7%	MicrosoftSkype for Business	Microsoft Skype for Business contains an unspecified vulnerability that allows for privilege escalation.	Oct 10, 2023	KEV
CVE-2023-21608	High	84.1%	AdobeAcrobat and Reader	Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user.	Oct 10, 2023	KEV
CVE-2023-22515	High	94.3%	AtlassianConfluence Data Center and Server	Atlassian Confluence Data Center and Server contains a broken access control vulnerability that allows an attacker to create unauthorized Confluence administrator accounts and access Confluence.	Oct 5, 2023	KEV
CVE-2023-42824	High	1.0%	AppleiOS and iPadOS	Apple iOS and iPadOS contain an unspecified vulnerability that allows for local privilege escalation.	Oct 5, 2023	KEV
CVE-2023-40044	High 10	94.4%	ProgressWS_FTP Server	Progress WS_FTP Server contains a deserialization of untrusted data vulnerability in the Ad Hoc Transfer module that allows an authenticated attacker to execute remote commands on the underlying operating system.	Oct 5, 2023	KEVExploit
CVE-2023-42793	High	92.9%	JetBrainsTeamCity	JetBrains TeamCity contains an authentication bypass vulnerability that allows for remote code execution on TeamCity Server.	Oct 4, 2023	KEV

CVE-2023-36844KEV

High

Juniper Junos OS on EX Series contains a PHP external variable modification vulnerability that allows an unauthenticated, network-based attacker to control certain, important environment variables. Using a crafted request an attacker is able to modify certain PHP environment variables, leading to partial loss of integrity, which may allow chaining to other vulnerabilities.

JuniperEPSS 94.3%

CVE-2023-36847KEV

High

Juniper Junos OS on EX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to installAppPackage.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.

JuniperEPSS 94.0%

CVE-2023-29552KEV

High

The Service Location Protocol (SLP) contains a denial-of-service (DoS) vulnerability that could allow an unauthenticated, remote attacker to register services and use spoofed UDP traffic to conduct a denial-of-service (DoS) attack with a significant amplification factor.

IETFEPSS 93.0%

CVE-2023-22518KEV

High

Atlassian Confluence Data Center and Server contain an improper authorization vulnerability that can result in significant data loss when exploited by an unauthenticated attacker. There is no impact on confidentiality since the attacker cannot exfiltrate any data.

AtlassianEPSS 94.4%

CVE-2023-46604KEV

High

Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath.

ApacheEPSS 94.4%

CVE-2023-46748KEV

High

F5 BIG-IP Configuration utility contains an SQL injection vulnerability that may allow an authenticated attacker with network access through the BIG-IP management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46747.

F5EPSS 4.3%

CVE-2023-46747KEV

High

F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748.

F5EPSS 94.4%

CVE-2023-5631KEV

High

Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.

RoundcubeEPSS 83.4%

CVE-2023-20273KEV

High

Cisco IOS XE contains a command injection vulnerability in the web user interface. When chained with CVE-2023-20198, the attacker can leverage the new local user to elevate privilege to root and write the implant to the file system. Cisco identified CVE-2023-20273 as the vulnerability exploited to deploy the implant. CVE-2021-1435, previously associated with the exploitation events, is no longer believed to be related to this activity.

CiscoEPSS 92.4%

CVE-2023-4966KEV

High

Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.

CitrixEPSS 94.3%

CVE-2023-20198KEV

High

Cisco IOS XE Web UI contains a privilege escalation vulnerability in the web user interface that could allow a remote, unauthenticated attacker to create an account with privilege level 15 access. The attacker can then use that account to gain control of the affected device.

CiscoEPSS 94.0%

CVE-2023-36563KEV

High

Microsoft WordPad contains an unspecified vulnerability that allows for information disclosure.

MicrosoftEPSS 2.5%

CVE-2023-20109KEV

High

Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.

CiscoEPSS 0.6%

CVE-2023-44487KEV

High

HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS).

IETFEPSS 94.4%

CVE-2023-41763KEV

High

Microsoft Skype for Business contains an unspecified vulnerability that allows for privilege escalation.

MicrosoftEPSS 12.7%

CVE-2023-21608KEV

High

Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user.

AdobeEPSS 84.1%

CVE-2023-22515KEV

High

Atlassian Confluence Data Center and Server contains a broken access control vulnerability that allows an attacker to create unauthorized Confluence administrator accounts and access Confluence.

AtlassianEPSS 94.3%

CVE-2023-42824KEV

High

Apple iOS and iPadOS contain an unspecified vulnerability that allows for local privilege escalation.

AppleEPSS 1.0%

CVE-2023-40044KEV

High

Progress WS_FTP Server contains a deserialization of untrusted data vulnerability in the Ad Hoc Transfer module that allows an authenticated attacker to execute remote commands on the underlying operating system.

ProgressCVSS 10EPSS 94.4%

Exploit

CVE-2023-42793KEV

High

JetBrains TeamCity contains an authentication bypass vulnerability that allows for remote code execution on TeamCity Server.

JetBrainsEPSS 92.9%

26 27 28 29 30 31 32