MauroEldritch

4 exploits Active since May 2015
CVE-2018-19466 NOMISEC CRITICAL WORKING POC
Portainer <1.20.0 - Info Disclosure
A vulnerability was found in Portainer before 1.20.0. Portainer stores LDAP credentials, corresponding to a master password, in cleartext and allows their retrieval via API calls.
11 stars
CVSS 9.8
CVE-2018-1088 NOMISEC HIGH WORKING POC
Gluster Storage 3.x < 3.13.2 - Privilege Escalation via Snapshot Scheduler Symlink
A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink.
10 stars
CVSS 8.1
CVE-2019-11881 NOMISEC MEDIUM WORKING POC
Rancher < 2.2.4 - Cross-Site Scripting via Login Error Message
A vulnerability exists in Rancher before 2.2.4 in the login component, where the errorMsg parameter can be tampered to display arbitrary content, filtering tags but not special characters or symbols. There's no other limitation of the message, allowing malicious users to lure legitimate users to visit phishing sites with scare tactics, e.g., displaying a "This version of Rancher is outdated, please visit https://malicious.rancher.site/upgrading" message.
3 stars
CVSS 4.7
CVE-2015-3456 NOMISEC WORKING POC
QEMU < 2.3.0 - Memory Corruption via Floppy Disk Controller Commands
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.