Pa55w0rd

3 exploits Active since Feb 2018
CVE-2018-4407 NOMISEC HIGH WORKING POC
Apple Iphone OS < 12.0 - Memory Corruption
A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
60 stars
CVSS 8.8
CVE-2019-0708 NOMISEC CRITICAL SCANNER
CVE-2019-0708 BlueKeep RDP Remote Windows Kernel Use After Free
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
13 stars
CVSS 9.8
CVE-2018-1305 NOMISEC MEDIUM WORKING POC
Apache Tomcat 7.0.0-9.0.4 - Privilege Escalation
Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that point, it was possible - depending on the order Servlets were loaded - for some security constraints not to be applied. This could have exposed resources to users who were not authorised to access them.
6 stars
CVSS 6.5