Rich Warren

7 exploits Active since Jul 2017
CVE-2021-31207 METASPLOIT MEDIUM ruby WORKING POC
Microsoft Exchange Server - Unrestricted File Upload
Microsoft Exchange Server Security Feature Bypass Vulnerability
CVSS 6.6
CVE-2022-41040 METASPLOIT HIGH ruby WORKING POC
Microsoft Exchange ProxyNotShell RCE
Microsoft Exchange Server Elevation of Privilege Vulnerability
CVSS 8.8
CVE-2021-34473 METASPLOIT CRITICAL ruby WORKING POC
Microsoft Exchange ProxyShell RCE
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS 9.1
CVE-2021-34523 METASPLOIT CRITICAL ruby WORKING POC
Microsoft Exchange Server - Privilege Escalation
Microsoft Exchange Server Elevation of Privilege Vulnerability
CVSS 9.0
CVE-2022-41082 METASPLOIT HIGH ruby WORKING POC
Microsoft Exchange Server - RCE
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS 8.0
CVE-2021-22986 METASPLOIT CRITICAL ruby WORKING POC
F5 iControl REST Unauthenticated SSRF Token Generation RCE
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3 amd BIG-IQ 7.1.0.x before 7.1.0.3 and 7.0.0.x before 7.0.0.2, the iControl REST interface has an unauthenticated remote command execution vulnerability. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.
CVSS 9.8
CVE-2017-8570 EXPLOITDB HIGH WORKING POC
Microsoft Office - Remote Code Execution
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0243.
CVSS 7.8