← Back to News Iceland Security Dashboard Browse all tags
T1190

Exploit Public-Facing App

View on attack.mitre.org →

CVEs tagged with this technique (50)

CVE-2026-20131 🚨 CVSS 10.0 Cisco / Secure Firewall Management Center (FMC)
CVE-2026-20131 is a critical remote code execution vulnerability in Cisco Secure Firewall Management Center (FMC) Software, classified as insecure deserializati…
CVE-2026-20182 🚨 CVSS 10.0 Cisco / Catalyst SD-WAN
CVE-2026-20182 is a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager, allowing unauthenticated remote attackers to o…
CVE-2026-20127 🚨 CVSS 10.0 Cisco / Catalyst SD-WAN Controller and Manager
CVE-2026-20127 is a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager that allows unauthenticated remote attackers to…
CVE-2026-21643 🚨 CVSS 9.8 Fortinet / FortiClient EMS
CVE-2026-21643 is a critical SQL injection vulnerability (CWE-89) in Fortinet FortiClientEMS 7.4.4, allowing unauthenticated attackers to execute unauthorized c…
CVE-2026-35616 🚨 CVSS 9.8 Fortinet / FortiClient EMS
CVE-2026-35616 is a critical improper access control vulnerability (CWE-284) in Fortinet FortiClientEMS versions 7.4.5 through 7.4.6, allowing unauthenticated a…
CVE-2026-1281 🚨 CVSS 9.8 Ivanti / Endpoint Manager Mobile (EPMM)
CVE-2026-1281 is a critical code injection vulnerability in Ivanti Endpoint Manager Mobile that allows unauthenticated remote code execution. The vulnerability …
CVE-2026-24858 🚨 CVSS 9.8 Fortinet / Multiple Products
CVE-2026-24858 is a critical authentication bypass vulnerability affecting multiple versions of Fortinet FortiAnalyzer, FortiManager, FortiOS, FortiProxy, and F…
CVE-2026-41940 🚨 CVSS 9.8 WebPros / cPanel & WHM and WP2 (WordPress Squared)
CVE-2026-41940 is a critical authentication bypass vulnerability (CWE-306) affecting cPanel and WHM versions after 11.40, allowing unauthenticated remote attack…
CVE-2026-0300 🚨 CVSS 9.8 Palo Alto Networks / PAN-OS
CVE-2026-0300 is a critical buffer overflow vulnerability (CWE-787) in the User-ID Authentication Portal of Palo Alto Networks PAN-OS, allowing unauthenticated …
CVE-2026-42208 🚨 CVSS 9.8 BerriAI / LiteLLM
CVE-2026-42208 is a critical SQL injection vulnerability (CWE-89) in LiteLLM versions 1.81.16 through 1.83.6, where unauthenticated attackers can inject malicio…
CVE-2026-8398 🚨 CVSS 9.8 Daemon / Daemon Tools Lite
CVE-2026-8398 is a critical supply chain vulnerability (CWE-506) affecting DAEMON Tools Lite versions 12.5.0.2421 through 12.5.0.2434, where attackers trojanize…
CVE-2026-1340 🚨 CVSS 9.8 Ivanti / Endpoint Manager Mobile (EPMM)
CVE-2026-1340 is a critical code injection vulnerability (CWE-94) in Ivanti Endpoint Manager Mobile that allows unauthenticated remote code execution. The vulne…
CVE-2026-45321 🚨 CVSS 9.6 TanStack / TanStack
CVE-2026-45321 is a critical supply-chain vulnerability affecting 42 TanStack packages, including TanStack/router, where 84 malicious versions were published to…
CVE-2026-5281 🚨 CVSS 8.8 Google / Dawn
CVE-2026-5281 is a high-severity memory corruption vulnerability (CWE-416) in Google's Dawn component, affecting versions prior to 146.0.7680.178. It involves a…
CVE-2026-25108 🚨 CVSS 8.8 Soliton Systems K.K / FileZen
CVE-2026-25108 is a command injection vulnerability in Soliton Systems K.K.'s FileZen product, specifically affecting the Antivirus Check Option when enabled. I…
CVE-2026-2441 🚨 CVSS 8.8 Google / Chromium
CVE-2026-2441 is a high-severity memory corruption vulnerability (CWE-416) in Google Chrome prior to version 145.0.7632.75, specifically involving a use-after-f…
CVE-2026-34197 🚨 CVSS 8.8 Apache / ActiveMQ
CVE-2026-34197 is a high-severity code injection vulnerability in Apache ActiveMQ (versions before 5.19.4 and 6.0.0-6.2.3) caused by improper input validation i…
CVE-2026-34621 🚨 CVSS 8.6 Adobe / Acrobat and Reader
Adobe Acrobat Reader versions 24.001.30356, 26.001.21367, and earlier are affected by a Prototype Pollution vulnerability (CWE-1321) that allows for arbitrary c…
CVE-2026-1603 🚨 CVSS 8.6 Ivanti / Endpoint Manager (EPM)
CVE-2026-1603 is a high-severity authentication bypass vulnerability in Ivanti Endpoint Manager versions prior to 2024 SU5, allowing remote unauthenticated atta…
CVE-2026-22719 🚨 CVSS 8.1 Broadcom / VMware Aria Operations
CVE-2026-22719 is a high-severity command injection vulnerability (CWE-77) in VMware Aria Operations that allows unauthenticated remote code execution during su…
CVE-2026-3502 🚨 CVSS 7.8 TrueConf / Client
CVE-2026-3502 is a supply-chain vulnerability in TrueConf Client where the application downloads and applies updates without verification, allowing an attacker …
CVE-2026-20128 🚨 CVSS 7.5 Cisco / Catalyst SD-WAN Manager
CVE-2026-20128 is a high-severity vulnerability in Cisco Catalyst SD-WAN Manager affecting versions prior to 20.18, allowing unauthenticated remote attackers to…
CVE-2026-6973 🚨 CVSS 7.2 Ivanti / Endpoint Manager Mobile (EPMM)
CVE-2026-6973 is a high-severity (CVSS 7.2) remote code execution vulnerability in Ivanti EPMM versions prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1, caused by imp…
CVE-2026-20122 🚨 CVSS 5.4 Cisco / Catalyst SD-WAN Manger
CVE-2026-20122 is a medium severity vulnerability (CVSS 5.4) in Cisco Catalyst SD-WAN Manager affecting the API interface. It allows authenticated remote attack…
CVE-2017-15944 🚨 Palo Alto Networks / PAN-OS
CVE-2017-15944 is a critical remote code execution vulnerability in Palo Alto Networks PAN-OS versions before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, …
CVE-2018-14847 🚨 MikroTik / RouterOS
CVE-2018-14847 is a critical directory traversal vulnerability in MikroTik RouterOS through version 6.42 affecting the WinBox interface. It allows unauthenticat…
CVE-2018-2628 🚨 Oracle / WebLogic Server
CVE-2018-2628 is a critical vulnerability in Oracle WebLogic Server versions 10.3.6.0, 12.1.3.0, 12.2.1.2, and 12.2.1.3, classified under CWE-502. It allows an …
CVE-2026-32202 🚨 Microsoft / Windows
CVE-2026-32202 is a vulnerability in Microsoft Windows that is currently listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the w…
CVE-2025-29635 🚨 D-Link / DIR-823X
CVE-2025-29635 is a command injection vulnerability (CWE-77) affecting D-Link DIR-823X firmware versions 240126 and 240802, allowing authorized attackers to exe…
CVE-2026-39987 🚨 Marimo / Marimo
CVE-2026-39987 is a critical Pre-Auth Remote Code Execution vulnerability in Marimo prior to version 0.23.0, classified under CWE-306. The flaw stems from the /…
CVE-2023-27351 🚨 PaperCut / NG/MF
CVE-2023-27351 is a high-severity authentication bypass vulnerability in PaperCut NG 22.0.5 (Build 63914) caused by improper implementation of the authenticatio…
CVE-2025-32975 🚨 Quest / KACE Systems Management Appliance (SMA)
CVE-2025-32975 is a critical authentication bypass vulnerability (CVSS 10.0) in Quest KACE Systems Management Appliance versions 13.0.x through 14.1.x, allowing…
CVE-2024-27199 🚨 JetBrains / TeamCity
CVE-2024-27199 is a path traversal vulnerability in JetBrains TeamCity versions prior to 2023.11.4 that allows attackers to perform limited administrative actio…
CVE-2009-0238 🚨 Microsoft / Office
CVE-2009-0238 is a remote code execution vulnerability affecting Microsoft Office Excel versions 2000 through 2007 and Excel Viewer, caused by an invalid object…
CVE-2012-1854 🚨 Microsoft / Visual Basic for Applications (VBA)
CVE-2012-1854 is an untrusted search path vulnerability affecting Microsoft Office 2003 SP3, 2007 SP2/SP3, 2010 Gold/SP1, and the Summit Microsoft Visual Basic …
CVE-2020-9715 🚨 Adobe / Acrobat
CVE-2020-9715 is a use-after-free vulnerability (CWE-416) affecting Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171…
CVE-2026-33634 🚨 Aquasecurity / Trivy
CVE-2026-33634 involves a supply chain attack against Aquasecurity's Trivy ecosystem, where compromised credentials were used to publish malicious versions of t…
CVE-2026-33017 🚨 Langflow / Langflow
Langflow versions prior to 1.9.0 contain a critical remote code execution vulnerability in the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint. The flaw a…
CVE-2025-32432 🚨 Craft CMS / Craft CMS
Craft CMS versions 3.0.0-RC1 through 3.9.14, 4.0.0-RC1 through 4.14.14, and 5.0.0-RC1 through 5.6.16 are vulnerable to remote code execution due to improper con…
CVE-2025-54068 🚨 Laravel / Livewire
CVE-2025-54068 is a critical remote code execution vulnerability in Livewire v3 up to v3.6.3, affecting the Laravel vendor's product. The flaw stems from improp…
CVE-2025-31277 🚨 Apple / Multiple Products
CVE-2025-31277 is a memory corruption vulnerability affecting Apple products including Safari 18.6, iOS 18.6, iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, vision…
CVE-2025-47813 🚨 Wing FTP Server / Wing FTP Server
CVE-2025-47813 is a medium severity vulnerability (CVSS 4.3) in Wing FTP Server versions prior to 7.4.4 that allows an attacker to disclose the full local insta…
CVE-2026-3910 🚨 Google / Chromium V8
CVE-2026-3910 is a high-severity vulnerability in Google Chrome prior to version 146.0.7680.75, specifically affecting the V8 engine. It allows a remote attacke…
CVE-2026-3909 🚨 Google / Skia
CVE-2026-3909 is a high-severity memory corruption vulnerability (CWE-787) in Skia, the graphics engine used by Google Chrome prior to version 146.0.7680.75. It…
CVE-2025-68613 🚨 n8n / n8n
CVE-2025-68613 is a critical Remote Code Execution vulnerability in n8n versions 0.211.0 through 1.120.3, 1.121.0, and 1.121.9, caused by insufficient isolation…
CVE-2025-26399 🚨 SolarWinds / Web Help Desk
SolarWinds Web Help Desk contains a critical unauthenticated AjaxProxy deserialization vulnerability (CVE-2025-26399) that allows remote code execution on the h…
CVE-2017-7921 🚨 Hikvision / Multiple Products
CVE-2017-7921 is a critical improper authentication vulnerability (CWE-287) affecting multiple Hikvision DS-2CD and DS-2DF series devices running firmware versi…
CVE-2021-22681 🚨 Rockwell / Multiple Products
CVE-2021-22681 is a critical authentication bypass vulnerability in Rockwell Automation Studio 5000 Logix Designer (v21+) and RSLogix 5000 (v16-20) affecting va…
CVE-2023-43000 🚨 Apple / Multiple Products
CVE-2023-43000 is a memory corruption vulnerability (use-after-free) affecting Apple products including macOS Ventura 13.5, iOS 16.6, iPadOS 16.6, Safari 16.6, …
CVE-2021-30952 🚨 Apple / Multiple Products
CVE-2021-30952 is an integer overflow vulnerability (CWE-190) affecting Apple products including tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2, iPadOS 1…

Articles tagged with T1190 (30)

CRITICAL
WP Maps Pro bug exploited to create admin accounts on WordPress sites
BleepingComputer · 2026-05-31
HIGH
Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Microsoft Security Response Center · 2026-05-31
HIGH
Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Microsoft Security Response Center · 2026-05-31
HIGH
Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Microsoft Security Response Center · 2026-05-31
MEDIUM
CVE-2024-22018 A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-read flag is used. This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.lstat API. As a result, malicious actors can retrieve stats from files that they do not have explicit read access to. This vulnerability affects all users using the experimental permission model in Node.js 20 and Node.js 21. Please note that at the time this CVE was issued, the permission model is an experimental feature of Node.js.
Microsoft Security Response Center · 2026-05-31
HIGH
Week in review: Infostealer dropped via FortiClient EMS flaw, exploited Trend Micro Apex One flaw
Help Net Security · 2026-05-31
HIGH
CVE-2026-21711 A flaw in Node.js Permission Model network enforcement leaves Unix Domain Socket (UDS) server operations without the required permission checks, while all comparable network paths correctly enforce them. As a result, code running under `--permission` without `--allow-net` can create and expose local IPC endpoints, allowing communication with other processes on the same host outside of the intended network restriction boundary. This vulnerability affects Node.js **25.x** processes using the Permission Model where `--allow-net` is intentionally omitted to restrict network access. Note that `--allow-net` is currently an experimental feature.
Microsoft Security Response Center · 2026-05-31
HIGH
CVE-2025-23167 A flaw in Node.js 20's HTTP parser allows improper termination of HTTP/1 headers using `\r\n\rX` instead of the required `\r\n\r\n`. This inconsistency enables request smuggling, allowing attackers to bypass proxy-based access controls and submit unauthorized requests. The issue was resolved by upgrading `llhttp` to version 9, which enforces correct header termination. Impact: * This vulnerability affects only Node.js 20.x users prior to the `llhttp` v9 upgrade.
Microsoft Security Response Center · 2026-05-31
MEDIUM
CVE-2026-40510 OpenSC < 0.27.0-rc1 Stack Buffer Overflow via piv_process_history() in card-piv.c
Microsoft Security Response Center · 2026-05-31
MEDIUM
CVE-2026-40034 gitoxide - Command Injection via Partial .gitmodules Override in gix-submodule
Microsoft Security Response Center · 2026-05-31
MEDIUM
CVE-2026-48962 IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-controlled output glob
Microsoft Security Response Center · 2026-05-31
MEDIUM
CVE-2026-9804 Kubevirt: kubevirt: vmexport directory symlink escape enables exporter pod file read
Microsoft Security Response Center · 2026-05-31
HIGH
LLMReaper - DOM Based AI Conversation Exfiltration via Browser Extensions
Reddit r/netsec · 2026-05-31
CRITICAL
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
BleepingComputer · 2026-05-30
CRITICAL
Exploit Code Published for Critical Flowise RCE Vulnerability
SecurityWeek · 2026-05-30
HIGH
NCSC-2026-0172 [1.00] [H/H] Kwetsbaarheid verholpen in Palo Alto Networks PAN-OS en Prisma Access
NCSC Netherlands · 2026-05-30
CRITICAL
Cybercrime Crew Claims It Hacked Mike Lindell’s MyPillow
Wired Security · 2026-05-30
CRITICAL
PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
The Hacker News · 2026-05-30
HIGH
Russia-aligned crime group Greyvibe extensively uses AI in attacks
CSO Online · 2026-05-30
MEDIUM
[webapps] YAMCS yamcs-core 5.12.7 - LDAP Injection
Exploit-DB · 2026-05-30
MEDIUM
[webapps] YAMCS yamcs-core 5.12.7 - User Enumeration
Exploit-DB · 2026-05-30
MEDIUM
[webapps] YAMCS yamcs-core 5.12.7 - No Rate Limiting
Exploit-DB · 2026-05-30
HIGH
[remote] Notepad++ 8.9.6 - Arbitrary Code Execution
Exploit-DB · 2026-05-30
HIGH
AI helps Russian-speaking GreyVibe run five parallel attack chains on Ukrainian targets
SC Media · 2026-05-29
CRITICAL
Metasploit Wrap Up 05/29/2026
Rapid7 Research · 2026-05-29
HIGH
NCSC-2026-0171 [1.00] [H/M] Kwetsbaarheid verholpen in Starlette
NCSC Netherlands · 2026-05-29
CRITICAL
No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out
The Register Security · 2026-05-29
CRITICAL
Zapier security flaws could have exposed millions of user accounts
SC Media · 2026-05-29
HIGH
New threat actor JINX-0164 targets crypto firms with macOS malware
SC Media · 2026-05-29
HIGH
North Korean hackers Kimsuky target South Korea with new malware variants
SC Media · 2026-05-29