Lucene search
MitreCVELIST:CVE-2023-34634HistoryAug 01, 2023 - 12:00 a.m.
CVE-2023-34634
2023-08-0100:00:00
mitre
www.cve.org
3
greenshot
insecure deserialization
arbitrary code execution
.net content
file opening
EPSS
0.923
Percentile
99.0%
Greenshot 1.2.10 and below allows arbitrary code execution because .NET content is insecurely deserialized when a .greenshot file is opened.
References
packetstormsecurity.com/files/173825/GreenShot-1.2.10-Arbitrary-Code-Execution.html
packetstormsecurity.com/files/174222/Greenshot-1.3.274-Deserialization-Command-Execution.html
github.com/greenshot/greenshot/commit/a152e2883fca7f78051b3bd6b1e5cc57355cb44c
greenshot.atlassian.net/browse/BUG-3061
www.exploit-db.com/exploits/51633
Related
zdt
zdt
Greenshot 1.3.274 Deserialization / Command Execution Exploit
2023-08-17 00:00:00
prion
prion
Design/Logic Flaw
2023-08-01 14:15:00
osv
osv
CVE-2023-34634
2023-08-01 14:15:10
metasploit
metasploit
Greenshot .NET Deserialization Fileformat Exploit
2023-08-03 15:58:07
nvd
nvd
CVE-2023-34634
2023-08-01 14:15:10
packetstorm
packetstorm
GreenShot 1.2.10 Arbitrary Code Execution
2023-07-31 00:00:00
Greenshot 1.3.274 Deserialization / Command Execution
2023-08-17 00:00:00
cve
cve
CVE-2023-34634
2023-08-01 14:15:10
exploitdb
exploitdb
GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution
2023-07-28 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-08-18 17:22:46