Windows Cloud Files Mini Filter Driver EoP (MiniPlasma) (Direct Check) (CVE-2020-17103)

Binary data windowsminiplasmaCVE-2020-17103.nbin...

Exploit for Improper Privilege Management in Microsoft

MiniPlasma Detection CVE-2020-17103 Sigma detection rule fo...

CVE-2020-17103

creationtimestamp| type| source ---|---|--- 2026-05-15 03:00:06+00:00| published-proof-of-concept| Telegram/4tIKexrP1B7eYtOW91-QaKQ8EIqNMri3pu2CJIQ1mA899I 2026-05-16 09:09:16+00:00| seen| https://t.me/P0x3k1N73LL1G3NC3/354 2026-05-16 09:41:16+00:00| seen|...

CVE-2020-17103 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

...

CVE-2020-17103

CVE-2020-17103 concerns Elevation of Privilege in the Windows Cloud Files Mini Filter Driver (cldflt.sys). The CVE entry cites a Windows Cloud Files mini-filter vulnerability with local, low-privilege access and high-impact consequences, addressed by Microsoft in December 2020 (KB4592449 and rela...

Microsoft Windows Multiple Vulnerabilities (KB4592449)

This host is missing a critical security update according to Microsoft KB4592449 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

KB4592446: Windows 10 Version 1803 December 2020 Security Update

The remote Windows host is missing security update 4592446. It is, therefore, affected by multiple vulnerabilities: - A security feature bypass vulnerability exists. An attacker can exploit this and bypass the security feature and perform unauthorized actions compromising the integrity of the...

KB4592440: Windows 10 Version 1809 and Windows Server 2019 December 2020 Security Update

The remote Windows host is missing security update 4592440. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962,...

KB4592449: Windows 10 Version 1903 and Windows 10 Version 1909 December 2020 Security Update

The remote Windows host is missing security update 4592449. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962,...

KB4592438: Windows 10 Version 2004 December 2020 Security Update

The remote Windows host is missing security update 4592438. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2020-17095, CVE-2020-17096 - An memor...

CVE-2019-17103

An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for Mac allows an attacker to elevate permissions to read protected directories. This issue affects: Bitdefender AV for Mac versions prior to 8.0.0...

CVE-2019-17103

CVE-2019-17103 concerns an Incorrect Default Permissions issue in the BDLDaemon component of Bitdefender AV for Mac, enabling an attacker to elevate privileges to read protected directories. Affected software: Bitdefender AV for Mac, prior to version 8.0.0. Root cause: incorrect default permissio...

CVE-2019-17103 Get-task-allow entitlement via BDLDaemon on macOS

An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for Mac allows an attacker to elevate permissions to read protected directories. This issue affects: Bitdefender AV for Mac versions prior to 8.0.0...

CVE-2018-17103

An issue was discovered in GetSimple CMS v3.3.13. There is a CSRF vulnerability that can change the administrator's password via admin/settings.php. NOTE: The vendor reported that the PoC was sending a value for the nonce parameter...

CVE-2018-17103

GetSimple CMS v3.3.13 is affected by a CSRF vulnerability that can change the administrator password via admin/settings.php. The issue is evidenced in multiple sources (NVD/CVE-2018-17103, CNVD-2018-19747, OSV, CVE records). The root cause is a CSRF flaw possibly related to nonce handling, enabli...

CVE-2017-17103

Fiyo CMS 2.0.7 has SQL injection in /apps/appuser/sysuser.php via $POSTname or $POSTemail. This vulnerability can lead to escalation from normal user privileges to administrator privileges...

CVE-2017-17103

CVE-2017-17103 affects Fiyo CMS 2.0.7 with an SQL injection in the file /apps/app_user/sys_user.php via POST parameters name or email, enabling escalation from a normal user to administrator privileges. This vulnerability is documented across multiple sources (NVD/NVD-derived entries and CNVD-201...