CVE-2022-28316

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

CVE-2023-28316

Rocket.Chat 2FA bypass: enabling 2FA does not invalidate other active sessions, potentially allowing continued access to a compromised account. No patch version or explicit fix details are provided across the connected sources; monitor for updates (no public remediation confirmed).

CVE-2023-28316

A security vulnerability has been discovered in the implementation of 2FA on the rocket.chat platform, where other active sessions are not invalidated upon activating 2FA. This could potentially allow an attacker to maintain access to a compromised account even after 2FA is enabled...

CVE-2022-28316

creationtimestamp| type| source ---|---|--- 2023-03-29 22:22:07+00:00| seen| https://t.me/cibsecurity/61075...

CVE-2022-28316

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

CVE-2022-28316

Bentley MicroStation CONNECT 10.16.02.34 is affected by an out-of-bounds write in the IFC file parsing logic. Crafted data in an IFC file can trigger a write past the end of an allocated buffer, enabling remote code execution in the context of the current process. User interaction is required (ta...

Microsoft Patch Tuesday, September 2021 Edition

Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple has issued an emergency update to fix a flaw thats reportedly been abused to install spyware on iOS...

CVE-2021-28316

creationtimestamp| type| source ---|---|--- 2021-04-15 00:48:33+00:00| published-proof-of-concept| https://t.me/cKure/4856 2021-04-17 09:25:13+00:00| published-proof-of-concept| https://t.me/cKure/4895 2021-04-19 05:46:34+00:00| published-proof-of-concept|...

CVE-2021-28316

CVE-2021-28316 affects Windows WLAN AutoConfig, enabling a security feature bypass in that service. Reports indicate it is a local-attack surface with no public exploitation to date, and Microsoft released fixes as part of the September 2021 Patch Tuesday. The vulnerability’s impact is described ...

CVE-2021-28316 Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability

...

KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...

KB5001342: Windows 10 version 1809 / Windows Server 2019 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072, CVE-2021-28310 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Windows Event Tracing Elevati...

CVE-2020-28316

...

CVE-2020-28316

This CVE entry is rejected/not used; the ID does not reference an active vulnerability.