PT-2022-4350 · Crowdstrike · Crowdstrike Falcon

Name of the Vulnerable Software and Affected Versions: CrowdStrike Falcon versions 6.31.14505.0 through 6.44.15806 Description: A vulnerability was found in the Uninstallation Handler component of CrowdStrike Falcon, related to incorrect implementation of the uninstall protection function. This...

NEC ESMPRO Manager 路径遍历漏洞

NEC ESMPRO Manager is a product from Nippon Electric NEC for managing NEC servers. The product supports management monitoring of server CPU load, memory usage, disk usage, server's hard disk protection status and LAN traffic status. A security vulnerability exists in NEC ESMPRO Manager version 6....

CVE-2020-10917

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NEC ESMPRO Manager 6.42. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RMI service. The issue results from the lack of proper validation of...

CVE-2020-10917

Summary: CVE-2020-10917 affects NEC ESMPRO Manager 6.42. The vulnerability is in the RMI service where unvalidated user data enables deserialization of untrusted data, allowing remote attackers to execute arbitrary code with SYSTEM privileges without authentication. No in-wild exploit details are...

Mikrotik WinBox 6.42 Credential Disclosure

/ Title: Mikrotik WinBox 6.42 - Credential Disclosure golang edition Author: Maxim Yefimenko @slider Date: 2018-08-06 Sotware Link: https://mikrotik.com/download Vendor Page: https://www.mikrotik.com/ Version: 6.29 - 6.42 Tested on: Fedora 28 \ Debian 9 \ Windows 10 \ Android wherever it was...

CVE-2018-14847

CVE-2018-14847 is a WinBox directory-traversal vulnerability in MikroTik RouterOS that allowed unauthenticated remote file reads and, with authenticated access, file writes. Public PoCs/exploits (By the Way, WinboxExploit, MAC/RouterOS PoCs) demonstrate remote reading of the admin password and, i...