Lucene search
K

6 matches found

Check Point Advisories
Check Point Advisories
added 2022/08/02 12:0 a.m.34 views

IOBit IOTransfer Arbitrary File Write (CVE-2022-24562)

An arbitrary file write vulnerability exists in IOBit IOTransfer. Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to access arbitrary file...

10CVSS4.6AI score0.53224EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.443 views

IOTransfer 4.0 Remote Code Execution

Exploit Title: IOTransfer V4 – Remote Code Execution RCE Date: 06/22/2022 Exploit Author: Tomer Peled Vendor Homepage: https://www.iobit.com Software Link: https://iotransfer.itopvpn.com/ Version: V4 and onward Tested on: Windows 10 CVE : 2022-24562 References:...

10CVSS0.2AI score0.53224EPSS
Exploits3
0day.today
0day.today
added 2022/07/21 12:0 a.m.336 views

IOTransfer 4.0 - Remote Code Execution Exploit

Exploit Title: IOTransfer V4 – Remote Code Execution RCE Exploit Author: Tomer Peled Vendor Homepage: https://www.iobit.com Software Link: https://iotransfer.itopvpn.com/ Version: V4 and onward Tested on: Windows 10 CVE : 2022-24562 References:...

9.8CVSS0.3AI score0.53224EPSS
Exploits3
Exploit DB
Exploit DB
added 2022/07/21 12:0 a.m.361 views

IOTransfer 4.0 - Remote Code Execution (RCE)

Exploit Title: IOTransfer V4 – Remote Code Execution RCE Date: 06/22/2022 Exploit Author: Tomer Peled Vendor Homepage: https://www.iobit.com Software Link: https://iotransfer.itopvpn.com/ Version: V4 and onward Tested on: Windows 10 CVE : 2022-24562 References:...

7.4AI score
Exploits0
OSV
OSV
added 2022/06/16 7:15 p.m.7 views

CVE-2022-24562

In IOBit IOTransfer 4.3.1.1561, an unauthenticated attacker can send GET and POST requests to Airserv and gain arbitrary read/write access to the entire file-system with admin privileges on the victim's endpoint, which can result in data theft and remote code execution...

9.8CVSS7.7AI score0.53224EPSS
Exploits3References4
CVE
CVE
added 2022/06/16 6:31 p.m.812 views

CVE-2022-24562

IOTransfer 4.3.1.1561 exposes an unauthenticated remote-access flaw in the Airserv component. An attacker can send GET/POST requests to Airserv and gain arbitrary read/write access to the entire filesystem with admin privileges, enabling potential data theft and remote code execution. The issue i...

10CVSS9.9AI score0.53224EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder