15 matches found
Exploit for Untrusted Pointer Dereference in Microsoft
CV...
📄 Microsoft Windows 10.0.17763.5458 Kernel IOCTL Access Control
Microsoft Windows version 10.0.17763.5458 Kernel IOCTL access control proof of concept Metasploit module. ============================================================================================================================================= | Title : Windows 10.0.17763.5458 Kernel IOCTL...
Microsoft Windows 11 - Kernel Privilege Escalation
Exploit Title: Microsoft Windows 11 - Kernel Privilege Escalation Date: 2025-04-16 Exploit Author: Milad Karimi Ex3ptionaL Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL Tested on: Win, Ubuntu CVE : CVE-2024-21338 include "pch.hpp" include "poc.hpp" // This...
Exploit for Untrusted Pointer Dereference in Microsoft
Exploit...
Microsoft Windows 10.0.17763.5458 Privilege Escalation
Exploit Title : EXPLOIT Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability CVE-2024-21338 This module requires Metasploit: https://metasploit.com/download Author : E1.Coders Contact : E1.Coders at Mail dot RU Security Risk : High require 'msf/core' class...
Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation Exploit
Exploit Title : Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation Exploit Author: E1 Coders CVE: CVE-2024-21338 require 'msf/core' class MetasploitModule 'CVE-2024-21338 Exploit', 'Description' = 'This module exploits a vulnerability in FooBar version 1.0. It may lead to remote code...
Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation
Exploit Title : Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation Exploit Author: E1 Coders CVE: CVE-2024-21338 require 'msf/core' class MetasploitModule 'CVE-2024-21338 Exploit', 'Description' = 'This module exploits a vulnerability in FooBar version 1.0. It may lead to...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-21338 Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability These types of vulnerabilities are frequent attack vectors for...
Lazarus Hackers Exploited Windows Kernel Flaw as Zero-Day in Recent Attacks
The notorious Lazarus Group actors exploited a recently patched privilege escalation flaw in the Windows Kernel as a zero-day to obtain kernel-level access and disable security software on compromised hosts. The vulnerability in question is CVE-2024-21338 CVSS score: 7.8, which can permit an...
CVE-2024-21338
creationtimestamp| type| source ---|---|--- 2024-02-13 20:06:41+00:00| seen| https://t.me/ctinow/184106 2024-02-28 20:16:57+00:00| seen| https://t.me/ctinow/195824 2024-02-29 09:56:59+00:00| seen| https://t.me/ctinow/196429 2024-02-29 12:24:27+00:00| exploited| https://t.me/thehackernews/4619...
CVE-2024-21338
CVE-2024-21338 is a Windows kernel local privilege escalation caused by an exposed IOCTL with insufficient access control in the appid.sys component. The vulnerability enables local attackers with LOW privileges and no user interaction to escalate to kernel to access high-privilege operations (CV...
KLA63958 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, gain privileges, spoof user interface, bypass security restrictions. Below is a complete list of...
CVE-2024-21338
Windows Kernel Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...
KB5034763: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (February 2024)
The remote Windows host is missing security update 5034763. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
KB5034769: Windows Server version 23H2 Security Update (February 2024)
The remote Windows host is missing security update 5034769. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...