9 matches found
Cloud Filter Arbitrary File Creation / Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CVE-2020-1170 Cloud Filter Arbitrary File Creation EOP', 'Description' = %q The Cloud Filter driver, cldflt.sys, on Windows 10 v1803 and later,...
CVE-2020-17136
creationtimestamp| type| source ---|---|--- 2021-01-11 22:23:00+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/cve202017136.rb 2024-10-09 20:01:43+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2490 2025-02-06...
CVE-2020-17136
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability...
CVE-2020-17136
CVE-2020-17136 concerns the Windows Cloud Files Mini Filter Driver (cldflt.sys) and its Cloud Filter/mini-filter stack. The issue stems from the HsmpOpCreatePlaceholders path where FltCreateFileEx() is called without IO_FORCE_ACCESS_CHECK/OBJ_FORCE_ACCESS_CHECK flags, allowing user-controlled inp...
Microsoft Windows Multiple Vulnerabilities (KB4592449)
This host is missing a critical security update according to Microsoft KB4592449 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
KB4592446: Windows 10 Version 1803 December 2020 Security Update
The remote Windows host is missing security update 4592446. It is, therefore, affected by multiple vulnerabilities: - A security feature bypass vulnerability exists. An attacker can exploit this and bypass the security feature and perform unauthorized actions compromising the integrity of the...
KB4592438: Windows 10 Version 2004 December 2020 Security Update
The remote Windows host is missing security update 4592438. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2020-17095, CVE-2020-17096 - An memor...
KB4592440: Windows 10 Version 1809 and Windows Server 2019 December 2020 Security Update
The remote Windows host is missing security update 4592440. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962,...
KB4592449: Windows 10 Version 1903 and Windows 10 Version 1909 December 2020 Security Update
The remote Windows host is missing security update 4592449. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2020-16958, CVE-2020-16959, CVE-2020-16960, CVE-2020-16961, CVE-2020-16962,...