Lucene search
K

17 matches found

The Hacker News
The Hacker News
added 2024/09/10 3:48 p.m.43 views

CosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHub

The threat actor known as CosmicBeetle has debuted a new custom ransomware strain called ScRansom in attacks targeting small- and medium-sized businesses SMBs in Europe, Asia, Africa, and South America, while also likely working as an affiliate for RansomHub. "CosmicBeetle replaced its previously...

10CVSS7.4AI score0.99512EPSS
Exploits153
SUSE CVE
SUSE CVE
added 2023/02/15 3:37 a.m.3 views

SUSE CVE-2021-42287

unknown...

8.8CVSS7AI score0.74265EPSS
Exploits10References4
Kitploit
Kitploit
added 2022/09/06 12:30 p.m.65 views

noPac - Exploiting CVE-2021-42278 And CVE-2021-42287 To Impersonate DA From Standard Domain User

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user Changed from sam-the-admin. Usage SAM THE ADMIN CVE-2021-42278 + CVE-2021-42287 chain positional arguments: domain/username:password Account used to authenticate to DC. optional arguments: -h, --help show thi...

7.5CVSS8.8AI score0.74265EPSS
Exploits10References2
Check Point Advisories
Check Point Advisories
added 2022/04/27 12:0 a.m.10 views

Microsoft Windows Active Directory Privilege Escalation Multiple Vulnerabilities (CVE-2021-42278; CVE-2021-42287)

Multiple Privilege Escalation vulnerabilities exists in Microsoft Windows Active Directory. Successful exploitation of this vulnerability could allow a remote attacker to easily elevate their privilege to that of a domain admin once he compromise a regular user in the domain...

6.5CVSS3.9AI score0.74265EPSS
Exploits10
ThreatPost
ThreatPost
added 2021/12/21 4:46 p.m.96 views

Two Active Directory Bugs Lead to Easy Windows Domain Takeover

A proof-of-concept tool has been published that leverages two Windows Active Directory bugs fixed last month that, when chained, can allow easy Windows domain takeover. In a Monday alert, Microsoft urged organizations to immediately patch the pair of bugs, tracked as CVE-2021-42287 and...

8.8CVSS9AI score0.74265EPSS
Exploits10References20
Circl
Circl
added 2021/12/11 7:44 p.m.8 views

CVE-2021-42287

creationtimestamp| type| source ---|---|--- 2021-12-11 19:44:35+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/952 2021-12-11 20:46:13+00:00| published-proof-of-concept| https://t.me/BlueRedTeam/1328 2021-12-12 14:54:29+00:00| published-proof-of-concept| https://t.me/m1swarr1or/29...

8.8CVSS7AI score0.74265EPSS
Exploits10References58
GithubExploit
GithubExploit
added 2021/12/11 3:10 p.m.543 views

Exploit for CVE-2021-42278

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA f...

8.8CVSS8.4AI score0.74265EPSS
Exploits10
GithubExploit
GithubExploit
added 2021/12/11 3:10 p.m.6 views

Exploit for CVE-2021-42278

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA f...

8.8CVSS7AI score0.74265EPSS
Exploits10
NVD
NVD
added 2021/11/10 1:19 a.m.23 views

CVE-2021-42287

Active Directory Domain Services Elevation of Privilege Vulnerability...

8.8CVSS0.74265EPSS
Exploits10References2
Vulnrichment
Vulnrichment
added 2021/11/10 12:47 a.m.11 views

CVE-2021-42287 Active Directory Domain Services Elevation of Privilege Vulnerability

...

7.5CVSS7.2AI score0.74265EPSS
Exploits10References1
Cvelist
Cvelist
added 2021/11/10 12:47 a.m.28 views

CVE-2021-42287 Active Directory Domain Services Elevation of Privilege Vulnerability

...

7.5CVSS8.2AI score0.74265EPSS
Exploits10References1
CVE
CVE
added 2021/11/10 12:47 a.m.1352 views

CVE-2021-42287

CVE-2021-42287 is an Active Directory Domain Services privilege-escalation vulnerability. Connected documents corroborate it as part of a vulnerability family targeting domain controllers (CVE-2021-42278/42287) and describe exploitation via impersonation from a standard domain user to a DA, inclu...

8.8CVSS8.2AI score0.74265EPSS
In wildExploits10References2Affected Software5
ATTACKERKB
ATTACKERKB
added 2021/11/10 12:0 a.m.53 views

CVE-2021-42287

Active Directory Domain Services Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

8.8CVSS8AI score0.74265EPSS
In wildExploits10References2
OpenVAS
OpenVAS
added 2021/11/10 12:0 a.m.36 views

Microsoft Windows Multiple Vulnerabilities (KB5007192)

This host is missing a critical security update according to Microsoft KB5007192 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.74265EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.232 views

KB5007192: Windows 10 Version 1607 and Windows Server 2016 Security Update (November 2021)

The remote Windows host is missing security update 5007192. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-38631, CVE-2021-38665, CVE-2021-41371 - A remote code...

8.8CVSS7.8AI score0.74265EPSS
Exploits10References25
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.84 views

KB5007245: Windows Server 2012 Security Update (November 2021)

The remote Windows host is missing security update 5007245 or cumulative update 5007245. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-41366, CVE-2021-41367, CVE-2021-41370,...

8.8CVSS7.8AI score0.74265EPSS
Exploits10References18
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.126 views

KB5007233: Windows 7 and Windows Server 2008 R2 Security Update (November 2021)

The remote Windows host is missing security update 5007233 or cumulative update 5007236. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-38631, CVE-2021-38665,...

8.8CVSS7.8AI score0.74265EPSS
Exploits10References16
Rows per page
Query Builder