CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5102 matches found

Prion•added 2021/03/05 4:15 a.m.•18 views

Default configuration

SonicWall SSO-agent default configuration uses NetAPI to probe the associated IP's in the network, this client probing method allows a potential attacker to capture the password hash of the privileged user and potentially forces the SSO Agent to authenticate allowing an attacker to bypass firewal...

6.4CVSS8.1AI score0.00848EPSS

Exploits0References1Affected Software1

SonicWall•added 2021/03/04 11:48 p.m.•8 views

SonicWall SSO-Agent NetAPI Vulnerability allows an attacker to force SSO Agent authentication, potentially leading to firewall access control bypass

SonicWall SSO-agent default configuration uses Microsoft NetAPI to probe the associated IP's in the network, this client probing method allows a potential attacker to capture the password hash of the privileged user and potentially forces the SSO Agent to authenticate allowing an attacker to bypa...

8.2CVSS6.8AI score0.00848EPSS

Exploits0

Gitee•added 2021/03/02 10:7 p.m.•3 views

nightmare

This repository is an open-source project for teaching binary exploitation and reverse engineering skills through a series of challenges. It is a collection of CTF Capture The Flag challenges designed to help learners develop their skills in exploiting binaries and reversing assembly code. The...

7.1AI score

Exploits0

GithubExploit•added 2021/03/01 8:44 p.m.•1764 views

Exploit for Improper Input Validation in Linux Linux_Kernel

Linux: Heap-Based Type Confusion in L2CAP CVE-2020-12351 L...

8.8CVSS7.6AI score0.07693EPSS

Exploits5

IBM Security Bulletins•added 2021/03/01 7:11 p.m.•23 views

Security Bulletin: Datacap Taskmaster Capture is affected by vulnerable to AppScan's SSLv3 Client Hello with CBC cipher suites that contain TLS_FALLBACK_SCSV

Summary The server responded with a Handshake to AppScan's SSLv3 Client Hello with CBC cipher suites that contain TLSFALLBACKSCSV Vulnerability Details CVEID: CVE-2014-3566 DESCRIPTION: Multiple products could allow a remote attacker to obtain sensitive information, caused by a design error when...

4.3CVSS0.4AI score0.99999EPSS

Exploits7Affected Software1

Tenable Nessus•added 2021/02/25 12:0 a.m.•28 views

Fedora 32 : 1:wireshark (2021-f22ce64b3b)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-f22ce64b3b advisory. - Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file CVE-2021-22173 ...

7.5CVSS7.5AI score0.02747EPSS

Exploits2References3

CNVD•added 2021/02/18 12:0 a.m.•9 views

Wireshark Memory Disclosure Vulnerability (CNVD-2021-11314)

Wireshark is a network packet analyzer. Wireshark is a network packet analyzer that captures network packets and displays the most detailed packet information possible.Wireshark uses WinPCAP as an interface to exchange data packets directly with the network card. A memory leak vulnerability exist...

7.5CVSS6.7AI score0.02411EPSS

Exploits1References1