Exploit for XML Entity Expansion in Cisco Secure_Endpoint

CVE-2023-20052 Exploit This repository contains a functional...

Cisco Secure Endpoint 安全漏洞

Cisco Secure Endpoint Cisco AMP for Endpoints is a terminal application developed by Cisco, Inc., that integrates static and dynamic malware analysis along with threat intelligence. There is a security vulnerability in Cisco Secure Endpoint, which stems from improper error handling during the...

EUVD-2023-24263

Malicious code in bioql PyPI...

The vulnerability of the ClamAV software component, which is used for protecting against malicious programs on Cisco Secure Endpoint Connectors, allows a hacker to trigger a service failure.

The vulnerability of the ClamAV software component for protecting against malicious programs in Cisco Secure Endpoint Connectors is related to reading data beyond the buffer boundaries of memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

Cisco Secure Endpoint Connector Installed (macOS)

Binary data ciscosecureendpointconnectormacinstalled.nbin...

Cisco Secure Endpoint Connector Installed (Linux)

Binary data ciscosecureendpointconnectornixinstalled.nbin...

CVE-2023-20084

A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could...

Cisco Secure Endpoint ClamAV OLE2 File Format Decryption DoS (cisco-sa-clamav-ole2-H549rphA)

According to its self-reported version, Cisco Secure Endpoint Connector for ClamAV is affected by a vulnerability. - A vulnerability in the Object Linking and Embedding 2 OLE2 decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition o...

Cisco Secure Endpoint Buffer Overflow Vulnerability

Cisco Secure Endpoint Cisco AMP for Endpoints is the United States Cisco Cisco company's set of integrated static and dynamic malware analysis and threat intelligence in one of the endpoint applications. A buffer overflow vulnerability exists in the Cisco Secure Endpoint Connector for Windows...

Cisco Secure Endpoint DoS (cisco-sa-clamav-dos-FTkhqMWZ)

A vulnerability in the Cisco Secure Endpoint AutoIt module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to a logic error in the memory management of an affected device. An attacker could explo...

Cisco Secure Endpoint 缓冲区错误漏洞

Cisco Secure Endpoint Cisco AMP for Endpoints is the United States Cisco Cisco company's set of integrated static and dynamic malware analysis and threat intelligence in one of the endpoint applications. A buffer overflow vulnerability exists in the Cisco Secure Endpoint Connector for Windows...

Cisco Secure Endpoint Installed (Windows)

Binary data ciscosecureendpointwininstalled.nbin...

The vulnerability of the software for protecting against Cisco Secure Endpoint Connector for Windows against malware lies in synchronization errors when using a shared resource (“Race Condition”), allowing a malicious actor to trigger a service failure.

The vulnerability of the Cisco Secure Endpoint Connector for Windows anti-virus software relates to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to cause service failures...

CVE-2023-20084

A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could...

CVE-2023-20084

A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could...

CVE-2023-20084

A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could...

PT-2023-7120 · Cisco · Cisco Secure Endpoint Connector For Windows

Name of the Vulnerable Software and Affected Versions: Cisco Secure Endpoint Connector for Windows affected versions not specified Description: The issue is related to a timing problem between various software components, which can be exploited by an authenticated, local attacker to evade endpoin...

The vulnerability of the AutoIt module in the ClamAV antivirus software package allows a malicious actor to trigger a service failure. This vulnerability exists in the Cisco Secure Endpoint Connector for Windows protection software.

The vulnerability of the AutoIt module in the ClamAV antivirus software package affects systems for protecting against malicious programs. This issue is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Exploit for XML Entity Expansion in Cisco Secure_Endpoint

CVE-2023-20052 CVE-2023-20052, information leak vulnerability...

ClamAV HFS+ Partition Scanning Buffer Overflow Vulnerability Affecting Cisco Products: February 2023

On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code...