CVE-2020-3493

Cisco IOS XE Software for Catalyst 9000 Family Wireless Controllers (CAPWAP processing) is affected by multiple DoS vulnerabilities including CVE-2020-3493. The issue stems from insufficient validation of CAPWAP packets, allowing an unauthenticated, adjacent attacker to send malformed CAPWAP fram...

CVE-2020-3494 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerabilities

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of an affected...

CVE-2020-3494

Cisco CVE-2020-3494 affects Cisco IOS XE Software for the Catalyst 9800 Series Wireless Controllers and relates to multiple CAPWAP processing vulnerabilities caused by insufficient validation of CAPWAP packets. An unauthenticated, adjacent attacker can send malformed CAPWAP packets to trigger a c...

CVE-2020-3497 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerabilities

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition of an affected...

CVE-2020-3497

CVE-2020-3497 relates to multiple DoS vulnerabilities in the CAPWAP packet processing of Cisco IOS XE Software on the Catalyst 9800 Series Wireless Controllers. Affected component: CAPWAP handling in Cisco IOS XE; root cause: insufficient validation of CAPWAP packets, allowing an unauthenticated,...

Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers Multicast DNS Denial of Service Vulnerability

A vulnerability in the multicast DNS mDNS feature of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to improper validation of mDNS packets. An attacker...

Cisco IOS XE Software for Catalyst 9800 Series and Cisco AireOS Software for Cisco WLC Flexible NetFlow Version 9 Denial of Service Vulnerability

A vulnerability in the Flexible NetFlow Version 9 packet processor of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers and Cisco AireOS Software for Cisco Wireless LAN Controllers WLC could allow an unauthenticated, remote attacker to cause a denial of service DoS conditi...

VulnCheck KEV: CVE-2020-1472

Microsoft's Netlogon Remote Protocol MS-NRPC contains a privilege escalation vulnerability when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller. An attacker who successfully exploits the vulnerability could run a specially crafted application on...

Unpatched Domain Controllers Remain Vulnerable to Netlogon Vulnerability, CVE-2020-1472

The Cybersecurity and Infrastructure Security Agency CISA is aware of active exploitation of CVE-2020-1472, an elevation of privilege vulnerability in Microsoft’s Netlogon. A remote attacker can exploit this vulnerability to breach unpatched Active Directory domain controllers and obtain domain...

Exploit for CVE-2020-1472

CVE-2020-1472 - Zero-Logon POC !alt texthttps://github.com...

Basecamp: HEY.com email stored XSS

An attacker can bypass the HEY.com HTML sanitizer and inject arbitrary unsafe HTML in emails. To reproduce the bug you have to send raw HTML-formatted email. You can do it e.g. with the Sendmail tool on Linux. Example email: plain From: [email protected] To: [email protected] Subject: HackerOne test...

isf

This is an offensive tool for ICS exploitation. It is a Python-based framework for exploiting Industrial Control Systems ICS, similar to Metasploit. The framework, known as ICSSploit, is a fork of the routersploit project and is designed for ICS exploitation. It includes various modules for...

Exploit for Improper Input Validation in Microsoft

PoC exploit for CVE-2020-1350, a remote code execution vulnerability in Windows DNS Server. Achieves Domain Admin on Domain Controllers running Windows Server 2003 up to Windows Server 2019. The script is written in Bash and is designed to be run from a Linux host on a Windows Active Directory...

The vulnerability of the microprogrammed software of Schneider Electric’s spaceLYnk and Schneider Electric’s homeLYnk logic controllers lies in the lack of authentication attempt limits, allowing attackers to bypass the authentication process.

The vulnerability of the microprogramming software for Schneider Electric’s spaceLYnk and homeLYnk logic controllers is related to the absence of restrictions on authentication attempts. Exploiting this vulnerability allows a malicious actor to bypass the authentication process remotely...

CVE-2019-14630

Reliance on untrusted inputs in a security decision in some IntelR ThunderboltTM controllers may allow unauthenticated user to potentially enable information disclosure via physical access...

Information disclosure

Reliance on untrusted inputs in a security decision in some IntelR ThunderboltTM controllers may allow unauthenticated user to potentially enable information disclosure via physical access...

CVE-2019-14630

Reliance on untrusted inputs in a security decision in some IntelR ThunderboltTM controllers may allow unauthenticated user to potentially enable information disclosure via physical access...

Intel® Thunderbolt™ Controller Advisory

Summary: A potential security vulnerability in some Intel® Thunderbolt™ controllers may allow information disclosure. Intel is releasing prescriptive guidance to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2019-14630 Description: Reliance on untrusted inputs in a...

Authorization Bypass

samba is vulnerable to authorization bypass. The vulnerability exists in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a subtree would not automatically be taken away...

NSA Urgently Warns on Industrial Cyberattacks, Triconex Critical Bug

The U.S. National Security Agency NSA and the Cybersecurity and Infrastructure Security Agency CISA have issued an alert warning that adversaries could be targeting critical infrastructure across the U.S. Separately, ICS-CERT issued an advisory on a critical security bug in the Schneider Electric...