CVE-2021-20134

Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set an arbitrary file on the router's filesystem as the log file used by either Quagga service zebra or ripd. Subsequen...

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

log4j Spring vulnerable POC This is a POC for a simple spring...

Exploit for CVE-2021-43224

CVE-2021-43224-POC Windows Common Log File System Driver...

Garrett Metal Detectors 路径遍历漏洞

Garrett Metal Detectors is a walk-in metal detector from Garrett U.S. Garrett Metal Detectors has a path traversal vulnerability that can be exploited by attackers to delete arbitrary files in the del.CNT|.log file deletion command with specially crafted command line parameters...

The vulnerability of the FortiSIEM Windows Agent security management system lies in the fact that user credentials are stored as plain-text files in log files. This allows attackers to gain unauthorized access to the protected information.

The vulnerability of the FortiSIEM Windows Agent security management system lies in the fact that account data is stored as plain-text files in log files. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Microsoft Windows Event Tracing Remote Code Execution Vulnerability

Windows Event Tracing ETW is an efficient kernel-level tracing tool that allows you to log kernel- or application-defined events to a log file.Microsoft Windows Event Tracing is vulnerable to remote code execution. An attacker could exploit this vulnerability to execute code on the target host...

CVE-2021-43226

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

CVE-2021-43207

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

CVE-2021-43224

Windows Common Log File System Driver Information Disclosure Vulnerability...

CVE-2021-43224

Windows Common Log File System Driver Information Disclosure Vulnerability...

CVE-2021-43226

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

CVE-2021-43207

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

Information disclosure

Windows Common Log File System Driver Information Disclosure Vulnerability...

Privilege escalation

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

Privilege escalation

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

CVE-2021-43226 Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

CVE-2021-43226

CVE-2021-43226 pertains to the Windows Common Log File System (CLFS) Driver. The available documents identify a local privilege-escalation vulnerability in CLFS that could allow a privileged attacker on a Windows host to gain higher privileges. The CVE is listed in the KEV catalog as a Microsoft ...

CVE-2021-43224 Windows Common Log File System Driver Information Disclosure Vulnerability

...

CVE-2021-43207 Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

CVE-2021-43207

Technical details (affected component, root cause, exploitability, and fixes) for CVE-2021-43207 are not provided in the connected documents. Only the vulnerability name and CVSS metrics are present. Monitor official disclosures for specifics.