4561 matches found
CVE-2021-43226
Windows Common Log File System Driver Elevation of Privilege Vulnerability Recent assessments: ccondon-r7 at August 07, 2024 1:06pm UTC reported: A July 2024 bulletin from multiple U.S. government agencies indicates that North Korean state-sponsored attackers have demonstrated interest in this...
Windows Common Log File System Driver Information Disclosure Vulnerability
...
Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
Microsoft Windows Common Log File System Driver 权限许可和访问控制问题漏洞
The Microsoft Windows Common Log File System Driver is Microsoft's Common Log File System CLFS API that provides a high-performance, general-purpose log file subsystem that can be used by specialized client applications and shared by multiple clients to optimize logging and access. access. A...
PT-2021-6162 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an information disclosure vulnerability in the Windows Common Log File System Driver. It may allow an attacker to gain unauthorized access to protected information b...
Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2021-43207)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
PT-2021-5695 · Microsoft · Windows Common Log File System Driver +1
Name of the Vulnerable Software and Affected Versions: Windows Common Log File System Driver affected versions not specified Description: The issue is related to insufficient access control in the Windows Common Log File System Driver of the Windows operating system. Exploitation of this issue ma...
PT-2021-6314
Name of the Vulnerable Software and Affected Versions Windows Common Log File System Driver affected versions not specified Description The issue is related to insecure privilege management in the Windows Common Log File System Driver of the Windows operating system. Exploitation of this issue ma...
Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2021-43226)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Common Log File System Driver 权限许可和访问控制问题漏洞
The Microsoft Windows Common Log File System Driver is Microsoft's Common Log File System CLFS API that provides a high-performance, general-purpose log file subsystem that can be used by specialized client applications and shared by multiple clients to optimize logging and access. access. A...
Microsoft Windows Common Log File System Driver 信息泄露漏洞
The Microsoft Windows Common Log File System Driver is Microsoft's Common Log File System CLFS API that provides a high-performance, general-purpose log file subsystem that can be used by specialized client applications and shared by multiple clients to optimize logging and access. access. An...
CVE-2021-40007
There is an information leak vulnerability in eCNS280TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure...
CVE-2021-40007
There is an information leak vulnerability in eCNS280TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure...
DLLHijackingScanner - This Is A PoC For Bypassing UAC Using DLL Hijacking And Abusing The "Trusted Directories" Verification
This is a PoC for bypassing UAC using DLL hijacking and abusing the "Trusted Directories" verification. Generate Header from CSV The python script CsvToHeader.py can be used to generate a header file. By default it will use the CSV file dllhijackingcandidates.csv that can be found here:...
CVE-2021-37036
There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the informati...
CVE-2021-37036
There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the informati...
Information disclosure
There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the informati...
Wipro Holmes Orchestrator 20.4.1 File Disclosure Exploit
Exploit Title: Wipro Holmes Orchestrator 20.4.1 Unauthenticated Log File Disclosure Exploit Author: Rizal Muhammed @ub3rsick Vendor Homepage: https://www.wipro.com/holmes/ Version: 20.4.1 Tested on: Windows 10 x64 CVE : CVE-2021-38283 import requests as rq import argparse import datetime import o...
Wipro Holmes Orchestrator 20.4.1 File Disclosure
Exploit Title: Wipro Holmes Orchestrator 20.4.1 Unauthenticated Log File Disclosure Date: 09/08/2021 Exploit Author: Rizal Muhammed @ub3rsick Vendor Homepage: https://www.wipro.com/holmes/ Version: 20.4.1 Tested on: Windows 10 x64 CVE : CVE-2021-38283 import requests as rq import argparse import...
SuiteCRM 7.11.18 Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SuiteCRM Log File Remote Code Execution', 'Description' = %q This module exploits an input validation error on the log file extension parameter. ...