90 matches found
CVE-2025-60722
CVE-2025-60722 is a path traversal vulnerability in OneDrive for Android that can lead to elevation of privileges for an authorized user over a network. The advisory set confirms the affected product is OneDrive for Android and notes the root cause as improper pathname handling. Public exploitati...
EUVD-2020-12340
Malware in sbrugna...
EUVD-2018-1403
Malware in sbrugna...
EUVD-2020-2147
Malware in sbrugna...
EUVD-2018-1402
Malware in sbrugna...
EUVD-2023-28880
Malicious code in bioql PyPI...
EUVD-2023-28918
Malicious code in bioql PyPI...
EUVD-2023-28911
Malicious code in bioql PyPI...
EUVD-2023-28872
Malicious code in bioql PyPI...
PT-2025-21: Local Privilege Escalation in Microsoft OneDrive
The vulnerability was identified in OneDrive, version 25.020.0202. The vulnerability in Microsoft OneDrive was discovered on MacOS. Local privilege escalation allows an attacker to escalate privileges from a normal user to root. To exploit the vulnerability a potential attacker must be able to...
CVE-2020-1465
An elevation of privilege vulnerability exists in Microsoft OneDrive that allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft OneDrive Elevation of Privilege Vulnerability'...
CVE-2020-0654
A security feature bypass vulnerability exists in Microsoft OneDrive App for Android.This could allow an attacker to bypass the passcode or fingerprint requirements of the App.The security update addresses the vulnerability by correcting the way Microsoft OneDrive App for Android handles sharing...
OneDrive Pastejacking
OneDrive Pastejacking: The crafty phishing and downloader campaign By Rafael Pena · July 29, 2024 Over the past few weeks, the Trellix Advanced Research Center has observed a sophisticated Phishing/downloader campaign targeting Microsoft OneDrive users. This campaign heavily relies on social...
PT-2024-4174
Name of the Vulnerable Software and Affected Versions Windows Cloud Files Mini Filter Driver affected versions not specified Description A heap-based buffer overflow exists in the Windows Cloud Files Mini Filter Driver cldflt.sys. This issue allows a local attacker to escalate privileges from a...
Agent Racoon Backdoor Targets Organizations in Middle East, Africa, and U.S.
Organizations in the Middle East, Africa, and the U.S. have been targeted by an unknown threat actor to distribute a new backdoor called Agent Racoon. "This malware family is written using the .NET framework and leverages the domain name service DNS protocol to create a covert channel and provide...
Chimera - Automated DLL Sideloading Tool With EDR Evasion Capabilities
While DLL sideloading can be used for legitimate purposes, such as loading necessary libraries for a program to function, it can also be used for malicious purposes. Attackers can use DLL sideloading to execute arbitrary code on a target system, often by exploiting vulnerabilities in legitimate...
MULTI#STORM Campaign Targets India and U.S. with Remote Access Trojans
A new phishing campaign codenamed MULTISTORM has set its sights on India and the U.S. by leveraging JavaScript files to deliver remote access trojans on compromised systems. "The attack chain ends with the victim machine infected with multiple unique RAT remote access trojan malware instances, su...
Stealthy DBatLoader Malware Loader Spreading Remcos RAT and Formbook in Europe
A new phishing campaign has set its sights on European entities to distribute Remcos RAT and Formbook via a malware loader dubbed DBatLoader. "The malware payload is distributed through WordPress websites that have authorized SSL certificates, which is a common tactic used by threat actors to eva...
New 'Bad Magic' Cyber Threat Disrupt Ukraine's Key Sectors Amid War
Amid the ongoing war between Russia and Ukraine, government, agriculture, and transportation organizations located in Donetsk, Lugansk, and Crimea have been attacked as part of an active campaign that drops a previously unseen, modular framework dubbed CommonMagic. "Although the initial vector of...
Microsoft OneDrive for MacOS < 23.043.0226 Privilege Escalation
The version of Microsoft OneDrive for MacOS on the remote macOS / Mac OS X host is prior to 23.043.0226. It is, therefore affected by an escalation of privilege vulnerability. An authenticated, local attacker can elevate to SYSTEM privileges. Note that Nessus has not tested for these issues but h...