Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/10 12:0 a.m.11 views

EulerOS 2.0 SP13 : git (EulerOS-SA-2026-2331)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Git for Windows is the Windows port of Git. Prior to 2.53.02, it is possible to obtain a user's NTLM hash by tricking them into cloning from a...

7.4CVSS5.5AI score0.00268EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/15 5:26 p.m.3 views

CVE-2026-32631

Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 do not have protections that prevent attackers from obtaining a user's NTLM hash. The NTLM hash can be obtained by tricking users into cloning a malicious repository, or checking out a malicious branch, that accesses a...

7.4CVSS5.8AI score0.00316EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2025/12/15 11:11 a.m.34 views

CVE-2025-11670 NTLM Hash Exposure Vulnerability

Zohocorp ManageEngine ADManager Plus versions before 8025 are vulnerable to NTLM Hash Exposure. This vulnerability is exploitable only by technicians who have the “Impersonate as Admin” option enabled...

6.4CVSS0.00369EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-50229

Name of the Vulnerable Software and Affected Versions Umbraco versions 10.0.0 through 13.12.0 Description Umbraco, an ASP.NET CMS, experiences an issue related to the unsafe handling and deletion of temporary files during the dictionary upload process. An attacker with backoffice access can...

4.9CVSS6.8AI score0.00313EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/09/11 1:23 p.m.8 views

CVE-2025-9065

A server-side request forgery security issue exists within Rockwell Automation ThinManager® software due to the lack of input sanitization. Authenticated attackers can exploit this vulnerability by specifying external SMB paths, exposing the ThinServer® service account NTLM hash...

8.6CVSS6.7AI score0.00431EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 12:51 p.m.17 views

CVE-2025-9065

CVE-2025-9065 affects Rockwell Automation ThinManager®. Description: a server-side request forgery due to insufficient input sanitization allows authenticated attackers to specify external SMB paths, exposing the ThinServer service account NTLM hash. Documents consistently describe ThinManager SS...

8.8CVSS6.2AI score0.00431EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2025/06/24 12:28 a.m.10 views

NTLM Hash Exposure

dnn.platform is vulnerable to NTLM hash exposure. The vulnerability is due to improper handling of authentication requests, allowing malicious interactions to redirect NTLM authentication hashes to an attacker-controlled SMB server...

8.6CVSS7.3AI score0.30628EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2025/06/21 2:51 a.m.18 views

EUVD-2025-18800

DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted series of malicious interaction to potentially expose NTLM hashes to a third party SMB server. This issue has been...

8.6CVSS6.9AI score0.30628EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/21 2:51 a.m.18 views

CVE-2025-52488 DNN.PLATFORM leaks NTLM hash via SMB Share Interaction with malicious user input

DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted series of malicious interaction to potentially expose NTLM hashes to a third party SMB server. This issue has been...

8.6CVSS0.30628EPSS
Exploits1References1
OSV
OSV
added 2025/06/21 2:51 a.m.11 views

CVE-2025-52488 DNN.PLATFORM leaks NTLM hash via SMB Share Interaction with malicious user input

DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted series of malicious interaction to potentially expose NTLM hashes to a third party SMB server. This issue has been...

8.6CVSS8.7AI score0.30628EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2025/05/27 1:20 p.m.531 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft

CVE-2025-24071 - Windows File Explorer Spoofing Vulnerability...

6.5CVSS7.8AI score0.25068EPSS
Exploits21
Rows per page
Query Builder