Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/04/23 7:58 p.m.0 views

CVE-2026-39907

Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose an unauthenticated WCF SOAP endpoint on TCP port 1208 that accepts unsanitized file paths in the ReadLicense action's LFName parameter, allowing remote attackers to trigger SMB connections and leak NTLMv2...

10CVSS5.8AI score0.01042EPSS
Exploits1References1
ICS
ICSadded 2025/11/13 7:0 a.m.3 views

Rockwell Automation Studio 5000 Simulation Interface

RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers to trigger outbound SMB requests to capture NTLM hashes and execute scripts with Administrator privileges upon system reboot. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize...

8.9CVSS7.2AI score0.00032EPSS
Exploits0References11
Positive Technologies
Positive Technologiesadded 2025/11/11 12:0 a.m.3 views

PT-2025-46339

A local server-side request forgery SSRF security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to trigger outbound SMB requests, enabling the capture of NTLM hashes...

8.9CVSS6.5AI score0.00032EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-16051

Malware in sbrugna...

6.5CVSS6.5AI score0.00313EPSS
Exploits1References3
Kitploit
Kitploitadded 2021/09/17 8:30 p.m.50 views

Ntlm_Theft - A Tool For Generating Multiple Types Of NTLMv2 Hash Theft Files

A tool for generating multiple types of NTLMv2 hash theft files. ntlmtheft is an Open Source Python3 Tool that generates 21 different types of hash theft documents. These can be used for phishing when either the target allows smb traffic outside their network, or if you are already inside the...

7AI score
Exploits0References5
ThreatPost
ThreatPostadded 2017/02/28 1:44 p.m.6 views

Unpatched SMB Zero Day Easily Exploitable

In what’s turning out to be the zero day that keeps on giving, researchers are still finding ways to exploit an unpatched denial of service vulnerability that exists in the way Windows implements the Server Message Block protocol. Details around the bug aren’t a mystery. Laurent Gaffié, the...

7.4AI score
Exploits0References6
CERT
CERTadded 2017/02/02 12:0 a.m.132 views

Microsoft Windows SMB Tree Connect Response denial of service vulnerability

Overview Microsoft Windows contains a memory corruption bug in the handling of SMB traffic, which may allow a remote, unauthenticated attacker to cause a denial of service on a vulnerable system. Description Microsoft Windows fails to properly handle traffic from a malicious server. In particular...

7.1CVSS6.8AI score0.49202EPSS
Exploits1References4
CERT
CERTadded 2015/04/13 12:0 a.m.107 views

Microsoft Windows NTLM automatically authenticates via SMB when following a file:// URL

Overview Software running on Microsoft Windows that utilizes HTTP requests can be forwarded to a file:// protocol on a malicious server, which causes Windows to automatically attempt authentication via SMB to the malicious server in some circumstances. The encrypted form of the user's credentials...

7.4CVSS8AI score0.00815EPSS
Exploits1References15
Rows per page
Query Builder