Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3059 matches found

Citrix
Citrixadded 2023/08/16 12:0 a.m.4 views

Leaving non-persistent virtual machines of the provisioning scheme at the hypervisor is not allowed.

Unable to delete orphaned VMs by using Powershell from catalog which has already been removed via Powershell. When running command: Remove-ProvScheme The below error is seen: "Leaving the non-persistent virtual machines of the provisioning scheme 'provisioning scheme name' at the hypervisor is no...

7.1AI score
Exploits0
Kitploit
Kitploitadded 2023/08/15 12:30 p.m.57 views

Trawler - PowerShell Script To Help Incident Responders Discover Adversary Persistence Mechanisms

Dredging Windows for Persistence What is it? Trawler is a PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts, primarily focused on persistence mechanisms including Scheduled Tasks, Services, Registry Modifications, Startup Items,...

7.5AI score
Exploits0References6
The Hacker News
The Hacker Newsadded 2023/08/10 2:20 p.m.37 views

New Attack Alert: Freeze[.]rs Injector Weaponized for XWorm Malware Attacks

Malicious actors are using a legitimate Rust-based injector called Freeze.rs to deploy a commodity malware called XWorm in victim environments. The novel attack chain, detected by Fortinet FortiGuard Labs on July 13, 2023, is initiated via a phishing email containing a booby-trapped PDF file. It...

6.9AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2023/08/10 2:15 p.m.2 views

CVE-2023-29299

Adobe Acrobat Reader versions 23.003.20244 and earlier and 20.005.30467 and earlier are affected by an Untrusted Search Path vulnerability that could lead to Application denial-of-service. An attacker could leverage this vulnerability if the default PowerShell Set-ExecutionPolicy is set to...

4.7CVSS5.7AI score0.00288EPSS
Exploits0References2
OSV
OSVadded 2023/08/10 2:15 p.m.0 views

CVE-2023-29299

Adobe Acrobat Reader versions 23.003.20244 and earlier and 20.005.30467 and earlier are affected by an Untrusted Search Path vulnerability that could lead to Application denial-of-service. An attacker could leverage this vulnerability if the default PowerShell Set-ExecutionPolicy is set to...

4.7CVSS5.7AI score
Exploits0References1
NVD
NVDadded 2023/08/10 2:15 p.m.13 views

CVE-2023-29299

Adobe Acrobat Reader versions 23.003.20244 and earlier and 20.005.30467 and earlier are affected by an Untrusted Search Path vulnerability that could lead to Application denial-of-service. An attacker could leverage this vulnerability if the default PowerShell Set-ExecutionPolicy is set to...

4.7CVSS4.5AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/08/10 1:17 p.m.19 views

CVE-2023-29299 Adobe Acrobat Reader Untrusted Search Path Application denial-of-service

Adobe Acrobat Reader versions 23.003.20244 and earlier and 20.005.30467 and earlier are affected by an Untrusted Search Path vulnerability that could lead to Application denial-of-service. An attacker could leverage this vulnerability if the default PowerShell Set-ExecutionPolicy is set to...

4.7CVSS5.6AI score0.00288EPSS
Exploits0References1
Trellix
Trellixadded 2023/08/10 12:0 a.m.18 views

Exploring New Techniques of Fake Browser Updates Leading to NetSupport RAT

Exploring New Techniques of Fake Browser Updates Leading to NetSupport RAT By Jonell Baltazar and Antonio Ribeiro · August 10, 2023 Trellix detected an ongoing campaign using fake Chrome browser updates to lure victims to install a remote administration software tool called NetSupport Manager...

7AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2023/08/08 12:0 a.m.2 views

PT-2023-5323 · Microsoft +1 · Powershell +2

Name of the Vulnerable Software and Affected Versions: Adobe Acrobat Reader versions 23.003.20244 and earlier Adobe Acrobat Reader versions 20.005.30467 and earlier Adobe Acrobat 2020 Adobe Acrobat Reader 2020 Description: The issue is related to an Untrusted Search Path vulnerability and imprope...

4.7CVSS4.3AI score0.00288EPSS
Exploits0References6
NVD
NVDadded 2023/08/07 8:15 p.m.9 views

CVE-2023-39520

Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the repair function. The problem occurs as the repair function of the MSI is spawning an SYSTEM...

7.8CVSS6.2AI score0.00035EPSS
Exploits1References4
Prion
Prionadded 2023/08/07 8:15 p.m.11 views

Code injection

Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the repair function. The problem occurs as the repair function of the MSI is spawning an SYSTEM...

4.3CVSS7.7AI score0.00035EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2023/08/07 7:35 p.m.16 views

CVE-2023-39520 Cryptomator vulnerable to Local Elevation of Privileges

Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the repair function. The problem occurs as the repair function of the MSI is spawning an SYSTEM...

5.5CVSS7.4AI score0.00035EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2023/08/07 7:35 p.m.11 views

CVE-2023-39520 Cryptomator vulnerable to Local Elevation of Privileges

Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the repair function. The problem occurs as the repair function of the MSI is spawning an SYSTEM...

5.5CVSS7.7AI score0.00035EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2023/08/07 12:0 a.m.2 views

PT-2023-26992 · Unknown · Cryptomator

Name of the Vulnerable Software and Affected Versions: Cryptomator version 1.9.2 Description: Cryptomator encrypts data being stored on cloud infrastructure. The issue allows local privilege escalation for low privileged users via the repair function. This occurs because the repair function of th...

7.8CVSS7.2AI score0.00035EPSS
Exploits1References9
OSV
OSVadded 2023/08/01 2:15 a.m.16 views

CVE-2020-10962

In PowerShell App Deployment Toolkit aka PSAppDeployToolkit through 3.8.0, an incorrect access control vulnerability in the default configuration may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.2AI score
Exploits0References2
Prion
Prionadded 2023/08/01 2:15 a.m.9 views

Design/Logic Flaw

In PowerShell App Deployment Toolkit aka PSAppDeployToolkit through 3.8.0, an incorrect access control vulnerability in the default configuration may allow an authenticated user to potentially enable escalation of privilege via local access...

4.3CVSS7.7AI score0.00048EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2023/08/01 12:0 a.m.10 views

CVE-2020-10962

In PowerShell App Deployment Toolkit aka PSAppDeployToolkit through 3.8.0, an incorrect access control vulnerability in the default configuration may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8AI score0.00048EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2023/08/01 12:0 a.m.20 views

CVE-2020-10962

In PowerShell App Deployment Toolkit aka PSAppDeployToolkit through 3.8.0, an incorrect access control vulnerability in the default configuration may allow an authenticated user to potentially enable escalation of privilege via local access...

7AI score0.00048EPSS
Exploits0References2
CNNVD
CNNVDadded 2023/08/01 12:0 a.m.3 views

PowerShell App Deployment Toolkit Security Vulnerability

PowerShell App Deployment Toolkit is a versatile, reusable and extensible tool replacement for WiseScript, VBScript and Batch wrapper scripts from the PowerShell App Deployment Toolkit team. A security vulnerability exists in PowerShell App Deployment Toolkit 3.8.0 and prior versions, which stems...

7.8CVSS6.8AI score0.00048EPSS
Exploits0References3
CVE
CVEadded 2023/08/01 12:0 a.m.30 views

CVE-2020-10962

Summary: CVE-2020-10962 affects PowerShell App Deployment Toolkit (PSAppDeployToolkit) up to version 3.8.0. Vulnerability: an incorrect access control in the default configuration could let an authenticated user locally escalate privileges. Impact: local privilege escalation; details on exploitab...

7.8CVSS7.7AI score0.00048EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder