The vulnerability of the “Loans And Deposits” sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model allows a perpetrator to gain access to and modify data.

The vulnerability of the “Loans And Deposits” sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read,...

AWS-Threat-Simulation-and-Detection - Playing Around With Stratus Red Team (Cloud Attack Simulation Tool) And SumoLogic

This repository is a documentation of my adventures with Stratus Red Team - a tool for adversary emulation for the cloud. Stratus Red Team is "Atomic Red Team for the cloud, allowing to emulate offensive attack techniques in a granular and self-contained manner. We run the attacks covered in the...

CVE-2022-1975

There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space...

PT-2022-4329 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a sleep-in-atomic bug in the /net/nfc/netlink.c component of the Linux kernel. This bug allows an attacker to crash the Linux kernel by simulating a NFC device...

Ransomware-Simulator - Ransomware Simulator Written In Golang

The goal of this repository is to provide a simple, harmless way to check your AV's protection on ransomware. This tool simulates typical ransomware behaviour, such as: Staging from a Word document macro Deleting Volume Shadow Copies Encrypting documents embedded and dropped by the simulator into...

QEMU Buffer Overflow Vulnerability (CNVD-2023-80120)

QEMU Quick Emulator is a set of simulation processor software. The software is fast and cross-platform. QEMU suffers from a buffer overflow vulnerability that stems from an integer overflow in cursoralloc that could lead to a heap buffer overflow. A malicious privileged attacker can exploit this...

The vulnerability of the FANUC ROBOGUIDE simulation software for robotics, related to errors in assigning permissions to files, allows a hacker to increase their privileges.

The vulnerability of the FANUC ROBOGUIDE software for robotization-related modeling tasks is related to errors in assigning permissions to files. Exploiting this vulnerability can allow attackers to increase their privileges...

Siemens Simcenter Femap File Parsing Vulnerability (CNVD-2022-36399)

Siemens Simcenter Femap is an engineering simulation application from Siemens, Germany. It is used to create, edit and import/reuse mesh-based finite element analysis models of complex products or systems. Siemens Simcenter Femap is vulnerable to file parsing, which can be exploited by attackers ...

CVE-2022-28120

Beijing Runnier Network Technology Co., Ltd Open virtual simulation experiment teaching management platform software 2.0 has a file upload vulnerability, which can be exploited by an attacker to gain control of the server...

CVE-2022-28120

Beijing Runnier Network Technology Co., Ltd Open virtual simulation experiment teaching management platform software 2.0 has a file upload vulnerability, which can be exploited by an attacker to gain control of the server...

Unrestricted file upload

Beijing Runnier Network Technology Co., Ltd Open virtual simulation experiment teaching management platform software 2.0 has a file upload vulnerability, which can be exploited by an attacker to gain control of the server...

CVE-2022-28120

Beijing Runnier Network Technology Co., Ltd Open virtual simulation experiment teaching management platform software 2.0 has a file upload vulnerability, which can be exploited by an attacker to gain control of the server...

CVE-2022-28120

The CVE-2022-28120 entry concerns Beijing Runnier Network Technology Co., Ltd Open virtual simulation experiment teaching management platform software 2.0. A vulnerability in the file upload feature allows an attacker to gain control of the server. The root cause is described in connected sources...

Open virtual simulation experiment teaching management platform software 代码问题漏洞

Beijing Runnier Network Technology Open virtual simulation experiment teaching management platform software open virtual simulation experiment teaching management platform software is a management software for teaching by Beijing Runnier Network Technology Beijing Runnier Network Technology...

Siemens PROFINET Stack Integrated on Interniche Stack Uncontrolled Resource Consumption (CVE-2022-25622)

A vulnerability has been identified in SIMATIC CFU DIQ All versions, SIMATIC CFU PA All versions, SIMATIC S7-1500 CPU family incl. related ET200 CPUs and SIPLUS variants All versions V2.0.0, SIMATIC S7-300 CPU family incl. related ET200 CPUs and SIPLUS variants All versions, SIMATIC S7-400 H V6 C...

FANUC ROBOGUIDE path traversal vulnerability

FANUC ROBOGUIDE is a robot simulation software from FANUC, Japan.ROBOGUIDE v9.40083.00.05 and earlier versions have a path traversal vulnerability, which originates from an improper restriction of pathnames to restricted directories. An attacker can exploit this vulnerability using special elemen...

FANUC ROBOGUIDE elevation of privilege vulnerability

FANUC ROBOGUIDE is a robot simulation software from FANUC, Japan. FANUC ROBOGUIDE v9.40083.00.05 and previous versions have an elevation of privilege vulnerability. The vulnerability stems from the fact that the affected product is vulnerable to misconfigured binaries, and an attacker with...

FANUC ROBOGUIDE access control error vulnerability

FANUC ROBOGUIDE is a robot simulation software from FANUC Japan.ROBOGUIDE v9.40083.00.05 and earlier versions have an access control error vulnerability that stems from not limiting or incorrectly restricting access to resources by unauthorized participants. An attacker could use this vulnerabili...

FANUC ROBOGUIDE XML External Entity Injection Vulnerability

FANUC ROBOGUIDE is a robot simulation software from FANUC Japan. FANUC ROBOGUIDE v9.40083.00.05 and earlier versions exist XML external entity injection vulnerability, which originates from the lack of application restrictions on external entities. An attacker could exploit this vulnerability to...

FANUC ROBOGUIDE Resource Management Error Vulnerability

FANUC ROBOGUIDE is a robot simulation software from FANUC Japan. A resource management error vulnerability exists in ROBOGUIDE v9.40083.00.05 and prior versions, which stems from an inability to properly control the allocation and maintenance of limited resources, and can be exploited by an...