Lucene search
K

73 matches found

RedhatCVE
RedhatCVE
added 2026/06/10 9:1 p.m.9 views

CVE-2026-45648

Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to execute code over a network...

8.8CVSS6AI score0.01124EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/08 7:34 a.m.7 views

CVE-2026-3238

A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. The WINS protocol handlers for certain request types did not properly validate incoming packets, allowing an unauthenticated remote attacker to trigger a NULL pointer dereference and crash the...

7.5CVSS5.4AI score0.02669EPSS
Exploits0
OSV
OSV
added 2026/02/24 4:18 p.m.4 views

MAL-2026-1019 Malicious code in spark-audit-notify (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1c527925d1e7cb4055b6c154326cd54a713ad543349c2b3b6f8ab8f0d75e8cbe During installation, host identification details including AD domain are exfiltrated through a series of functions obfuscating this behavior. --- Category:...

5.9AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/04 1:20 p.m.19 views

CVE-2026-24936

When a specific function is enabled while joining a AD Domain from ADM, an improper input parameters validation vulnerability in a specific CGI program allowing an unauthenticated remote attacker to write arbitrary data to any file on the system. By exploiting this vulnerability, attackers can...

9.8CVSS5.8AI score0.00779EPSS
Exploits0References1
NVD
NVD
added 2026/02/03 4:15 a.m.8 views

CVE-2026-24936

When a specific function is enabled while joining a AD Domain from ADM, an improper input parameters validation vulnerability in a specific CGI program allowing an unauthenticated remote attacker to write arbitrary data to any file on the system. By exploiting this vulnerability, attackers can...

9.8CVSS0.00779EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 3:50 a.m.8 views

EUVD-2026-5316

When a specific function is enabled while joining a AD Domain from ADM, an improper input parameters validation vulnerability in a specific CGI program allowing an unauthenticated remote attacker to write arbitrary data to any file on the system. By exploiting this vulnerability, attackers can...

9.5CVSS5.8AI score0.00779EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-18936

Malware in sbrugna...

9.1CVSS9.3AI score0.02132EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-8651

Malware in sbrugna...

7.5CVSS7.6AI score0.02486EPSS
Exploits0References22
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-7986

Malware in sbrugna...

8.5CVSS7.4AI score0.04264EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5959

Malware in sbrugna...

5.4CVSS5.3AI score0.02084EPSS
Exploits0References14
OSV
OSV
added 2025/09/25 6:28 p.m.7 views

CLSA-2025-1758824905 Fix CVE(s): CVE-2022-2031, CVE-2022-32744

SECURITY UPDATE: disable kpasswd port to mitigate vulnerabilities - debian/patches/CVE-2022-2031CVE-2022-32744.patch: add kpasswd port = 0 to disable kpasswd service as a workaround for CVE-2022-32744 and CVE-2022-2031 - kpasswd is not a critical protocol for AD DC in most installations -...

8.8CVSS5.8AI score0.00965EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.5 views

Microsoft Active Directory Domain Services 访问控制错误漏洞

Microsoft Active Directory Domain Services is a key service from Microsoft Corporation USA that is used to manage and organize resources, users, computers, and other security objects in a network. An access control error vulnerability exists in Microsoft Active Directory Domain Services. An...

7.5CVSS8.1AI score0.02221EPSS
Exploits0References2
Information Security Automation
Information Security Automation
added 2025/03/26 3:52 p.m.21 views

About Remote Code Execution – Veeam Backup & Replication (CVE-2025-23120) vulnerability

About Remote Code Execution - Veeam Backup & Replication CVE-2025-23120 vulnerability. Veeam B&R is a client-server software solution for centralized backup of virtual machines in VMware vSphere and Microsoft Hyper-V environments. A deserialization flaw CWE-502 lets an attacker run arbitrary code...

8.8CVSS9.7AI score0.18335EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.6 views

PT-2025-1114

Name of the Vulnerable Software and Affected Versions Active Directory Domain Services affected versions not specified Description A critical elevation-of-privilege vulnerability in Active Directory Domain Services allows attackers to gain SYSTEM-level access. The vulnerability is related to erro...

9CVSS9.6AI score0.18185EPSS
Exploits0References57
CVE
CVE
added 2024/11/12 5:49 p.m.3466 views

CVE-2024-8068

CVE-2024-8068 affects Citrix Session Recording. According to Citrix’s security bulletin CTX691941, affected versions include Current Release prior to hotfix 2407 (24.5.200.8) and LTSR releases: 1912 LTSR before CU9 (19.12.9100.6), 2203 LTSR before CU5 (22.03.5100.11), and 2402 LTSR before CU1 (24...

8CVSS6.6AI score0.01399EPSS
In wildExploits0References2Affected Software1
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.152 views

AD CS Certificate Template Management

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AD CS Certificate Template Management', 'Description' = %q This module can create, read, update, and delete AD CS certificate templates from a...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.4 views

Microsoft Active Directory Domain Services Security Vulnerability

Microsoft Active Directory Domain Services is a key service from Microsoft Corporation USA for managing and organizing resources, users, computers, and other security objects in a network. A security vulnerability exists in Microsoft Active Directory Domain Services. An attacker could exploit the...

7.5CVSS6.6AI score0.015EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/10/11 12:0 a.m.35 views

Microsoft Windows Multiple Vulnerabilities (KB5031354)

This host is missing a critical security update according to Microsoft KB5031354 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.99999EPSS
Exploits20References8
CNNVD
CNNVD
added 2023/10/10 12:0 a.m.8 views

Microsoft Active Directory Domain Services Security Vulnerability

Microsoft Active Directory Domain Services is a key service from Microsoft Corporation USA that is used to manage and organize resources, users, computers, and other security objects in a network. A security vulnerability exists in Microsoft Active Directory Domain Services. An attacker could...

4.4CVSS6.4AI score0.01238EPSS
Exploits0References4
Metasploit
Metasploit
added 2023/10/02 7:51 p.m.637 views

LDAP Login Scanner

This module attempts to login to the LDAP service. Module Options msf use auxiliary/scanner/ldap/ldaplogin msf auxiliaryldaplogin show actions ...actions... msf auxiliaryldaplogin set ACTION msf auxiliaryldaplogin show options ...show and set options... msf auxiliaryldaplogin run This module...

7AI score
Exploits0
Rows per page
Query Builder