Lucene search
K

6 matches found

Rapid7 Blog
Rapid7 Blog
added 2024/11/22 8:28 p.m.32 views

Metasploit Weekly Wrap-Up 11/22/2024

JetBrains TeamCity Login Scanner Metasploit added a login scanner for the TeamCity application to enable users to check for weak credentials. TeamCity has been the subject of multiple ETR vulnerabilities and is a valuable target for attackers. Targeted DCSync added to Windows Secrets Dump This...

10CVSS7AI score0.16513EPSS
Exploits29
Metasploit
Metasploit
added 2024/11/21 6:54 p.m.248 views

Ivanti EPM Agent Portal Command Execution

This module leverages an unauthenticated RCE in Ivanti's EPM Agent Portal where a RPC client can invoke a method which will run an attacker-specified string on the remote target as NT AUTHORITY\SYSTEM. This vulnerability is present in versions prior to EPM 2021.1 Su4 and EPM 2022 Su2. Module...

9.8CVSS9.3AI score0.11766EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/11/21 12:0 a.m.356 views

Ivanti EPM Agent Portal Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/proto/msnrtp/client' class MetasploitModule 'Ivanti EPM Agent Portal Command Execution', 'Description' = %q This module leverages an unauthenticated RCE in...

9.8CVSS7.4AI score0.11766EPSS
Exploits5
NVD
NVD
added 2024/09/12 2:15 a.m.22 views

CVE-2024-29847

Deserialization of untrusted data in the agent portal of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution...

10CVSS0.52913EPSS
Exploits2References1
OSV
OSV
added 2024/09/12 2:15 a.m.3 views

CVE-2024-29847

Deserialization of untrusted data in the agent portal of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution...

9.8CVSS6.1AI score0.52913EPSS
Exploits2References1
Cisco Threats
Cisco Threats
added 2015/10/27 1:46 p.m.9 views

Threat Outbreak Alert RuleID18992: Email Messages Distributing Malicious Software on October 27, 2015

Medium Alert ID: 41749 First Published: 2015 October 27 13:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID18992 may contain the following files: Name |...

7.2AI score
Exploits0
Rows per page
Query Builder