Lucene search
+L

6 matches found

Check Point Advisories
Check Point Advisories
added 2022/08/02 12:0 a.m.44 views

IOBit IOTransfer Arbitrary File Write (CVE-2022-24562)

An arbitrary file write vulnerability exists in IOBit IOTransfer. Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to access arbitrary file...

10CVSS4.6AI score0.53224EPSS
Exploits3
0day.today
0day.today
added 2022/07/21 12:0 a.m.336 views

IOTransfer 4.0 - Remote Code Execution Exploit

Exploit Title: IOTransfer V4 – Remote Code Execution RCE Exploit Author: Tomer Peled Vendor Homepage: https://www.iobit.com Software Link: https://iotransfer.itopvpn.com/ Version: V4 and onward Tested on: Windows 10 CVE : 2022-24562 References:...

9.8CVSS0.3AI score0.53224EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/21 12:0 a.m.444 views

IOTransfer 4.0 Remote Code Execution

Exploit Title: IOTransfer V4 – Remote Code Execution RCE Date: 06/22/2022 Exploit Author: Tomer Peled Vendor Homepage: https://www.iobit.com Software Link: https://iotransfer.itopvpn.com/ Version: V4 and onward Tested on: Windows 10 CVE : 2022-24562 References:...

10CVSS0.2AI score0.53224EPSS
Exploits3
Exploit DB
Exploit DB
added 2022/07/21 12:0 a.m.363 views

IOTransfer 4.0 - Remote Code Execution (RCE)

Exploit Title: IOTransfer V4 – Remote Code Execution RCE Date: 06/22/2022 Exploit Author: Tomer Peled Vendor Homepage: https://www.iobit.com Software Link: https://iotransfer.itopvpn.com/ Version: V4 and onward Tested on: Windows 10 CVE : 2022-24562 References:...

7.4AI score
Exploits0
OSV
OSV
added 2022/06/16 7:15 p.m.8 views

CVE-2022-24562

In IOBit IOTransfer 4.3.1.1561, an unauthenticated attacker can send GET and POST requests to Airserv and gain arbitrary read/write access to the entire file-system with admin privileges on the victim's endpoint, which can result in data theft and remote code execution...

9.8CVSS7.7AI score0.53224EPSS
Exploits3References4
CVE
CVE
added 2022/06/16 6:31 p.m.814 views

CVE-2022-24562

IOTransfer 4.3.1.1561 exposes an unauthenticated remote-access flaw in the Airserv component. An attacker can send GET/POST requests to Airserv and gain arbitrary read/write access to the entire filesystem with admin privileges, enabling potential data theft and remote code execution. The issue i...

10CVSS9.9AI score0.53224EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder