Lucene search
+L

17 matches found

vulncheck_kev
vulncheck_kev
added 2022/02/09 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-36934

If a Volume Shadow Copy VSS shadow copy of the system drive is available, users can read the SAM file which would allow any user to escalate privileges to SYSTEM level...

7.8CVSS7.3AI score0.67252EPSS
Exploits11References1
rapid7blog
rapid7blog
added 2021/07/30 6:4 p.m.314 views

Metasploit Wrap-Up

New Olympic Discipline: Hive Hunting This week, community contributor Hakyac added a new Olympic discipline to Metasploit exploit sport category, which is based on the work of community security researchers @jonasLyk and Kevin Beaumont. The rules are simple: You need to abuse a flaw in Windows 10...

8.3CVSS0.6AI score0.88158EPSS
Exploits36
thn
thn
added 2021/07/26 11:21 a.m.146 views

How to Mitigate Microsoft Windows 10, 11 SeriousSAM Vulnerability

Microsoft Windows 10 and Windows 11 users are at risk of a new unpatched vulnerability that was recently disclosed publicly. As we reported last week, the vulnerability — SeriousSAM — allows attackers with low-level permissions to access Windows system files to perform a Pass-the-Hash and...

7.8CVSS1.9AI score0.67252EPSS
Exploits11
githubexploit
githubexploit
added 2021/07/26 8:1 a.m.70 views

Exploit for CVE-2021-36934

CVE-2021-36934 !Screenshothttps://github...

7.8CVSS9.2AI score0.67252EPSS
Exploits11
githubexploit
githubexploit
added 2021/07/25 12:31 a.m.139 views

Exploit for CVE-2021-36934

PyNightmare PoC for CVE-2021-36934 Aka HiveNightmare/SeriousSA...

7.8CVSS8.8AI score0.67252EPSS
Exploits11
threatpost
threatpost
added 2021/07/22 12:57 p.m.178 views

Microsoft Issues Windows 10 Workaround Fix for ‘SeriousSAM’ Bug

A privilege escalation bug, affecting versions of Windows 10, received a workaround fix by Microsoft Wednesday to prevent attackers from accessing data and creating new accounts on compromised systems. The bug, dubbed SeriousSAM, affects the Security Accounts Manager SAM database in all versions ...

7.8CVSS8.1AI score0.67252EPSS
Exploits11References5
githubexploit
githubexploit
added 2021/07/22 12:24 p.m.98 views

Exploit for CVE-2021-36934

CVE-2021-36934 CVE-2021-36934 PowerShell Fix This powershell...

7.8CVSS9.1AI score0.67252EPSS
Exploits11
vulnrichment
vulnrichment
added 2021/07/22 7:5 a.m.15 views

CVE-2021-36934 Windows Elevation of Privilege Vulnerability

...

7.8CVSS7.2AI score0.67252EPSS
Exploits11References2
cvelist
cvelist
added 2021/07/22 7:5 a.m.34 views

CVE-2021-36934 Windows Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.67252EPSS
Exploits11References2
cve
cve
added 2021/07/22 7:5 a.m.1348 views

CVE-2021-36934

CVE-2021-36934 (Windows SAM Local Privilege Escalation, alias HiveNightmare/SeriousSAM) is a local-privilege-escalation flaw caused by overly permissive ACLs on system files in %windir%\system32\config (notably SAM and SYSTEM). If a Volume Shadow Copy exists, a non-privileged user can read these ...

7.8CVSS9.1AI score0.67252EPSS
In wildExploits11References4Affected Software5
githubexploit
githubexploit
added 2021/07/22 3:7 a.m.184 views

Exploit for CVE-2021-36934

Invoke-HiveNightmare PowerShell-based PoC for CVE-2021-36934,...

7.8CVSS9.1AI score0.67252EPSS
Exploits11
malwarebytes
malwarebytes
added 2021/07/21 2:31 p.m.388 views

HiveNightmare zero-day lets anyone be SYSTEM on Windows 10 and 11

Users with low privileges can access sensitive Registry database files on Windows 10 and Windows 11, leaving them vulnerable to a local elevation of privilege vulnerability known as SeriousSAM or HiveNightmare. Doesnt sound serious? Reassured that users must already have access to the system and ...

4.6CVSS0.9AI score0.67252EPSS
Exploits11
githubexploit
githubexploit
added 2021/07/21 1:6 p.m.17 views

Exploit for CVE-2021-36934

CVE-2021-36934 Fix for...

7.8CVSS7.1AI score0.67252EPSS
Exploits11
thn
thn
added 2021/07/21 6:37 a.m.283 views

New Windows and Linux Flaws Give Attackers Highest System Privileges

Microsoft's Windows 10 and the upcoming Windows 11 versions have been found vulnerable to a new local privilege escalation vulnerability that permits users with low-level permissions access Windows system files, in turn, enabling them to unmask the operating system installation password and even...

7.8CVSS1.2AI score0.67252EPSS
Exploits18
githubexploit
githubexploit
added 2021/07/20 10:16 p.m.307 views

Exploit for CVE-2021-36934

ShadowSteal | CVE-2021-36934 Pure Nim implementation for explo...

7.8CVSS8.9AI score0.67252EPSS
Exploits11
kaspersky
kaspersky
added 2021/07/20 12:0 a.m.126 views

KLA12242 PE vulnerability in Microsoft Windows

An elevation of privilege vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2021-36934 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...

7.8CVSS8.5AI score0.67252EPSS
Exploits11References5
cert
cert
added 2021/07/20 12:0 a.m.482 views

Microsoft Windows 10 gives unprivileged user access to system32\config files

Overview Multiple versions of Windows 10 grant non-administrative users read access to files in the %windir%\system32\config directory. This can allow for local privilege escalation LPE. Description With multiple versions of Windows 10, the BUILTIN\Users group is given RX permissions to files in...

7.8CVSS7.9AI score0.67252EPSS
Exploits11References7
Rows per page
Query Builder