Lucene search
K

7 matches found

The Hacker News
The Hacker News
added 2024/10/22 2:12 p.m.24 views

Security Flaw in Styra's OPA Exposes NTLM Hashes to Remote Attackers

Details have emerged about a now-patched security flaw in Styra's Open Policy Agent OPA that, if successfully exploited, could have led to leakage of New Technology LAN Manager NTLM hashes. "The vulnerability could have allowed an attacker to leak the NTLM credentials of the OPA server's local us...

8.8CVSS7.4AI score0.11709EPSS
Exploits0
NVD
NVD
added 2024/10/08 6:15 p.m.37 views

CVE-2024-43532

Remote Registry Service Elevation of Privilege Vulnerability...

8.8CVSS0.11709EPSS
Exploits0References1
OSV
OSV
added 2024/10/08 6:15 p.m.8 views

CVE-2024-43532

Remote Registry Service Elevation of Privilege Vulnerability...

8.8CVSS5.8AI score0.11709EPSS
Exploits0References1
Circl
Circl
added 2024/10/08 5:54 p.m.18 views

CVE-2024-43532

creationtimestamp| type| source ---|---|--- 2024-10-08 17:54:47+00:00| seen| https://www.thezdi.com/blog/2024/10/8/the-october-2024-security-update-review 2024-10-20 16:48:45+00:00| published-proof-of-concept| https://t.me/HackerArsenal/580 2024-10-20 18:04:40+00:00| published-proof-of-concept|...

8.8CVSS7.3AI score0.11709EPSS
Exploits0References12
Cvelist
Cvelist
added 2024/10/08 5:35 p.m.26 views

CVE-2024-43532 Remote Registry Service Elevation of Privilege Vulnerability

...

8.8CVSS0.11709EPSS
Exploits0References1
CVE
CVE
added 2024/10/08 5:35 p.m.105 views

CVE-2024-43532

CVE-2024-43532 is a Remote Registry Service Elevation of Privilege vulnerability with a documented exploit path in a private GitHub post, alleging interception of NTLM data via RPC_A uthon level CONNECT and a Machine‑in‑the‑Middle attack against advapi32.dll behavior. Affected: Windows 10/11 and ...

8.8CVSS8.7AI score0.11709EPSS
Exploits0References1Affected Software15
Tenable Nessus
Tenable Nessus
added 2024/10/08 12:0 a.m.53 views

KB5044286: Windows 10 LTS 1507 Security Update (October 2024)

The remote Windows host is missing security update 5044286. It is, therefore, affected by multiple vulnerabilities - Remote Desktop Client Remote Code Execution Vulnerability CVE-2024-43599 - Remote Registry Service Elevation of Privilege Vulnerability CVE-2024-43532 - Microsoft WDAC OLE DB...

8.8CVSS8.5AI score0.60954EPSS
Exploits2References35
Rows per page
Query Builder