Metasploit Weekly Wrap-Up

Meterpreter Debugging A consistent message Metasploit hears from users is that debugging and general logging support could be improved. The gaps in functionality make it difficult for users to understand what happens when things go wrong and for new and existing developers to fix bugs and add new...

The vulnerability of the FortiGate network firewall’s debugging function for FortiOS operating systems allows a hacker to execute arbitrary code or commands.

The vulnerability of the FortiGate network firewall’s debugging function for FortiOS operating systems is related to authentication errors. Exploiting this vulnerability allows a perpetrator to execute unauthorized code or commands using certain console command sequences like “print str” and “cmd...

CVE-2021-39794

In broadcastPortInfo of AdbService.java, there is a possible way for apps to run code as the shell user, if wireless debugging is enabled, due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed...

Design/Logic Flaw

In broadcastPortInfo of AdbService.java, there is a possible way for apps to run code as the shell user, if wireless debugging is enabled, due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed...

CVE-2021-39794

CVE-2021-39794 affects Android 11–12/12L, in the AdbService.java method broadcastPortInfo . The issue is a missing permission check that can allow apps to execute code as the shell user when wireless debugging is enabled, causing local elevation of privilege. Exploitation requires user interactio...

PT-2022-11070

Name of the Vulnerable Software and Affected Versions Android versions Android-11 through Android-12L Description The issue is related to a missing permission check in the broadcastPortInfo of AdbService.java. This could allow apps to run code as the shell user if wireless debugging is enabled,...

PT-2022-13757 · Unknown · Protest Binary

Name of the Vulnerable Software and Affected Versions: protest binary affected versions not specified Description: A command injection vulnerability in the protest binary allows an attacker with access to the remote command line interface to execute arbitrary commands as root. The issue is relate...

Exploit for Code Injection in Vmware Spring_Cloud_Gateway

SpringCloud-Gateway Command Execution Vulnerability CVE-2022...

The vulnerability of the elf::section::as_strtab function in the library for reading ELF and DWARF v4 files in Libelfin allows a attacker to cause a service failure.

The vulnerability of the elf::section::asstrtab function in the library for reading ELF and DWARF v4 files is related to insufficient elimination of special elements in the request. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created ELF...

Experts Shed Light on BlackGuard Infostealer Malware Sold on Russian Hacking Forums

A previously undocumented "sophisticated" information-stealing malware named BlackGuard is being advertised for sale on Russian underground forums for a monthly subscription of $200. "BlackGuard has the capability to steal all types of information related to Crypto wallets, VPN, Messengers, FTP...

ASB-A-205836329

In broadcastPortInfo of AdbService.java, there is a possible way for apps to run code as the shell user, if wireless debugging is enabled, due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed...

WordPress plugin Translate WordPress with GTranslate 跨站请求伪造漏洞

WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress Translate WordPress with GTranslate plugin version 2.9.9 is vulnerable to cross-site request forgery. The vulnerability...

CVE-2022-25481

ThinkPHP Framework v5.0.24 was discovered to be configured without the PATHINFO parameter. This allows attackers to access all system environment parameters from index.php. NOTE: this is disputed by a third party because system environment exposure is an intended feature of the debugging mode...

PT-2022-17318

Name of the Vulnerable Software and Affected Versions: ThinkPHP Framework version 5.0.24 Description: The ThinkPHP Framework was discovered to be configured without the PATHINFO parameter, allowing attackers to access all system environment parameters from index.php. It is noted that this issue i...

Exploit for Improper Initialization in Linux Linux_Kernel

CVE-2022-0847 Dirty Pipe linux kernel lifting analysis toc...

Intel Trace Hub 安全漏洞

The Intel Trace Hub is a set of hardware modules from Intel Corporation. It is designed to perform full-system debugging by generating, switching, and outputting trace data from multiple hardware and software sources through multiple trace output ports encoded in the System Trace Protocol MIPI...

The vulnerability in the web interface for managing server applications used in food industrial enterprises, AK-EM 800, allows a perpetrator to gain unauthorized access to the debugging service.

The vulnerability in the web-based management interface for the server application used to manage food manufacturing enterprises AK-EM 800 is related to errors in password generation. Exploiting this vulnerability can allow an attacker to gain unauthorized access to the debugging service...

Microsoft Windows Privilege Escalation Vulnerability

smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges...

GHSA-MJVC-J6RV-9XJ8 Insertion of Sensitive Information Into Debugging Code in Microweber

Microweber prior to 1.3 may expose sensitive information about a server and a user when running the server in debug mode...

Insertion of Sensitive Information Into Debugging Code in Microweber

Microweber prior to 1.3 may expose sensitive information about a server and a user when running the server in debug mode...