146 matches found
EUVD-2002-1751
Malware in sbrugna...
RockyLinux 10 : ipa (RLSA-2025:17085)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:17085 advisory. FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-7493 Tenable has extracted the preceding description block directly from the...
RLSA-2025:9184 Important: ipa security update
Rocky Enterprise Software Foundation Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA...
EUVD-2025-18066
Malicious code in bioql PyPI...
EUVD-2025-18067
Malicious code in bioql PyPI...
EUVD-2024-20963
Malicious code in bioql PyPI...
ipa security update
An update is available for ipa. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rocky Enterprise Software Foundation Identity Management IdM is a centralized...
AlmaLinux 8 : idm:DL1 (ALSA-2025:17129)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:17129 advisory. FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-7493 Tenable has extracted the preceding description block directly from the...
RHEL 9 : ipa (RHSA-2025:17084)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17084 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-base...
ALSA-2025:17129 Important: idm:DL1 security update
AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-7493 For more details...
Oracle Linux 9 : ipa (ELSA-2025-17084)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17084 advisory. - Resolves: RHEL-110068 EMBARGOED CVE-2025-7493 ipa: Privilege escalation from host to domain admin in FreeIPA Tenable has extracted the preceding description...
Important: Red Hat Security Advisory: ipa security update
An update for ipa is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
FreeIPA: idm: Privilege escalation from host to domain admin in FreeIPA
A privilege escalation flaw from host to domain administrator was found in FreeIPA. This vulnerability is similar to CVE-2025-4404, where it fails to validate the uniqueness of the krbCanonicalName. While the previously released version added validations for the admin@REALM credential, FreeIPA...
RHEL 9 : ipa (RHSA-2025:17086)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17086 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-base...
PrivExchange
This is a proof-of-concept PoC tool for abusing Microsoft Exchange to obtain Domain Admin privileges. The tool, named PrivExchange, requires the Impacket library and can be used to subscribe to push notifications on Exchange Web Services, which will make Exchange connect back to the attacker and...
Exploit for CVE-2020-1472
ZeroLogon exploitation script Exploit code based on https://www.secura.com/blog/zero-logon and https://github.com/SecuraBV/CVE-2020-1472. Original research and scanner by Secura, modifications by RiskSense Inc. To exploit, clear out any previous Impacket installs you have and install Impacket fro...
AlmaLinux 9 : ipa (ALSA-2025:9184)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9184 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...
freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA
A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...
freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA
A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...
freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA
A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the krbCanonicalName for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a...