EUVD-2021-13400

Malware in sbrugna...

VulnCheck KEV: CVE-2021-26606

A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker could exploit this vulnerability by sending a crafted HTTP request an affected program. A...

CVE-2021-26606

A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker could exploit this vulnerability by sending a crafted HTTP request an affected program. A successf...

Authorization

A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker could exploit this vulnerability by sending a crafted HTTP request an affected program. A successf...

CVE-2021-26606 DreamSecurity MagicLine Buffer Overflow Vulnerability

A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker could exploit this vulnerability by sending a crafted HTTP request an affected program. A successf...

CVE-2021-26606

Affected product: Dream Security PKI Security SolutionVulnerability: Arbitrary command execution due to insufficient validation of the authorization certificate, exploitable via a crafted HTTP request to an affected program.Impact: Remote code execution on the target system (as described in sourc...

Dream Security PKI安全漏洞

Dream Security PKI is a security solution from Dream Security, a South Korean company. A security vulnerability exists in Dream Security PKI that originates. The vulnerability is caused due to insufficient validation of authorization certificates. An attacker can exploit the vulnerability can...

PT-2021-17073 · Dreamsecurity · Pki Security Solution

Name of the Vulnerable Software and Affected Versions: Dream Security PKI Security Solution version le1.0.0.17 Description: A vulnerability in the PKI Security Solution of Dream Security could allow arbitrary command execution due to insufficient validation of the authorization certificate. An...

Hacked Security Software Used in Novel South Korean Supply-Chain Attack

The Lazarus cybercriminal group is using a novel supply-chain attack against visitors to websites operated by the South Korean government and financial firms, in order to deliver dropper malware that eventually plants a remote access trojan on victim’s PCs. The attacks use stolen digital...