Lucene search
K

132 matches found

RedHat Linux
RedHat Linux
added 2022/09/20 1:46 p.m.47 views

Moderate: Red Hat Security Advisory: gnupg2 security update

An update for gnupg2 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.5CVSS6.8AI score0.02551EPSS
Exploits1References2
Schneier on Security
Schneier on Security
added 2022/07/18 2:49 p.m.15 views

Facebook Is Now Encrypting Links to Prevent URL Stripping

Some sites, including Facebook, add parameters to the web address for tracking purposes. These parameters have no functionality that is relevant to the user, but sites rely on them to track users across pages and properties. Mozilla introduced support for URL stripping in Firefox 102, which it...

2.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/06/27 12:0 a.m.9 views

The vulnerability of the Encrypting File System (EFS) of the Windows operating system allows a perpetrator to execute arbitrary code.

The vulnerability of the Encrypting File System EFS in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS7.9AI score0.01965EPSS
Exploits0References4
OSV
OSV
added 2022/06/15 10:15 p.m.3 views

CVE-2022-30145

Windows Encrypting File System EFS Remote Code Execution Vulnerability...

7.5CVSS7.4AI score0.01965EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/15 10:15 p.m.4 views

CVE-2022-30145

Windows Encrypting File System EFS Remote Code Execution Vulnerability...

7.5CVSS7.2AI score0.01965EPSS
Exploits0References3Affected Software12
Cvelist
Cvelist
added 2022/06/15 9:51 p.m.32 views

CVE-2022-30145 Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

...

7.5CVSS8.2AI score0.01965EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2022/05/05 11:24 a.m.22 views

It’s business as usual for REvil ransomware

After the FBS arrested 14 of its members in January, and a subsequent lull in action, the REvil ransomware gang appears to be back. We say "appears" because its still unclear whether the groups operations have indeed restarted. To the trained eye, REvils movements seem out of sorts. When REvils o...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/05/03 12:0 a.m.4 views

PT-2022-3141 · Microsoft · Windows Encrypting File System +1

Name of the Vulnerable Software and Affected Versions: Windows Encrypting File System EFS affected versions not specified Description: The issue is related to insufficient input validation in the Windows Encrypting File System EFS, which can be exploited by a remote attacker to execute arbitrary...

7.5CVSS9.6AI score0.01965EPSS
Exploits0References10
The Hacker News
The Hacker News
added 2022/04/21 10:0 a.m.510 views

New Incident Report Reveals How Hive Ransomware Targets Organizations

A recent Hive ransomware attack carried out by an affiliate involved the exploitation of "ProxyShell" vulnerabilities in the Microsoft Exchange Server that were disclosed last year to encrypt an unnamed customer's network. "The actor managed to achieve its malicious goals and encrypt the...

10CVSS1.9AI score0.99999EPSS
Exploits18
BDU FSTEC
BDU FSTEC
added 2022/03/16 12:0 a.m.7 views

The vulnerability of the Windows Encrypting File System (EFS) component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows Encrypting File System EFS component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

8.5CVSS7.4AI score0.06615EPSS
Exploits3References3
Akamai Blog
Akamai Blog
added 2022/01/19 2:0 p.m.11 views

We Need to Encrypt DNS: Here’s Another Compelling Reason Why

Encrypting DNS servers is a necessary next step in web security to prevent sensitive materials from being breached, thus improving user privacy and security...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/12/24 11:32 a.m.27 views

New Ransomware Variants Flourish Amid Law Enforcement Actions

Ransomware groups continue to evolve their tactics and techniques to deploy file-encrypting malware on compromised systems, notwithstanding law enforcement's disruptive actions against the cybercrime gangs to prevent them from victimizing additional companies. "Be it due to law enforcement,...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/12/15 3:15 p.m.4 views

CVE-2021-43893

Windows Encrypting File System EFS Elevation of Privilege Vulnerability...

7.5CVSS7.4AI score0.06615EPSS
Exploits3References3Affected Software28
ATTACKERKB
ATTACKERKB
added 2021/12/15 3:15 p.m.4 views

CVE-2021-43217

Windows Encrypting File System EFS Remote Code Execution Vulnerability...

9.8CVSS7.7AI score0.06419EPSS
Exploits0References2Affected Software28
OSV
OSV
added 2021/12/15 3:15 p.m.3 views

CVE-2021-43217

Windows Encrypting File System EFS Remote Code Execution Vulnerability...

9.8CVSS5.9AI score0.06419EPSS
Exploits0References1
NVD
NVD
added 2021/12/15 3:15 p.m.32 views

CVE-2021-43217

Windows Encrypting File System EFS Remote Code Execution Vulnerability...

9.8CVSS0.06419EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/12/15 2:15 p.m.40 views

CVE-2021-43217 Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

...

8.1CVSS9.1AI score0.06419EPSS
Exploits0References1
CVE
CVE
added 2021/12/15 2:15 p.m.277 views

CVE-2021-43217

CVE-2021-43217 is a Windows Encrypting File System (EFS) remote code execution vulnerability. The connected exploit document documents a practical demonstration of an EFS bypass on Windows 10 and shows use of Kali Linux, Metasploit and reverse TCP payloads, indicating an attacker could achieve co...

9.8CVSS9.1AI score0.06419EPSS
In wildExploits0References1Affected Software10
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.28 views

Microsoft Windows 权限许可和访问控制问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A vulnerability exists in Microsoft Windows Encrypting File System EFS with privilege permission and access control issues. The following products and editions are affected:Windows Server...

7.5CVSS7.7AI score0.06615EPSS
Exploits3References7
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.8 views

Microsoft Windows 代码注入漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Windows Encrypting File System EFS. The following products and editions are affected:Windows 10 Version 1809 for 32-bit Systems,Windows ...

9.8CVSS8.6AI score0.06419EPSS
Exploits0References5
Rows per page
Query Builder