24 matches found
EUVD-2024-52002
Malicious code in bioql PyPI...
EUVD-2024-16962
Malicious code in bioql PyPI...
EUVD-2022-29052
Malicious code in bioql PyPI...
CVE-2024-1195
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
CVE-2022-24141
The iTopVPNmini.exe component of iTop VPN 3.2 will try to connect to datastateiTopVPNPipeServer on a loop. An attacker that opened a named pipe with the same name can use it to gain the token of another user by listening for connections and abusing ImpersonateNamedPipeClient...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
iTop VPN 代码问题漏洞
iTop VPN is a VPN software from iTop Inc. which allows users to remain anonymous and secure with advanced Salsa20 chacha20 256-bit encryption. A code issue vulnerability exists in iTop VPN version 16.0, which stems from the presence of a DLL hijacking vulnerability that allows an attacker to...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
CVE-2024-53588
Summary: CVE-2024-53588 affects iTop VPN v16.0 through a DLL hijacking flaw. An attacker who can place a crafted DLL in the path D:\ProgramData\iTop VPN\Downloader\vpn6 can achieve arbitrary code execution on the host. The CVSS score is 7.8 (HIGH); vector: local, low attack complexity, no privile...
Exploit for CVE-2024-53588
iTop-privesc MY FIRST 0-DAY!!! - CVE-2024-53588 A privileg...
CVE-2024-1195
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-1195
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
Design/Logic Flaw
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-1195
CVE-2024-1195 pertains to iTop VPN (up to 4.0.0.1) with a vulnerability in the IOCTL Handler’s ITopVpnCallbackProcess.sys library. The issue arises from manipulation of an unknown functionality in this library, leading to denial of service. Vector is local access; attack complexity is low and pri...
CVE-2024-1195 iTop VPN IOCTL ITopVpnCallbackProcess.sys denial of service
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-1195 iTop VPN IOCTL ITopVpnCallbackProcess.sys denial of service
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2022-24141
The iTopVPNmini.exe component of iTop VPN 3.2 will try to connect to datastateiTopVPNPipeServer on a loop. An attacker that opened a named pipe with the same name can use it to gain the token of another user by listening for connections and abusing ImpersonateNamedPipeClient...
Remote code execution
IOBit Advanced System Care 15, iTop Screen Recorder 2.1, iTop VPN 3.2, Driver Booster 9, and iTop Screenshot sends HTTP requests in their update procedure in order to download a config file. After downloading the config file, the products will parse the HTTP location of the update from the file a...