24 matches found
EUVD-2024-52002
Malicious code in bioql PyPI...
EUVD-2022-29052
Malicious code in bioql PyPI...
EUVD-2024-16962
Malicious code in bioql PyPI...
CVE-2024-1195
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
CVE-2022-24141
The iTopVPNmini.exe component of iTop VPN 3.2 will try to connect to datastateiTopVPNPipeServer on a loop. An attacker that opened a named pipe with the same name can use it to gain the token of another user by listening for connections and abusing ImpersonateNamedPipeClient...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
CVE-2024-53588
Summary: CVE-2024-53588 affects iTop VPN v16.0 through a DLL hijacking flaw. An attacker who can place a crafted DLL in the path D:\ProgramData\iTop VPN\Downloader\vpn6 can achieve arbitrary code execution on the host. The CVSS score is 7.8 (HIGH); vector: local, low attack complexity, no privile...
iTop VPN 代码问题漏洞
iTop VPN is a VPN software from iTop Inc. which allows users to remain anonymous and secure with advanced Salsa20 chacha20 256-bit encryption. A code issue vulnerability exists in iTop VPN version 16.0, which stems from the presence of a DLL hijacking vulnerability that allows an attacker to...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
CVE-2024-53588
A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via placing a crafted DLL file into the path \ProgramData\iTop VPN\Downloader\vpn6...
Exploit for CVE-2024-53588
iTop-privesc MY FIRST 0-DAY!!! - CVE-2024-53588 A privileg...
CVE-2024-1195
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-1195
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
Design/Logic Flaw
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-1195 iTop VPN IOCTL ITopVpnCallbackProcess.sys denial of service
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-1195 iTop VPN IOCTL ITopVpnCallbackProcess.sys denial of service
A vulnerability classified as critical was found in iTop VPN up to 4.0.0.1. Affected by this vulnerability is an unknown functionality in the library ITopVpnCallbackProcess.sys of the component IOCTL Handler. The manipulation leads to denial of service. The attack needs to be approached locally...
CVE-2024-1195
CVE-2024-1195 pertains to iTop VPN (up to 4.0.0.1) with a vulnerability in the IOCTL Handler’s ITopVpnCallbackProcess.sys library. The issue arises from manipulation of an unknown functionality in this library, leading to denial of service. Vector is local access; attack complexity is low and pri...
CVE-2022-24141
The iTopVPNmini.exe component of iTop VPN 3.2 will try to connect to datastateiTopVPNPipeServer on a loop. An attacker that opened a named pipe with the same name can use it to gain the token of another user by listening for connections and abusing ImpersonateNamedPipeClient...
Design/Logic Flaw
The iTopVPNmini.exe component of iTop VPN 3.2 will try to connect to datastateiTopVPNPipeServer on a loop. An attacker that opened a named pipe with the same name can use it to gain the token of another user by listening for connections and abusing ImpersonateNamedPipeClient...