Lucene search
K

82 matches found

Metasploit
Metasploit
added 2026/06/17 7:3 p.m.187 views

NTLM Relay to Self (HTTP to LDAP) - Post Exploitation

This module performs an NTLM relay-to-self privilege escalation attack. It starts an HTTP-to-LDAP relay server on the compromised host, then triggers the WebClient service via an ETW event allowing a low-privilege user to start it, and coerces the local machine account to authenticate via...

6AI score
Exploits0
NVD
NVD
added 2026/06/11 7:16 p.m.11 views

CVE-2026-11774

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS0.00539EPSS
Exploits0References3
OSV
OSV
added 2026/06/11 7:16 p.m.7 views

UBUNTU-CVE-2026-11774

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS5.9AI score0.00539EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/11 5:54 p.m.10 views

EUVD-2026-36293

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS5.9AI score0.01038EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-11774

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packe...

7.6CVSS5.7AI score0.00539EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.16 views

PT-2026-48701

Name of the Vulnerable Software and Affected Versions 389 Directory Server 389-ds-base affected versions not specified Description An integer overflow exists in the SASL I/O layer within the sasl io start packet function. When a crafted SASL packet length prefix of 0xFFFFFFFC is processed, adding...

7.6CVSS6.2AI score0.00539EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.6 views

CVE-2026-35337

Deserialization of Untrusted Data vulnerability in Apache Storm. Versions Affected: before 2.8.6. Description: When processing topology credentials submitted via the Nimbus Thrift API, Storm deserializes the base64-encoded TGT blob using ObjectInputStream.readObject without any class filtering or...

8.8CVSS6.3AI score0.01011EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/13 12:31 p.m.3 views

EUVD-2026-21902

Deserialization of Untrusted Data vulnerability in Apache Storm. Versions Affected: before 2.8.6. Description: When processing topology credentials submitted via the Nimbus Thrift API, Storm deserializes the base64-encoded TGT blob using ObjectInputStream.readObject without any class filtering or...

8.8CVSS6.4AI score0.01011EPSS
Exploits0References3
CVE
CVE
added 2026/04/13 9:11 a.m.27 views

CVE-2026-35337

CVE-2026-35337 — Apache Storm Deserialization of Untrusted Data via Kerberos TGT Credential Handling. Affected: Storm before 2.8.6. Summary: processing topology credentials submitted to Nimbus Thrift API deserializes base64-encoded TGT blobs with ObjectInputStream.readObject() without class filte...

8.8CVSS6.4AI score0.01011EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : ipa-4.6.8-5.10.0.1.el7.AXS7 (AXSA:2021-2791:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2791:05 advisory. samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets CVE-2020-25719 Tenable has extracted the preceding description block directly...

9CVSS8AI score0.01673EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-5240

Malware in sbrugna...

2.1CVSS6.7AI score0.02616EPSS
Exploits0References19
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-4381

Malware in sbrugna...

3.7CVSS6.4AI score0.00302EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-4385

Malware in sbrugna...

4.6CVSS6.4AI score0.00348EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-4371

Malware in sbrugna...

4.4CVSS7.9AI score0.00275EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-0046

Malware in sbrugna...

3.7CVSS6.1AI score0.00686EPSS
Exploits2References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-16502

Malware in sbrugna...

7.8CVSS7.2AI score0.00474EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-18495

Malicious code in bioql PyPI...

9.1CVSS9.2AI score0.01827EPSS
Exploits1References15
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-27199

Malicious code in bioql PyPI...

8.8CVSS7.4AI score0.01053EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.2 views

TencentOS Server 4: freeipa (TSSA-2025:0546)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0546 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.1CVSS8.3AI score0.01827EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-4404

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the...

9.1CVSS7.5AI score0.01827EPSS
Exploits1References3
Rows per page
Query Builder