3 matches found
CVE-2026-8993 Improper URL Handler Processing in D.Launcher 2 enables NTLM Credential Disclosure and SSRF attacks
D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate full NTLM autentication or SMB connection to attacker infrastructure and to conduct SSRF Server Side...
CVE-2026-8993
Technical details are not publicly available in the provided documents. Monitor for updates.
NC Launcher2 Command Injection Vulnerability
NC Launcher2 is a game launcher. A command injection vulnerability exists in the custom protocol handler in NNC Launcher2 2.4.1.691 and earlier versions, which can be exploited to execute arbitrary commands with the help of a malicious page...