Lucene search
K

369 matches found

Kitploit
Kitploit
added 2024/05/23 12:30 p.m.54 views

Go-Secdump - Tool To Remotely Dump Secrets From The Windows Registry

Package go-secdump is a tool built to remotely extract hashes from the SAM registry hive as well as LSA secrets and cached hashes from the SECURITY hive without any remote agent and without touching disk. The tool is built on top of the library go-smb and use it to communicate with the Windows...

7.3AI score
Exploits0References2
The Hacker News
The Hacker News
added 2024/05/21 9:2 a.m.17 views

Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses

Microsoft on Monday confirmed its plans to deprecate NT LAN Manager NTLM in Windows 11 in the second half of the year, as it announced a slew of new security measures to harden the widely-used desktop operating system. "Deprecating NTLM has been a huge ask from our security community as it will...

7.8AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2024/05/03 6:29 p.m.32 views

Metasploit Weekly Wrap-Up 05/03/24

Dump secrets inline This week, our very own cdelafuente-r7 added a significant improvement to the well-known Windows Secrets Dump module to reduce the footprint when dumping SAM hashes, LSA secrets and cached credentials. The module is now directly reading the Windows Registry remotely without...

7.5CVSS9.6AI score0.95388EPSS
Exploits9
Veracode
Veracode
added 2024/04/25 7:50 a.m.31 views

Buffer Overflow

libfrr.so is vulnerable to Buffer Overflow. The vulnerability is due to inadequate validation of lengths in Segment Routing Adjacency SID subTLVs within OSPF LSA packets during the parsing process, which could result in a Denial of Service...

6.5CVSS6.3AI score0.0054EPSS
Exploits0References4Affected Software2
Veracode
Veracode
added 2024/04/18 7:9 a.m.24 views

Buffer Overflow

libfrr.so is vulnerable to Buffer Overflow. The vulnerability is due to inadequate validation of the size of Segment Routing subTLVs in ospfteparseri function within ospfte.c. An attacker can trigger this vulnerability by crafting OSPF LSA packets with maliciously crafted Segment Routing subTLVs...

6.5CVSS6.7AI score0.00509EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2024/04/09 5:15 p.m.16 views

CVE-2024-26209

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability...

5.5CVSS6.5AI score0.14814EPSS
Exploits0References1
CVE
CVE
added 2024/04/09 5:0 p.m.187 views

CVE-2024-26209

CVE-2024-26209 affects Microsoft Windows Local Security Authority Subsystem Service (LSASS). The entry describes an information disclosure vulnerability in LSASS, with a CVSS 3.1 base score of 5.5 (Medium), attack vector Local, privileges required Low, user interaction None, and a confidentiality...

5.5CVSS8.2AI score0.14814EPSS
Exploits0References1Affected Software13
RedhatCVE
RedhatCVE
added 2024/04/08 2:27 p.m.31 views

CVE-2024-31951

A buffer overflow vulnerability was found in FRRouting. There can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs. Mitigation Mitigation for this issue is either not available or the currently availab...

7CVSS6.3AI score0.0054EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/04/08 2:26 p.m.24 views

CVE-2024-31950

A buffer overflow vulnerability was found in FRRouting. There can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs. Mitigation Mitigation for this issue is either not available or the currently available options don't me...

7CVSS6.3AI score0.00509EPSS
Exploits0References4
NVD
NVD
added 2024/04/07 9:15 p.m.19 views

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

6.5CVSS6.8AI score0.0054EPSS
Exploits0References2
NVD
NVD
added 2024/04/07 9:15 p.m.16 views

CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

6.5CVSS6.8AI score0.00509EPSS
Exploits0References2
OSV
OSV
added 2024/04/07 9:15 p.m.6 views

AZL-39815 CVE-2024-31951 affecting package frr for versions less than 8.5.5-1

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

6.5CVSS7.6AI score0.0054EPSS
Exploits0References1
OSV
OSV
added 2024/04/07 9:15 p.m.2 views

DEBIAN-CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

6.5CVSS7.4AI score0.00509EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/07 12:0 a.m.5 views

PT-2024-6034 · Frrouting +5 · Frrouting +5

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to a buffer overflow and daemon crash in the ospf te parse ri function for OSPF LSA packets during an attempt to read Segment Routing subTLVs, whose size is not validated. This...

9.8CVSS6.8AI score0.02152EPSS
Exploits3References102
OSV
OSV
added 2024/04/07 12:0 a.m.28 views

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

6.5CVSS7.2AI score0.0054EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/04/07 12:0 a.m.36 views

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

7AI score0.0054EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/07 12:0 a.m.17 views

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

7.1AI score0.0054EPSS
Exploits0References2
CVE
CVE
added 2024/04/07 12:0 a.m.87 views

CVE-2024-31951

FRRouting FRR in versions up to 9.1 is affected by CVE-2024-31951 due to a bug in the Opaque LSA Extended Link parser (ospf_te_parse_ext_link) that can trigger a buffer overflow and daemon crash while reading Segment Routing Adjacency SID subTLVs because lengths are not validated. Exploitation st...

6.5CVSS6.8AI score0.0054EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/04/07 12:0 a.m.27 views

CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

7.1AI score0.00509EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2024/04/07 12:0 a.m.24 views

frr - Multiple vulnerabilities

[email protected] reports: In FRRouting FRR through 9.1, there are multiples vulnerabilities. CVE-2024-31950: buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets CVE-2024-31951: buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets...

6.5CVSS7.9AI score0.0054EPSS
Exploits0References1
Rows per page
Query Builder