1263 matches found
CVE-2021-27091
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability...
Privilege escalation
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability...
CVE-2021-27091
CVE-2021-27091 is an elevation-of-privilege flaw in the RPC Endpoint Mapper Service of Windows/Windows Server. The vulnerability is described as a local-privilege escalation with a low attack complexity and no user interaction, allowing an attacker to gain high confidentiality/integrity/availabil...
CVE-2021-27091 RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
...
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
...
KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, bypass security restrictions, spoof user interface. Below is a...
KLA12139 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of...
RPC 权限许可和访问控制问题漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the RPC Endpoint Mapper Service in...
PT-2021-2705 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the RPC Endpoint Mapper Service and is caused by insecure privilege management. It allows an attacker to elevate their privileges. Recommendations: At the moment,...
KB5001387: Windows Server 2012 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - RPC Endpoint Mapper Service Elevation o...
KB5001382: Windows 8.1 and Windows Server 2012 R2 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - RPC Endpoint Mapper Service Elevation o...
ThreatMapper - Identify Vulnerabilities In Running Containers, Images, Hosts And Repositories
The Deepfence Runtime Threat Mapper is a subset of the Deepfence cloud native workload protection platform, released as a community edition. This community edition empowers the users with following features: 1. Visualization: Visualize kubernetes clusters, virtual machines, containers and images,...
Findsploit
It is an offensive tool for searching and exploiting. The primary CVE ID is not explicitly mentioned in the provided context. The tool, Findsploit, is a bash script that searches both local and online exploit databases. It includes three sub-scripts: "compilesploit" to automatically compile and r...
OESA-2021-1010 libvirt security update
Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support.\r\n\r\n Security Fixes:\r\n\r\n A flaw was found in libvirt, where it leaked a file descriptor fo...
libvirt: Unintended access to /dev/mapper/control
Background libvirt is a C toolkit for manipulating virtual machines. Description A file descriptor for /dev/mapper/control was insufficiently protected. Impact A local attacker may be able to escalate to root privileges. Workaround There is no known workaround at this time. Resolution All libvirt...
GLSA-202101-22 : libvirt: Unintended access to /dev/mapper/control
The remote host is affected by the vulnerability described in GLSA-202101-22 libvirt: Unintended access to /dev/mapper/control A file descriptor for /dev/mapper/control was insufficiently protected. Impact : A local attacker may be able to escalate to root privileges. Workaround : There is no kno...
A Logical Volume Manager / LVM primer for Linux
About LVM LVM is an abstraction layer that provides block devices same kind of disk partitions. This is done by using 3 layers: physical volumes PV - disk partitions; volume groups VG - aggregates of physical volumes, could be across multiple disks or multiple partitions, whatever; logical volume...
ALPINE-CVE-2020-14339
A flaw was found in libvirt, where it leaked a file descriptor for /dev/mapper/control into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform operations outside of...
CVE-2020-14339
A flaw was found in libvirt, where it leaked a file descriptor for /dev/mapper/control into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform operations outside of...
CVE-2020-14339
A flaw was found in libvirt, where it leaked a file descriptor for /dev/mapper/control into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform operations outside of...