Lucene search
K

31 matches found

NVD
NVD
added 2026/06/19 2:16 p.m.10 views

CVE-2026-48137

There is an untrusted pointer dereference vulnerability in the NI grpc-device sideband streaming API that may allow an attacker to cause an arbitrary memory dereference, potentially resulting in remote code execution. Successful exploitation requires an attacker to supply a specially...

9.8CVSS0.00549EPSS
Exploits0References2
NVD
NVD
added 2026/06/19 2:16 p.m.15 views

CVE-2026-48139

There is a NULL pointer dereference vulnerability in NI grpc-device in the data moniker service that may allow an attacker to cause a denial of service by triggering a crash. Successful exploitation requires an attacker to provide an unknown value to the data moniker service. This affects NI...

8.7CVSS0.00343EPSS
Exploits0References2
CVE
CVE
added 2026/06/19 1:22 p.m.16 views

CVE-2026-48139

CVE-2026-48139 describes a NULL pointer dereference in NI grpc-device’s data moniker service that may allow a remote attacker to cause a denial of service by triggering a crash. Exploitation requires providing an unknown value to the data moniker service; affected versions are NI grpc-device 2.17...

8.7CVSS5.9AI score0.00343EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/19 1:22 p.m.31 views

CVE-2026-48139 NULL pointer dereference vulnerability in NI grpc-device data moniker service

There is a NULL pointer dereference vulnerability in NI grpc-device in the data moniker service that may allow an attacker to cause a denial of service by triggering a crash. Successful exploitation requires an attacker to provide an unknown value to the data moniker service. This affects NI...

8.7CVSS0.00343EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/19 1:5 p.m.29 views

CVE-2026-48137 Untrusted pointer dereference in NI grpc-device sideband streaming API

There is an untrusted pointer dereference vulnerability in the NI grpc-device sideband streaming API that may allow an attacker to cause an arbitrary memory dereference, potentially resulting in remote code execution. Successful exploitation requires an attacker to supply a specially...

9.3CVSS0.00549EPSS
Exploits0References2
CVE
CVE
added 2026/06/19 1:5 p.m.14 views

CVE-2026-48137

Summary: CVE-2026-48137 is an untrusted pointer dereference in the NI grpc-device sideband streaming API affecting NI grpc-device 2.17.0 and earlier. A attacker can cause an arbitrary memory dereference and potentially remote code execution by sending a specially crafted Moniker protobuf message....

9.8CVSS6.3AI score0.00549EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.15 views

PT-2026-50890

Name of the Vulnerable Software and Affected Versions NI grpc-device versions prior to 2.17.0 Description A NULL pointer dereference occurs in the data moniker service of NI grpc-device. A NULL pointer dereference is a condition where a program attempts to read or write to a memory address that i...

8.7CVSS5.9AI score0.00343EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.21 views

PT-2026-50888

Name of the Vulnerable Software and Affected Versions NI grpc-device versions prior to 2.17.0 Description An untrusted pointer dereference exists in the sideband streaming API. This issue allows an attacker to trigger an arbitrary memory dereference, which could lead to remote code execution...

9.8CVSS6.3AI score0.00549EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2025/11/20 3:47 a.m.148 views

Exploit for Improper Input Validation in Microsoft

Moni...

9.8CVSS7.1AI score0.9466EPSS
Exploits22
GithubExploit
GithubExploit
added 2025/10/06 1:47 p.m.161 views

Exploit for Improper Input Validation in Microsoft

Moniker Link CVE-2024-21413 Exploit Demo This repository co...

9.8CVSS7.5AI score0.9466EPSS
Exploits22
GithubExploit
GithubExploit
added 2025/09/23 1:28 a.m.255 views

Exploit for Improper Input Validation in Microsoft

Email exploit Moniker Link-CVE-2024-21413-Module — Documentati...

9.8CVSS6.9AI score0.9466EPSS
Exploits22
GithubExploit
GithubExploit
added 2025/05/30 11:57 a.m.147 views

Exploit for Improper Input Validation in Microsoft

🛡️ Moniker Link CVE-2024-21413 Room: Moniker Link C...

9.8CVSS7.7AI score0.9466EPSS
Exploits22
0day.today
0day.today
added 2019/01/15 12:0 a.m.56 views

Microsoft Windows 10 - Browser Broker Cross Session Privilege Escalation Exploit

Exploit for windows platform in category local exploits Windows: Browser Broker Cross Session EoP Platform: Windows 10 1803 not tested anything else. Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: Session Boundary Summary: The Browser Broker COM object...

6.8CVSS8.5AI score0.18617EPSS
Exploits2
exploitpack
exploitpack
added 2019/01/14 12:0 a.m.20 views

Microsoft Windows 10 - Browser Broker Cross Session Privilege Escalation

Microsoft Windows 10 - Browser Broker Cross Session Privilege Escalation Windows: Browser Broker Cross Session EoP Platform: Windows 10 1803 not tested anything else. Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: Session Boundary Summary: The Browser Broke...

0.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2018/04/17 12:0 a.m.54 views

Microsoft Windows URL Moniker Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. Interaction with a particular library is required to exploit this vulnerability but specific attack vectors may vary. The specific flaw exists within the implementation o...

2.6CVSS4.4AI score0.0556EPSS
Exploits0References1
0day.today
0day.today
added 2018/03/09 12:0 a.m.1628 views

Microsoft Office - Composite Moniker Remote Code Execution Exploit

Exploit for windows platform in category local exploits What? This repo contains a Proof of Concept exploit for CVE-2017-8570, a.k.a the "Composite Moniker" vulnerability. This demonstrates using the Packager.dll trick to drop an sct file into the %TEMP% directory, and then execute it using the...

9.3CVSS7.9AI score0.99933EPSS
Exploits38
exploitpack
exploitpack
added 2018/01/09 12:0 a.m.677 views

Microsoft Office - Composite Moniker Remote Code Execution

Microsoft Office - Composite Moniker Remote Code Execution What? This repo contains a Proof of Concept exploit for CVE-2017-8570, a.k.a the "Composite Moniker" vulnerability. This demonstrates using the Packager.dll trick to drop an sct file into the %TEMP% directory, and then execute it using th...

9.3CVSS0.99933EPSS
Exploits38
CERT
CERT
added 2017/09/13 12:0 a.m.988 views

Microsoft .NET framework SOAP Moniker PrintClientProxy remote code execution vulnerability

Overview The Microsoft .NET framework fails to properly parse WSDL content, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The PrintClientProxy method in the WSDL-parsing component of the Microsoft .NET framework fails to properly...

9.3CVSS8.3AI score0.88698EPSS
Exploits14References2
myhack58
myhack58
added 2017/08/11 12:0 a.m.614 views

Oolong CVE-2017-8570 samples and behind the idea-vulnerability warning-the black bar safety net

The so-called CVE-2017-8570 sample Last week, 360 days eye lab found foreign hackers on Github released a CVE-2017-8570 exploits code, but then deleted, in order to find quite a few labeled as CVE-2017-8570 Office malware samples, such as the following VirusTotal is marked as CVE-2017-8570 sample...

9.3CVSS0.99933EPSS
Exploits38
0day.today
0day.today
added 2017/07/14 12:0 a.m.130 views

Microsoft Windows COM Session Moniker Privilege Escalation Exploit

Microsoft Windows has a bad fix for the COM session moniker that can allow for elevation of privilege. Windows: Bad Fix for COM Session Moniker EoP CVE-2017-0298 Windows: Bad Fix for COM Session Moniker EoP So.... The previous fix for CVE-2017-0100 sounds wrong on the face of it. Rather than fixi...

4.4CVSS8.4AI score0.04957EPSS
Exploits3
Rows per page
Query Builder