Lucene search
K

211 matches found

Packet Storm
Packet Storm
added 2026/06/11 12:0 a.m.50 views

📄 FIFOFox: Windows Named-Pipe Weak Permission and Access Control Validation

This C-based framework analyzes Windows named pipes for insecure permission configurations and weak access controls that could introduce privilege boundary issues. The code collects metadata about target pipes, inspects security descriptors and DACL configurations, checks for potentially unsafe...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/05 12:0 a.m.12 views

FIFOFox: Windows Named-Pipe Security Auditor and Fuzzer

FIFOFox is a Windows named-pipe security assessment tool for identifying weak pipe permissions, pipe-squatting exposure, and named-pipe impersonation attack paths. It combines passive auditing with authorized active testing, including fuzzing and interception-style capture, to help defenders find...

5.4AI score
Exploits0
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.14 views

Acer NitroSense 安全漏洞

Acer NitroSense is a gaming device performance management software developed by Acer of Taiwan, China. Versions of Acer NitroSense prior to 3.01.3052 contained security vulnerabilities. These vulnerabilities stemmed from the PSAdminAgent service creating named pipes with weak access control lists...

8.5CVSS5.9AI score0.00152EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fixed recursive locking in RPC handle list access Since commit 305853cce3794 “ksmbd: Fixed race condition in RPC handle list access”, the ksmbdsessionrpcmethod function attempts to lock sess-rpclock. This causes hung...

5.5CVSS5.3AI score0.00138EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/04/27 12:0 a.m.82 views

📄 Windows Cloud Files Tiering Engine Local Privilege Escalation

his Metasploit local exploit module models a Windows privilege escalation scenario involving Cloud Files, NTFS reparse points, named pipes, and service interaction. The workflow simulates abusing file system operations and cloud sync mechanisms by creating controlled directories, placeholder file...

5.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34483

The comm utility in uutils coreutils incorrectly consumes data from non-regular file inputs before performing comparison operations. The are files identical function opens and reads from both input paths to compare content without first verifying if the paths refer to regular files. If an input...

4.4CVSS5.7AI score0.00134EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/17 12:31 p.m.8 views

EUVD-2026-23409

GREENmod uses named pipes for communication between plugins, the web portal, and the system service, but the access control lists for these pipes are configured incorrectly. This allows an attacker to communicate with the stream and upload any XML or JSON file, which will be processed by the name...

6.9CVSS5.7AI score0.00426EPSS
Exploits0References3
NVD
NVD
added 2026/04/17 11:16 a.m.5 views

CVE-2026-5131

GREENmod uses named pipes for communication between plugins, the web portal, and the system service, but the access control lists for these pipes are configured incorrectly. This allows an attacker to communicate with the stream and upload any XML or JSON file, which will be processed by the name...

6.9CVSS0.00426EPSS
Exploits0References2
CVE
CVE
added 2026/04/17 10:45 a.m.8 views

CVE-2026-5131

GREENmod uses named pipes for communication between plugins, the web portal, and the system service, with ACLs configured incorrectly. This can allow an attacker to communicate with the stream and upload XML or JSON files, which are processed by the named pipe under the service user’s privileges,...

6.9CVSS5.7AI score0.00426EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/17 10:45 a.m.23 views

CVE-2026-5131 Server-Side Request Forgery in GREENmod

GREENmod uses named pipes for communication between plugins, the web portal, and the system service, but the access control lists for these pipes are configured incorrectly. This allows an attacker to communicate with the stream and upload any XML or JSON file, which will be processed by the name...

6.9CVSS0.00426EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/17 10:45 a.m.6 views

CVE-2026-5131 Server-Side Request Forgery in GREENmod

GREENmod uses named pipes for communication between plugins, the web portal, and the system service, but the access control lists for these pipes are configured incorrectly. This allows an attacker to communicate with the stream and upload any XML or JSON file, which will be processed by the name...

6.9CVSS5.7AI score0.00426EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/17 10:45 a.m.4 views

CVE-2026-5131

GREENmod uses named pipes for communication between plugins, the web portal, and the system service, but the access control lists for these pipes are configured incorrectly. This allows an attacker to communicate with the stream and upload any XML or JSON file, which will be processed by the name...

6.9CVSS5.7AI score0.00426EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.8 views

PT-2026-33439

GREENmod uses named pipes for communication between plugins, the web portal, and the system service, but the access control lists for these pipes are configured incorrectly. This allows an attacker to communicate with the stream and upload any XML or JSON file, which will be processed by the name...

6.9CVSS5.7AI score0.00426EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2026/02/25 12:0 a.m.159 views

📄 MS‑EVEN TOCTOU ElfrBackupELFW Arbitrary File Write

This module exploits a Time-of-Check Time-of-Use TOCTOU vulnerability in the MS-EVEN protocol Windows Event Log service. A low-privileged authenticated user can write arbitrary files to a remote Windows machine by abusing the ElfrBackupELFW RPC function. This module strictly follows the MS-EVEN...

7.5CVSS5.8AI score0.0106EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/02/13 12:0 a.m.14 views

Fortinet FortiClient Improper Link Resolution Before File Access (FG-IR-25-661)

The version of FortiClient installed on the remote host is prior to tested version. It is, therefore, affected by a improper link resolution before file access vulnerability as referenced in the FG-IR-25-661 advisory. - An Improper Link Resolution Before File Access 'Link Following' vulnerability...

7.1CVSS7.2AI score0.00214EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/31 3:21 p.m.11 views

CVE-2025-6723

Chef InSpec versions up to 5.23 and before 7.0.107 creates named pipes with overly permissive default Windows access controls. A local attacker may interfere with the pipe connection process and exploit the insufficient access restrictions to assume the InSpec execution context, potentially...

5.8CVSS5.9AI score0.00119EPSS
Exploits0References1
NVD
NVD
added 2026/01/30 2:16 p.m.4 views

CVE-2025-6723

Chef InSpec versions up to 5.23 and before 7.0.107 creates named pipes with overly permissive default Windows access controls. A local attacker may interfere with the pipe connection process and exploit the insufficient access restrictions to assume the InSpec execution context, potentially...

5.8CVSS0.00119EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/30 2:9 p.m.4 views

CVE-2025-6723 Untrusted user data can lead to privilege escalation

Chef InSpec versions up to 5.23 and before 7.0.107 creates named pipes with overly permissive default Windows access controls. A local attacker may interfere with the pipe connection process and exploit the insufficient access restrictions to assume the InSpec execution context, potentially...

5.8CVSS5.8AI score0.00119EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/30 2:9 p.m.6 views

CVE-2025-6723

Chef InSpec versions up to 5.23 and before 7.0.107 creates named pipes with overly permissive default Windows access controls. A local attacker may interfere with the pipe connection process and exploit the insufficient access restrictions to assume the InSpec execution context, potentially...

5.8CVSS5.8AI score0.00119EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/30 2:9 p.m.5 views

EUVD-2025-206578

Chef InSpec up to version 5.23 creates named pipes with overly permissive default Windows access controls. A local attacker may interfere with the pipe connection process and exploit the insufficient access restrictions to assume the InSpec execution context, potentially resulting in elevated...

5.8CVSS6AI score0.00119EPSS
Exploits0References1
Rows per page
Query Builder