Lucene search
+L

558 matches found

Hacker One
Hacker One
added 2025/12/18 11:38 a.m.18 views

curl: Heap Buffer Over-Read via Malicious SMB Server READ_ANDX Response

================================================================================ DESCRIPTION: ================================================================================ Summary: I discovered a heap buffer over-read vulnerability in libcurl's SMB protocol implementation. A malicious SMB serv...

6.9AI score
Exploits0
Hacker One
Hacker One
added 2025/12/18 11:13 a.m.15 views

curl: Heap Buffer Over-Read via Malicious SMB Server READ_ANDX Response

================================================================================ DESCRIPTION: ================================================================================ Summary: I discovered a heap buffer over-read vulnerability in libcurl's SMB protocol implementation. A malicious SMB serv...

6.9AI score
Exploits0
Microsoft KB
Microsoft KB
added 2025/12/09 8:0 a.m.75 views

October 14, 2025—KB5066782 (OS Build 20348.4294)

None None...

9.9CVSS6.8AI score0.04767EPSS
Exploits6
GithubExploit
GithubExploit
added 2025/11/23 12:28 a.m.190 views

Exploit for CVE-2025-10230

CVE-2025-10230 CVE-2025-102...

10CVSS7.3AI score0.39858EPSS
Exploits2
NVD
NVD
added 2025/11/07 8:15 p.m.7 views

CVE-2025-10230

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS0.39858EPSS
Exploits2References5
OSV
OSV
added 2025/11/07 8:15 p.m.9 views

AZL-69830 CVE-2025-10230 affecting package samba 4.18.3-2

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS7.5AI score0.39858EPSS
Exploits2References1
AlpineLinux
AlpineLinux
added 2025/11/07 7:42 p.m.17 views

CVE-2025-10230

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS6.9AI score0.39858EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2025/11/07 7:42 p.m.6 views

CVE-2025-10230

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS7.6AI score0.39858EPSS
Exploits2References4Affected Software6
Cvelist
Cvelist
added 2025/11/07 7:42 p.m.25 views

CVE-2025-10230 Samba: command injection in wins server hook script

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS0.39858EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2025/11/07 7:42 p.m.4 views

CVE-2025-10230 Samba: command injection in wins server hook script

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS6.7AI score0.39858EPSS
Exploits2References3
CVE
CVE
added 2025/11/07 7:42 p.m.108 views

CVE-2025-10230

CVE-2025-10230 involves Samba’s front-end WINS hook where NetBIOS names from registration packets are inserted into a shell without proper validation or escaping, enabling unauthenticated remote code execution as the Samba process. The issue is rooted in unsanitized NetBIOS data in WINS registrat...

10CVSS6.7AI score0.39858EPSS
Exploits2References5
CNNVD
CNNVD
added 2025/11/07 12:0 a.m.7 views

Samba 操作系统命令注入漏洞

Samba is Samba open source a standard Windows interoperability program suite for Linux and Unix. Samba suffers from an operating system command injection vulnerability that stems from a lack of proper validation or escaping of NetBIOS names in front-end WINS hook processing, which could lead to...

10CVSS7.5AI score0.39858EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.7 views

Samba WINS hook RCE (CVE-2025-10230)

In the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active Directory Domain Controller's...

10CVSS7.5AI score0.39858EPSS
Exploits2References2
SUSE CVE
SUSE CVE
added 2025/10/16 11:38 p.m.7 views

SUSE CVE-2025-10230

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS6.9AI score0.39858EPSS
Exploits2References11
RedhatCVE
RedhatCVE
added 2025/10/15 12:47 p.m.17 views

CVE-2025-10230

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS6.8AI score0.39858EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1092

Malware in sbrugna...

5CVSS6.4AI score0.01616EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2017-8249

Malware in sbrugna...

7.5CVSS7.6AI score0.02743EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-8855

Malware in sbrugna...

5.5CVSS5.4AI score0.01243EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2000-0990

Malware in sbrugna...

2.6CVSS6.4AI score0.12513EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-4331

Malware in sbrugna...

5.3CVSS7.3AI score0.13593EPSS
Exploits0References3
Rows per page
Query Builder