Lucene search
K

3133 matches found

NVD
NVD
โ€ขadded 2026/05/01 2:16 p.m.โ€ข7 views

CVE-2026-31704

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use checkaddoverflow to prevent u16 DACL size overflow setposixaclentriesdacl and setntacldacl accumulate ACE sizes in u16 variables. When a file has many POSIX ACL entries, the accumulated size can wrap past 65535, causin...

5.5CVSS0.00117EPSS
Exploits0References6
GithubExploit
GithubExploit
โ€ขadded 2026/04/30 4:31 a.m.โ€ข145 views

Exploit for Improper Authentication in Microsoft

CVE-2026-24294 - Local NTLM Reflection LPE via SMB Arbitrary P...

7.8CVSS5.6AI score0.02762EPSS
Exploits1
UbuntuCve
UbuntuCve
โ€ขadded 2026/04/24 12:0 a.m.โ€ข8 views

CVE-2026-32952

go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport. Version 0.1.1 patches the issue...

7.5CVSS5.8AI score0.01027EPSS
Exploits0References1
OSV
OSV
โ€ขadded 2026/04/23 9:21 p.m.โ€ข6 views

GHSA-PJCQ-XVWQ-HHPJ go-ntlmssp NTLM challenges can panic on malformed payloads

go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport. Version 0.1.1 patches the issue...

5.3CVSS5.8AI score0.01027EPSS
Exploits0References4
GitLab Advisory Database
GitLab Advisory Database
โ€ขadded 2026/04/23 12:0 a.m.โ€ข9 views

go-ntlmssp NTLM challenges can panic on malformed payloads

go-ntlmssp is a Go package that provides NTLM/Negotiate authentication over HTTP. Prior to version 0.1.1, a malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport. Version 0.1.1 patches the issue...

7.5CVSS5.8AI score0.01027EPSS
Exploits0References4Affected Software1
Zero Day Initiative
Zero Day Initiative
โ€ขadded 2026/04/21 12:0 a.m.โ€ข12 views

(0Day) Microsoft Office URI Handler NTLM Response Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose NTLM responses on affected installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

4.3CVSS5.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
โ€ขadded 2026/04/21 12:0 a.m.โ€ข6 views

Unity Linux 20.1070e Security Update: freerdp (UTSA-2026-006941)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006941 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP. In versions prior to 2.7.0, NT LAN Manager NTLM authentication does not properly abort when...

9.1CVSS7.2AI score0.02674EPSS
Exploits1References4
EUVD
EUVD
โ€ขadded 2026/04/15 5:26 p.m.โ€ข7 views

EUVD-2026-22991

Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 do not have protections that prevent attackers from obtaining a user's NTLM hash. The NTLM hash can be obtained by tricking users into cloning a malicious repository, or checking out a malicious branch, that accesses a...

7.4CVSS5.8AI score0.00316EPSS
Exploits0References5
Fedora
Fedora
โ€ขadded 2026/04/04 1:3 a.m.โ€ข11 views

[SECURITY] Fedora 42 Update: libgsasl-1.10.0-15.fc42

The library includes support for the SASL framework and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, and NTLM mechanisms...

8.1CVSS7.1AI score0.01091EPSS
Exploits0
RedhatCVE
RedhatCVE
โ€ขadded 2026/03/27 10:51 p.m.โ€ข5 views

CVE-2026-33682

Streamlit is a data oriented application development framework for python. Streamlit Open Source versions prior to 1.54.0 running on Windows hosts have an unauthenticated Server-Side Request Forgery SSRF vulnerability. The vulnerability arises from improper validation of attacker-supplied...

4.8CVSS5.8AI score0.00282EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
โ€ขadded 2026/03/27 8:48 p.m.โ€ข7 views

Metasploit Wrap-Up 03/27/2026

Better NTLM Relaying Functionality This weekโ€™s release brings an improvement to the SMB NTLM relay server. In the past, itโ€™s support has been expanded with modules for relaying to HTTP ESC8, MSSQL and LDAP while still receiving connections over the humble SMB service. Prior to this release, clien...

9.8CVSS7.3AI score0.00447EPSS
Exploits0
EUVD
EUVD
โ€ขadded 2026/03/26 12:30 a.m.โ€ข4 views

EUVD-2026-16005

A flaw has been found in Enter Software Iperius Backup up to 8.7.3. Affected by this vulnerability is an unknown functionality of the component NTLM2 Handler. Executing a manipulation can lead to information disclosure. The attack is restricted to local execution. Attacks of this nature are highl...

2.5CVSS5.1AI score0.00131EPSS
Exploits0References6
CNNVD
CNNVD
โ€ขadded 2026/03/25 12:0 a.m.โ€ข13 views

Iperius Backup ่ฎฟ้—ฎๆŽงๅˆถ้”™่ฏฏๆผๆดž

Iperius Backup is a backup tool developed by the Italian company Iperius Backup. Iperius Backup versions 8.7.3 and earlier contained an access control vulnerability, which was caused by improper handling of the NTLM2 Handler component, potentially leading to information leakage...

2.5CVSS5.8AI score0.00131EPSS
Exploits0References6
Packet Storm News
Packet Storm News
โ€ขadded 2026/03/13 12:0 a.m.โ€ข4 views

Windows File Explorer NTLM Forced Authentication Hash Disclosure 1.0

Windows File Explorer contains persistent forced authentication behavior that automatically transmits NTLM challenge-response hashes to remote SMB/WebDAV endpoints during routine file operations, enabling credential theft and potential domain compromise through NTLM relay attacks. This is not an...

5.8AI score
Exploits0
Packet Storm
Packet Storm
โ€ขadded 2026/03/12 12:0 a.m.โ€ข265 views

๐Ÿ“„ Microsoft Windows 11 SMB Local Privilege Escalation

Proof of concept for CVEโ€‘2025โ€‘33073, a Microsoft Windows SMB privilege escalation vulnerability that abuses local NTLM reflection behavior within the SMB stack...

8.8CVSS5.8AI score0.64987EPSS
Exploits6
CVE
CVE
โ€ขadded 2026/03/10 8:34 p.m.โ€ข57 views

CVE-2025-66413

CVE-2025-66413 (Git for Windows) affects the Windows port of Git prior to 2.53.0(2). The issue arises when a user is tricked into cloning from a malicious server, allowing an attacker to obtain the userโ€™s NTLM hash. Because NTLM hashing is weak, the attacker may brute-force the userโ€™s account nam...

7.4CVSS5.8AI score0.00268EPSS
Exploits1References2Affected Software1
EUVD
EUVD
โ€ขadded 2026/03/10 8:34 p.m.โ€ข6 views

EUVD-2025-208535

Git for Windows is the Windows port of Git. Prior to 2.53.02, it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server. Since NTLM hashing is weak, it is possible for the attacker to brute-force the user's account name and password. This vulnerability is...

7.4CVSS5.8AI score0.00268EPSS
Exploits1References2
AlpineLinux
AlpineLinux
โ€ขadded 2026/03/10 8:34 p.m.โ€ข4 views

CVE-2025-66413

Git for Windows is the Windows port of Git. Prior to 2.53.02, it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server. Since NTLM hashing is weak, it is possible for the attacker to brute-force the user's account name and password. This vulnerability is...

7.4CVSS5.8AI score0.00268EPSS
Exploits1References2
Packet Storm
Packet Storm
โ€ขadded 2026/03/05 12:0 a.m.โ€ข222 views

๐Ÿ“„ Windows SMB Client Privilege Escalation

This Metasploit module exploits CVE-2025-33073 in Windows SMB clients through a complex attack chain involving DNS record injection, NTLM relay attacks, and RPC coercion. The vulnerability allows privilege escalation and remote code execution on affected Windows systems including Windows 11,...

8.8CVSS6.5AI score0.64987EPSS
Exploits6
Zero Day Initiative
Zero Day Initiative
โ€ขadded 2026/03/03 12:0 a.m.โ€ข7 views

Trend Micro Apex One Origin Validation Error Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7.8CVSS6.3AI score0.00337EPSS
Exploits0References1
Rows per page
Query Builder