Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2024/01/08 8:15 p.m.8 views

CVE-2023-52271

The wsftprm.sys kernel driver 2.0.0.0 in Topaz Antifraud allows low-privileged attackers to kill any Protected Process Light process via an IOCTL which will be named at a later time...

6.5CVSS6.3AI score0.00018EPSS
Exploits2References2
OSV
OSVadded 2024/01/08 8:15 p.m.4 views

CVE-2023-52271

The wsftprm.sys kernel driver 2.0.0.0 in Topaz Antifraud allows low-privileged attackers to kill any Protected Process Light process via an IOCTL which will be named at a later time...

6.5CVSS5.8AI score0.00018EPSS
Exploits2References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:23 a.m.1 views

SUSE CVE-2015-0001

The Windows Error Reporting WER component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass the Protected Process Light protection mechanism and read the contents of arbitrary process-memory locations by leveraging...

1.9CVSS5.9AI score0.00649EPSS
Exploits0References3
Kitploit
Kitploitadded 2021/06/17 9:30 p.m.148 views

PPLdump - Dump The Memory Of A PPL With A Userland Exploit

This tool implements a userland exploit that was initially discussed by James Forshaw a.k.a. @tiraniddo - in this blog post - for dumping the memory of any PPL as an administrator. I wrote two blog posts about this tool. The first part is about Protected Processes concepts while the second one...

8.1AI score
Exploits0References2
GoogleProjectZero
GoogleProjectZeroadded 2018/10/16 12:0 a.m.88 views

Injecting Code into Windows Protected Processes using COM - Part 1

Posted by James Forshaw, Google Project Zero At Recon Montreal 2018 I presented “Unknown Known DLLs and other Code Integrity Trust Violations” with Alex Ionescu. We described the implementation of Microsoft Windows’ Code Integrity mechanisms and how Microsoft implemented Protected Processes PP. A...

3.3CVSS6AI score0.00664EPSS
Exploits1
CNVD
CNVDadded 2015/01/15 12:0 a.m.3 views

Microsoft Windows Error Reporting Security Mechanism Bypass Vulnerability

Microsoft Windows is a family of operating systems from Microsoft. A security bypass vulnerability exists in Microsoft Windows Error Reporting WER that could allow an administrative user to view the contents of process memory protected by "Protected Process Light.", resulting in the disclosure of...

1.9CVSS6.4AI score0.00649EPSS
Exploits0References1
NVD
NVDadded 2015/01/13 10:59 p.m.22 views

CVE-2015-0001

The Windows Error Reporting WER component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass the Protected Process Light protection mechanism and read the contents of arbitrary process-memory locations by leveraging...

1.9CVSS6.2AI score0.00649EPSS
Exploits0References6
Rows per page
Query Builder