CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Packet Storm•added 2024/08/31 12:0 a.m.•288 views

Netlogon Weak Cryptographic Authentication

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'windowserror' class MetasploitModule 'Netlogon Weak Cryptographic Authentication', 'Description' = %q A vulnerability exists within the Netlogon authentication...

10CVSS7.7AI score0.9438EPSS

Exploits75

Exploit DB•added 2020/11/18 12:0 a.m.•1117 views

ZeroLogon - Netlogon Elevation of Privilege

Exploit Title: ZeroLogon - Netlogon Elevation of Privilege Date: 2020-10-04 Exploit Author: West Shepherd Vendor Homepage: https://www.microsoft.com Version: Microsoft Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2 Tested on: Microsof...

10CVSS8.7AI score0.9438EPSS

Exploits75

Information Security Automation•added 2020/09/30 11:46 p.m.•212 views

Microsoft Patch Tuesday September 2020: Zerologon and other exploits, RCEs in SharePoint and Exchange

I would like to start this post by talking about Microsoft vulnerabilities, which recently turned out to be much more serious than it seemed at first glance. Older Vulnerabilities with exploits "Zerologon" Netlogon RCE CVE-2020-1472 One of them is, of course, the Netlogon vulnerability from the...

9.3CVSS9.3AI score0.9438EPSS

Exploits100

GithubExploit•added 2020/09/30 7:45 a.m.•171 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.9438EPSS

Exploits75

The Hacker News•added 2020/09/23 6:8 p.m.•423 views

Detecting and Preventing Critical ZeroLogon Windows Server Vulnerability

If you're administrating Windows Server, make sure it's up to date with all recent patches issued by Microsoft, especially the one that fixes a recently patched critical vulnerability that could allow unauthenticated attackers to compromise the domain controller. Dubbed 'Zerologon' CVE-2020-1472...

10CVSS2.8AI score0.9438EPSS

Exploits75

ThreatPost•added 2020/09/21 7:29 p.m.•199 views

DHS Issues Dire Patch Warning for ‘Zerologon’

Federal agencies that haven’t patched their Windows Servers against the ‘Zerologon’ vulnerability by Monday Sept. 21 at 11:59 pm EDT are in violation of a rare emergency directive issued by the Secretary of Homeland Security. With only hours until the deadline for the directive, issued on Friday,...

9.3CVSS1.6AI score0.9438EPSS

Exploits75References11

GithubExploit•added 2020/09/21 7:24 a.m.•140 views

Exploit for CVE-2020-1472

CVE-2020-1472 POC Requires the latest impacket from GitHubh...

10CVSS8.1AI score0.9438EPSS

Exploits75

GithubExploit•added 2020/09/16 7:25 a.m.•238 views

Exploit for CVE-2020-1472

!Pythonpython-shield CVE-2020-1472 CVE-2020-1472 - Zero...

10CVSS8.1AI score0.9438EPSS

Exploits75

GithubExploit•added 2020/09/16 3:54 a.m.•470 views

Exploit for CVE-2020-1472

CVE-2020-1472 POC Requires the latest impacket from GitHubh...

10CVSS8.1AI score0.9438EPSS

Exploits75

ThreatPost•added 2020/09/15 3:59 p.m.•169 views

Windows Exploit Released For Microsoft ‘Zerologon’ Flaw

Proof-of-concept PoC exploit code has been released for a Windows flaw, which could allow attackers to infiltrate enterprises by gaining administrative privileges, giving them access to companies’ Active Directory domain controllers DCs. The vulnerability, dubbed “Zerologon,” is a...

9.3CVSS8.4AI score0.9438EPSS

Exploits76References17

GithubExploit•added 2020/09/08 8:58 a.m.•356 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.2AI score0.9438EPSS

Exploits75

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by