Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

The Hacker News
The Hacker Newsadded 2025/05/20 12:42 p.m.39 views

AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation

Cybersecurity researchers have discovered risky default identity and access management IAM roles impacting Amazon Web Services that could open the door for attackers to escalate privileges, manipulate other AWS services, and, in some cases, even fully compromise AWS accounts. "These roles, often...

7.9AI score
Exploits0
Akamai Blog
Akamai Blogadded 2021/03/15 10:15 p.m.406 views

Microsoft Exchange and Verkada Hacks: Isolate Your Apps and APIs from the Internet Cesspool

It's been an interesting start to March in terms of public security incidents. This month kicked off with multiple zero-day exploits being used to attack on-premises versions of Microsoft Exchange Server. And, as if that wasn't enough, that attack was quickly followed by the news that a hacktivis...

7.5CVSS0.94312EPSS
Exploits64
exploitpack
exploitpackadded 2019/04/26 12:0 a.m.21 views

systemd - DynamicUser can Create setuid Binaries when Assisted by Another Process

systemd - DynamicUser can Create setuid Binaries when Assisted by Another Process This bug report describes a bug in systemd that allows a service with DynamicUser in collaboration with another service or user to create a setuid binary that can be used to access its UID beyond the lifetime of the...

7.4AI score
Exploits0
ThreatPost
ThreatPostadded 2010/09/02 4:28 a.m.121 views

Researcher Will Demo Bypass of Windows Service Isolation Feature

A prominent researcher will use an upcoming security conference in Buenos Aires to demonstrate an exploit that allows hackers to bypass the Windows Service Isolation feature, despite Microsoft’s efforts to close the security loophole. Security researcher Cesar Cerrudo of Argeniss Information...

9.3CVSS1.2AI score0.94354EPSS
Exploits33References4
Positive Technologies
Positive Technologiesadded 2010/08/16 12:0 a.m.2 views

PT-2010-3509 · Microsoft · Iis +7

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions SP2 and R2 Microsoft Windows 7 affected versions not specified Description...

6.8CVSS6.4AI score0.00735EPSS
Exploits0References4
NVD
NVDadded 2009/04/15 8:0 a.m.22 views

CVE-2009-0079

The RPCSS service in Microsoft Windows XP SP2 and SP3 and Server 2003 SP1 and SP2 does not properly implement isolation among a set of distinct processes that 1 all run under the NetworkService account or 2 all run under the LocalService account, which allows local users to gain privileges by...

6.9CVSS6.3AI score0.00752EPSS
Exploits3References6
Rows per page
Query Builder