Lucene search
+L

123 matches found

Wired Threat Level
Wired Threat Level
added 2024/03/02 2:0 p.m.15 views

The Privacy Danger Lurking in Push Notifications

Plus: Apple warns about sideloading apps, a court orders NSO group to turn over the code of its Pegasus spyware, and an investigation finds widely available security cams are wildly insecure...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/01/30 1:6 p.m.31 views

Apple warns of “privacy and security threats” after EU requires it to allow sideloading

Despite several warnings about the risks, Apple will allow European iPhone owners to install apps obtained from outside the official App store sideloading. These drastic changes are brought about to comply with the European Union’s EU Digital Markets Act DMA. The Digital Markets Act DMA establish...

6.6AI score
Exploits0
hivepro
hivepro
added 2023/10/20 1:6 p.m.14 views

In-Depth Analysis of Phobos Ransomware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Phobos ransomware, active since 2018, primarily targets small to medium-sized businesses with lower ransom demands. It uses compromised RDP connections, is distributed via a Ransomware as a Service model...

6.9AI score
Exploits0
OSV
OSV
added 2023/10/11 5:15 p.m.3 views

CVE-2023-4936

It is possible to sideload a compromised DLL during the installation at elevated privilege...

6.7CVSS5.8AI score0.00214EPSS
Exploits0References3
CVE
CVE
added 2023/10/11 5:0 p.m.63 views

CVE-2023-4936

CVE-2023-4936 affects Synaptics DisplayLink graphics via a dynamic library sideloading vulnerability. The issue enables loading a compromised DLL during installation with elevated privileges, constituting a local privilege escalation. According to NVD, the CVSS 3.1 vector is AV:L/AC:H/PR:L/UI:R/S...

6.7CVSS6AI score0.00214EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/11 5:0 p.m.13 views

CVE-2023-4936 Synaptics-DisplayLink-privilege escalation vulnerability via a dynamic library sideloading

It is possible to sideload a compromised DLL during the installation at elevated privilege...

5.5CVSS6.8AI score0.00214EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/10/11 5:0 p.m.32 views

CVE-2023-4936 Synaptics-DisplayLink-privilege escalation vulnerability via a dynamic library sideloading

It is possible to sideload a compromised DLL during the installation at elevated privilege...

5.5CVSS7.8AI score0.00214EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2023/10/11 12:0 a.m.7 views

VulnCheck KEV: CVE-2022-23748

Dante Discovery contains a process control vulnerability in mDNSResponder.exe that all allows for a DLL sideloading attack. A local attacker can leverage this vulnerability in the Dante Application Library to execute arbitrary code...

7.8CVSS7.5AI score0.09092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/11 12:0 a.m.7 views

PT-2023-31182

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned. Description The issue allows for the sideloading of a compromised DLL during installation at elevated privilege. Recommendations At the moment, there is no information about a newer version that...

6.7CVSS6.5AI score0.00214EPSS
Exploits0References6
Kitploit
Kitploit
added 2023/08/14 12:30 p.m.110 views

Chimera - Automated DLL Sideloading Tool With EDR Evasion Capabilities

While DLL sideloading can be used for legitimate purposes, such as loading necessary libraries for a program to function, it can also be used for malicious purposes. Attackers can use DLL sideloading to execute arbitrary code on a target system, often by exploiting vulnerabilities in legitimate...

8.1AI score
Exploits0References4
NVD
NVD
added 2023/07/13 12:15 a.m.27 views

CVE-2023-21257

In updateSettingsInternalLI of InstallPackageHelper.java, there is a possible way to sideload an app in the work profile due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS0.0009EPSS
Exploits0References2
CVE
CVE
added 2023/07/12 11:33 p.m.132 views

CVE-2023-21257

CVE-2023-21257 is an Android Framework elevation-of-privilege issue. In the function updateSettingsInternalLI of InstallPackageHelper.java , a missing permission check could allow sideloading an app into the work profile, enabling local privilege escalation with no extra execution privileges requ...

7.8CVSS7.7AI score0.0009EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.4 views

PT-2023-18042 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: The issue is related to a missing permission check in the updateSettingsInternalLI function of InstallPackageHelper.java, allowing an app to be sideloaded in the work profile. This coul...

7.8CVSS7.4AI score0.0009EPSS
Exploits0References5
OSV
OSV
added 2023/07/01 12:0 a.m.31 views

ASB-A-257443065

In updateSettingsInternalLI of InstallPackageHelper.java, there is a possible way to sideload an app in the work profile due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.7AI score0.0009EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/05/18 6:19 a.m.54 views

Apple Thwarts $2 Billion in App Store Fraud, Rejects 1.7 Million App Submissions

Apple has announced that it prevented over $2 billion in potentially fraudulent transactions and rejected roughly 1.7 million app submissions for privacy and security violations in 2022. The computing giant said it terminated 428,000 developer accounts for potential fraudulent activity, blocked...

7.1AI score
Exploits0
hivepro
hivepro
added 2023/05/09 6:5 a.m.16 views

Dragon Breath APT Evolves with Double DLL Sideloading

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Dragon Breath APT targets the gambling industry using the double-clean-app technique & DLL sideloading. Chinese-speaking Windows users are being targeted. To receive real-time threat advisories, please...

6.9AI score
Exploits0
Talos Blog
Talos Blog
added 2023/03/30 10:29 p.m.16 views

Threat Advisory: 3CX Softphone Supply Chain Compromise

Cisco Talos is tracking and actively responding to a supply chain attack involving the 3CX Desktop Softphone application. This is a multi-stage attack that involves sideloading DLLs, seven-day sleep routines, and additional payloads dependent on a now-removed GitHub repository for Windows-based...

6.6AI score
Exploits0
OSV
OSV
added 2023/03/13 1:15 p.m.5 views

CVE-2023-24578

McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL sideloading. This could enable a user with lower privileges to execute unauthorized tasks...

5.5CVSS6.2AI score0.00254EPSS
Exploits0References2
NVD
NVD
added 2023/03/13 1:15 p.m.36 views

CVE-2023-24578

McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL sideloading. This could enable a user with lower privileges to execute unauthorized tasks...

5.5CVSS5.5AI score0.00254EPSS
Exploits0References2
Prion
Prion
added 2023/03/13 1:15 p.m.18 views

Code injection

McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL sideloading. This could enable a user with lower privileges to execute unauthorized tasks...

1.9CVSS5.6AI score0.00254EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder