Lucene search
K

4730 matches found

GithubExploit
GithubExploit
added 2021/08/07 8:38 a.m.73 views

Exploit for Off-by-one Error in Sudo_Project Sudo

CVE-2021-3156 ============= Sudo before 1.9.5p2 contains an off...

7.8CVSS7.9AI score0.99295EPSS
Exploits81
Qualys Blog
Qualys Blog
added 2021/08/05 1:44 a.m.73 views

Qualys Research Wins Two 2021 Pwnie Awards

The Qualys Research team won two Pwnie Awards today at Black Hat USA 2021 for discovering and responsibly disclosing these new vulnerabilities: Best Privilege Escalation Bug and Most Under-Hyped Research. The Qualys Research team received these awards: Best Privilege Escalation Bug Heap-based...

7.2CVSS1.7AI score0.99295EPSS
Exploits81
GithubExploit
GithubExploit
added 2021/08/01 10:50 a.m.125 views

Exploit for Out-of-bounds Write in Sudo_Project Sudo

CVE-2019-18634 N-Day Exploit Slides https://docs.googl...

7.8CVSS7.6AI score0.19426EPSS
Exploits13
GithubExploit
GithubExploit
added 2021/07/30 11:41 a.m.85 views

Exploit for Incorrect Authorization in Polkit_Project Polkit

Polkit D-Bus Authentication Bypass Exploit A vulnerability...

7.8CVSS8.2AI score0.22193EPSS
Exploits37
Packet Storm
Packet Storm
added 2021/07/30 12:0 a.m.298 views

Pi-Hole Remove Commands Linux Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Pi-Hole Remove Commands Linux Priv Esc', 'Description' = %q Pi-Hole versions 3.0 - 5.3 allows for command line input to the removecustomcname,...

7.8CVSS0.8AI score0.01863EPSS
Exploits4
GithubExploit
GithubExploit
added 2021/07/26 7:8 a.m.77 views

Exploit for Off-by-one Error in Sudo_Project Sudo

CVE-2021-3156 PoC Introdução Este é um exploit para o CV...

7.8CVSS7.7AI score0.99295EPSS
Exploits81
CNVD
CNVD
added 2021/07/15 12:0 a.m.7 views

Unspecified Vulnerability in VIAware

Kramer Electronics VIAware is a wireless presentation collaboration software solution from Kramer Electronics, Israel. A security vulnerability exists in all tested versions of KramerAV VIAWare, which can be exploited by an attacker to elevate privileges via misconfigured sudo...

10CVSS6.7AI score0.70753EPSS
Exploits5References1
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.19 views

openSUSE: Security Advisory for avahi (openSUSE-SU-2021:1845-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.3AI score0.0045EPSS
Exploits0References2
NVD
NVD
added 2021/07/12 12:15 p.m.22 views

CVE-2021-35064

KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg...

10CVSS0.70753EPSS
Exploits5References2
Prion
Prion
added 2021/07/12 12:15 p.m.23 views

Design/Logic Flaw

KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg...

10CVSS9.7AI score0.70753EPSS
Exploits5References2
CVE
CVE
added 2021/07/12 11:9 a.m.233 views

CVE-2021-35064

Kramer VIAware (VIAware web interface) is affected by CVE-2021-35064 with concrete details in connected sources: misconfigured sudoers permissions grant privilege escalation by allowing dangerous commands (e.g., unzip, systemctl, dpkg), enabling possible remote code execution patterns. Nuclei tem...

10CVSS9.6AI score0.70753EPSS
In wildExploits5References2Affected Software1
Cvelist
Cvelist
added 2021/07/12 11:9 a.m.24 views

CVE-2021-35064

KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg...

10AI score0.70753EPSS
Exploits5References2
ATTACKERKB
ATTACKERKB
added 2021/07/12 12:0 a.m.124 views

CVE-2021-35064

KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

10CVSS5.4AI score0.70753EPSS
In wildExploits5References3
Positive Technologies
Positive Technologies
added 2021/07/12 12:0 a.m.4 views

PT-2021-20822

Name of the Vulnerable Software and Affected Versions KramerAV VIAWare affected versions not specified Description The software allows for privilege escalation due to improper sudo configuration. The sudoers file permits the execution of multiple dangerous commands, including unzip, systemctl, an...

10CVSS9.8AI score0.70753EPSS
Exploits5References7
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.5 views

VIAware 安全漏洞

Kramer Electronics VIAware is a wireless presentation collaboration software solution from Kramer Electronics, Israel. A security vulnerability exists in all tested versions of KramerAV VIAWare, which can be exploited by an attacker to elevate privileges via misconfigured sudo...

10CVSS5.6AI score0.70753EPSS
Exploits5References4
0day.today
0day.today
added 2021/07/10 12:0 a.m.170 views

Polkit D-Bus Authentication Bypass Exploit

A vulnerability exists within the polkit system service that can be leveraged by a local, unprivileged attacker to perform privileged operations. In order to leverage the vulnerability, the attacker invokes a method over D-Bus and kills the client process. This will occasionally cause the operati...

7.8CVSS0.8AI score0.22193EPSS
Exploits37
Packet Storm
Packet Storm
added 2021/07/09 12:0 a.m.1002 views

Polkit D-Bus Authentication Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'unixcrypt' class MetasploitModule 'Polkit D-Bus Authentication Bypass', 'Description' = %q A vulnerability exists within the polkit system service that can be...

0.2AI score0.22193EPSS
Exploits37
OSV
OSV
added 2021/07/07 9:30 a.m.5 views

CLSA-2021-1625650209 Fix of CVE: CVE-2021-23240

sudo-1.8.6p3-CVE-2021-23240-2.patch: fixed issue with credentials management in sudoedit - sudo-1.8.6p3-CVE-2021-23240-3.patch: fixed issue with origin file removal in sesh...

7.8CVSS7.1AI score0.01066EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-2170)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.5AI score0.99295EPSS
Exploits81References4
0day.today
0day.today
added 2021/07/06 12:0 a.m.137 views

Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Vulnerability

Exploit Title: Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Exploit Author: Andrea D'Ubaldo Vendor Homepage: https://visual-tools.com/ Version: Visual Tools VX16 v4.2.28.0 Tested on: VX16 Embedded Linux 2.6.35.4. An attacker can perform a system-level root local privilege escalation...

0.1AI score
Exploits0
Rows per page
Query Builder