Lucene search
+L

110 matches found

OSV
OSV
added 2023/12/21 1:15 a.m.3 views

CVE-2023-29485

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module. NOTE: Heimdal disputes the validit...

9.8CVSS5.8AI score0.00961EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/12/21 1:15 a.m.9 views

CVE-2023-29487

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS...

9.1CVSS7.2AI score0.00658EPSS
Exploits1References3
NVD
NVD
added 2023/12/21 1:15 a.m.26 views

CVE-2023-29486

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. NOTE: Heimdal argues that the limitation described here is a...

9.8CVSS0.0103EPSS
Exploits1References1
Prion
Prion
added 2023/12/21 1:15 a.m.20 views

Design/Logic Flaw

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component...

7.5CVSS7.4AI score0.0103EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/12/21 1:15 a.m.15 views

Design/Logic Flaw

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module...

6.4CVSS7AI score0.00658EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/12/21 1:15 a.m.16 views

Design/Logic Flaw

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module...

7.5CVSS7.4AI score0.00961EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2023/12/21 12:0 a.m.35 views

CVE-2023-29486

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. Notes Author| Note ---|--- iconstantin | The heimdal package in...

9.8CVSS9.3AI score0.0103EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2023/12/21 12:0 a.m.12 views

CVE-2023-29487

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS...

7AI score0.00658EPSS
Exploits1References1
CVE
CVE
added 2023/12/21 12:0 a.m.47 views

CVE-2023-29485

CVE-2023-29485 affects Heimdal Thor agent: Windows 3.4.2 and earlier; macOS 2.6.9 and earlier. The issue allows bypassing network filtering, arbitrary code execution, and data exposure via the DarkLayer Guard threat prevention module. The vendor disputes the issue, arguing DNS traffic is filtered...

9.8CVSS9.7AI score0.00961EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/12/21 12:0 a.m.76 views

CVE-2023-29487

CVE-2023-29487 affects Heimdal Thor agent: Windows ≤3.4.2 and macOS ≤2.6.9. The root cause is the Threat To Process Correlation module lacking origin-process information in DNS logs, which is interpreted as a DoS. The documented impact is a denial of service, with no public exploit details provid...

9.1CVSS9AI score0.00658EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/12/21 12:0 a.m.23 views

CVE-2023-29485

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module. NOTE: Heimdal disputes the validit...

9.7AI score0.00961EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/12/21 12:0 a.m.25 views

CVE-2023-29487

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS...

9AI score0.00658EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/12/21 12:0 a.m.31 views

CVE-2023-29486

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. NOTE: Heimdal argues that the limitation described here is a...

9.6AI score0.0103EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/12/21 12:0 a.m.6 views

Heimdal Access Control Error Vulnerability

Heimdal is a Kerberos implementation and security program from Heimdal open source. Heimdal suffers from an Access Control Error vulnerability that originates from allowing an attacker to bypass web filtering, execute arbitrary code, and obtain sensitive information via the DarkLayer Guard threat...

9.8CVSS6.9AI score0.00961EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2023/12/21 12:0 a.m.39 views

CVE-2023-29485

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to bypass network filtering, execute arbitrary code, and obtain sensitive information via DarkLayer Guard threat prevention module. Notes Author| Note ---|---...

9.8CVSS9.5AI score0.00961EPSS
Exploits1References5
Cvelist
Cvelist
added 2023/12/21 12:0 a.m.18 views

CVE-2023-29486

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component. NOTE: Heimdal argues that the limitation described here is a...

9.7AI score0.0103EPSS
Exploits1References1
CVE
CVE
added 2023/12/21 12:0 a.m.68 views

CVE-2023-29486

The CVE-2023-29486 entry concerns Heimdal Thor agent for Windows, affected in versions 3.4.2 and earlier than 3.7.0. The issue allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via the Next-Gen Antivirus component. Red Hat and Ubuntu ecos...

9.8CVSS9.6AI score0.0103EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/20 12:0 a.m.7 views

PT-2023-22277 · Heimdal · Heimdal Thor Agent

Name of the Vulnerable Software and Affected Versions: Heimdal Thor agent versions 3.4.2 and before on Windows Heimdal Thor agent versions 2.6.9 and before on macOS Description: An issue in the Heimdal Thor agent allows attackers to bypass network filtering, execute arbitrary code, and obtain...

9.8CVSS7.5AI score0.00961EPSS
Exploits1References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:21 p.m.4 views

Malicious code in data-mil-thor-ww1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8053d089451ed8507fbeeb5bab186384aa4650ed7d7b11facc30681356ae26ef Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
The Hacker News
The Hacker News
added 2022/04/27 12:24 p.m.23 views

Chinese Hackers Targeting Russian Military Personnel with Updated PlugX Malware

A China-linked government-sponsored threat actor observed striking European diplomatic entities in March may have been targeting Russian government officials with an updated version of a remote access trojan called PlugX. Secureworks attributed the attempted intrusions to a threat actor it tracks...

0.5AI score
Exploits0
Rows per page
Query Builder