Lucene search
K

636 matches found

Cvelist
Cvelist
added 2026/03/20 6:19 p.m.31 views

CVE-2026-32310 Cryptomator: Unverified masterkeyfile key IDs can access arbitrary local or UNC paths

Cryptomator encrypts data being stored on cloud infrastructure. From version 1.6.0 to before version 1.19.1, vault configuration is parsed before its integrity is verified, and the masterkeyfile loader uses the unverified keyId as a filesystem path. The loader resolves keyId.getSchemeSpecificPart...

4.1CVSS0.00248EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/20 6:19 p.m.3 views

CVE-2026-32310 Cryptomator: Unverified masterkeyfile key IDs can access arbitrary local or UNC paths

Cryptomator encrypts data being stored on cloud infrastructure. From version 1.6.0 to before version 1.19.1, vault configuration is parsed before its integrity is verified, and the masterkeyfile loader uses the unverified keyId as a filesystem path. The loader resolves keyId.getSchemeSpecificPart...

4.1CVSS5.8AI score0.00248EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/20 6:19 p.m.6 views

EUVD-2026-13750

Cryptomator encrypts data being stored on cloud infrastructure. From version 1.6.0 to before version 1.19.1, vault configuration is parsed before its integrity is verified, and the masterkeyfile loader uses the unverified keyId as a filesystem path. The loader resolves keyId.getSchemeSpecificPart...

4.1CVSS5.8AI score0.00248EPSS
Exploits0References4
CVE
CVE
added 2026/03/20 6:19 p.m.9 views

CVE-2026-32310

** vulnerability overview \n\nCryptomator prior to 1.19.1 parses vault configuration before verifying its integrity, and the masterkeyfile loader uses an unverified keyId as a filesystem path. The code resolves keyId.getSchemeSpecificPart() against the vault path and immediately checks existence,...

5.3CVSS5.8AI score0.00248EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/10 5:4 p.m.48 views

CVE-2026-24283

CVE-2026-24283 involves a local elevation-of-privilege in the UNC Provider Kernel Driver. The vulnerability is rated HIGH with CVSS 3.1: 8.8, impacting confidentiality, integrity, and availability at HIGH levels, exploitable with LOCAL attack vector and LOW complexity, requiring LOW privileges an...

8.8CVSS6AI score0.00383EPSS
Exploits0References1Affected Software5
NVD
NVD
added 2026/02/25 3:16 a.m.11 views

CVE-2026-27615

ADB Explorer is a fluent UI for ADB on Windows. In versions prior to Beta 0.9.26022, ADB-Explorer allows the ManualAdbPath settings variable, which determines the path of the ADB binary to be executed, to be set to a Universal Naming Convention UNC path in the application's settings file. This...

8.8CVSS0.00207EPSS
Exploits1References1
CVE
CVE
added 2026/02/25 2:33 a.m.18 views

CVE-2026-27615

CVE-2026-27615 affects ADB Explorer for Windows prior to Beta 0.9.26022. The vulnerability arises when ManualAdbPath is set to a UNC path, enabling an attacker to point the ADB binary to a remote, attacker-controlled network resource. If a user runs a shortcut that points to a crafted App.txt set...

8.8CVSS5.8AI score0.00207EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/02/25 2:33 a.m.23 views

CVE-2026-27615 ADB-Explorer: UNC Path Support in ManualAdbPath Leads to Remote Code Execution (RCE)

ADB Explorer is a fluent UI for ADB on Windows. In versions prior to Beta 0.9.26022, ADB-Explorer allows the ManualAdbPath settings variable, which determines the path of the ADB binary to be executed, to be set to a Universal Naming Convention UNC path in the application's settings file. This...

8.8CVSS0.00207EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.12 views

PT-2026-21842

Name of the Vulnerable Software and Affected Versions ADB Explorer versions prior to Beta 0.9.26022 Description ADB Explorer, a fluent UI for ADB on Windows, allows manipulation of the ManualAdbPath settings variable. This variable defines the path to the ADB binary. Setting this variable to a...

8.8CVSS6.5AI score0.00207EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/02/15 1:19 a.m.17 views

CVE-2026-26333

Calero VeraSMART versions prior to 2022 R1 expose an unauthenticated .NET Remoting HTTP service on TCP port 8001. The service publishes default ObjectURIs including EndeavorServer.rem and RemoteFileReceiver.rem and permits the use of SOAP and binary formatters with TypeFilterLevel set to Full. An...

10CVSS6.6AI score0.00929EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/13 12:0 a.m.16 views

PT-2026-8030

Name of the Vulnerable Software and Affected Versions Calero VeraSMART versions prior to 2022 R1 Description An unauthenticated .NET Remoting HTTP service is exposed on TCP port 8001 in affected versions. The service publishes default ObjectURIs, including EndeavorServer.rem and...

10CVSS6.6AI score0.00929EPSS
Exploits1References5
Packet Storm
Packet Storm
added 2026/02/05 12:0 a.m.129 views

📄 Microsoft Windows 10 / 11 NTLM Hash Disclosure Spoofing

Microsoft Windows 10 / 11 proof of concept exploit that generates a .library-ms XML file pointing to a network share UNC. When opened/imported on Windows, the library points to the specified UNC path. Exploit Title: windows 10/11 - NTLM Hash Disclosure Spoofing Date: 2025-10-06 Exploit Author:...

6.5CVSS5.4AI score0.58974EPSS
Exploits20
Exploit DB
Exploit DB
added 2026/02/04 12:0 a.m.168 views

windows 10/11 - NTLM Hash Disclosure Spoofing

Exploit Title: windows 10/11 - NTLM Hash Disclosure Spoofing Date: 2025-10-06 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: https://www.microsoft.com Software Link: N/A Version: Not applicable this is a generic Windows library file behavior Tested on: Windows 10 x64 / Windows 11 x64 lab...

6.5CVSS5.3AI score0.58974EPSS
Exploits20
CVE
CVE
added 2026/01/29 3:38 a.m.16 views

CVE-2026-25067

SmarterTools SmarterMail before build 9518 is affected by an unauthenticated path coercion in the background-of-the-day preview endpoint. The flaw stems from base64-decoding attacker-supplied input and using it as a filesystem path without validation, which on Windows can resolve UNC paths and tr...

6.9CVSS5.9AI score0.00283EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 12:37 p.m.6 views

CVE-2023-50916

Kyocera Device Manager before 3.1.1213.0 allows NTLM credential exposure during UNC path authentication via a crafted change from a local path to a UNC path. It allows administrators to configure the backup location of the database used by the application. Attempting to change this location to a...

7.2CVSS6.9AI score0.04632EPSS
Exploits1References1
Hacker One
Hacker One
added 2025/12/18 5:23 p.m.28 views

curl: File URL UNC Path Access (Windows SSRF)

Vulnerability Details - CVSSv3: 7.5 High - Windows only - File: lib/urlapi.c:974-1030 - Issue: Windows file:// URLs accept UNC paths to remote servers - Impact: SSRF, unauthorized network file access, credential theft Vulnerable Code c // lib/urlapi.c:974-1030 ifptr0 != '/' &&...

6.7AI score
Exploits0
Debian CVE
Debian CVE
added 2025/12/05 10:17 a.m.4 views

CVE-2025-59775

Server-Side Request Forgery SSRF vulnerability in Apache HTTP Server on Windows with AllowEncodedSlashes On and MergeSlashes Off allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content Users are recommended to upgrade to version 2.4.66, which fixes...

7.5CVSS7.5AI score0.00784EPSS
Exploits0
OSV
OSV
added 2025/12/05 12:0 a.m.3 views

UBUNTU-CVE-2025-59775

NTLM Leakage on Windows through UNC SSRF...

7.5CVSS5.8AI score0.00784EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/25 12:0 a.m.6 views

PT-2025-48076

Name of the Vulnerable Software and Affected Versions UnForm Server versions prior to 10.1.15 Description UnForm Server versions prior to 10.1.15 have an unauthenticated arbitrary file read and SMB coercion issue in the Doc Flow feature’s arc endpoint. The Doc Flow module uses the arc handler to...

8.7CVSS6.8AI score0.00872EPSS
Exploits0References6
CVE
CVE
added 2025/11/21 6:17 p.m.29 views

CVE-2025-30201

CVE-2025-30201 affects Wazuh Agent prior to version 4.13.0. The vulnerability allows authenticated attackers to force NTLM authentication through crafted UNC paths in various agent configuration settings, enabling NTLM relay attacks that could lead to privilege escalation and remote code executio...

9.1CVSS7.9AI score0.00688EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder