25 matches found
denkair-lab
DenkAir - Windows AD Pentesting Lab A comprehensive Windows A...
CVE-2026-21986
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...
CVE-2025-62376
The CVE-2025-62376 issue affects the pwn.college DOJO platform’s /workspace endpoint. The view_desktop flow retrieves the user via a URL parameter without confirming administrative privileges, enabling an attacker to specify any user ID and an arbitrary password to impersonate that user. When req...
CVE-2025-49692
Improper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally...
CVE-2020-14628
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle...
PT-2024-8084 · Microsoft · Windows Vmswitch +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows VMSwitch affected versions not specified Description: The issue is related to the use of memory after it has been freed, which can allow an attacker to elevate their privileges. This can affect the system, potentially allowi...
XenServer VM Tools
Introduction Instances where XenServer encounters various errors while installing XenServer VM tools Overview of the Issue In different situations, XenServer has some issues when installing VM tools, possibly due to various factors. This article will outline different scenarios and potential...
Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in N-Able Take_Control
CVE-2023-27470 EoP via Arbirary File Deletion Exercise This r...
Rocky Linux and virt-devel:Rocky Linux bug fix and enhancement update
An update is available for sgabios, module.hivex, module.libvirt, module.virt-v2v, hivex, perl-Sys-Virt, module.libguestfs, module.nbdkit, netcf, swtpm, module.qemu-kvm, module.seabios, module.libvirt-python, virt-v2v, libtpms, module.supermin, libvirt-dbus, qemu-kvm, supermin, module.libvirt-dbu...
BlueCloud - Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D
Cyber Range deployment of HELK and Velociraptor! Automated terraform deployment of one system running HELK + Velociraptor server with one registered Windows endpoint in Azure or AWS. A collection of Terraform and Ansible scripts that automatically and quickly deploys a small HELK + Velociraptor R...
[SECURITY] Fedora 34 Update: hivex-1.3.20-1.fc34
Hive files are the undocumented binary files that Windows uses to store the Windows Registry on disk. Hivex is a library that can read and write to these files. 'hivexsh' is a shell you can use to interactively navigate a hive binary file. 'hivexregedit' in perl-hivex lets you export and merge to...
Oracle VM VirtualBox (Jul 2020 CPU)
The Prior to 5.2.44, prior to 6.0.24, and prior to 6.1.12 versions of VM VirtualBox installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2020 CPU advisory. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core...
CVE-2020-14628
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle...
CVE-2020-14628
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle...
CVE-2020-14628
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle...
CVE-2020-14628
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle...
CVE-2020-14628
CVE-2020-14628 affects Oracle VM VirtualBox (Core) across several supported branches. Vulnerable versions are Windows VirtualBox prior to 5.2.44, prior to 6.0.24, and prior to 6.1.12. The issue is exploitable by a high-privilege attacker with local logon to the host running VirtualBox, with the p...
Product update: Virtuozzo 7.0 Update 8 Hotfix 4 (7.0.8-524)
This update provides a stability fix. Vulnerability id: PSBM-88673 Windows VMs created on Virtuozzo versions prior to 7.0.6 could fail to boot after installing the latest update...
Mobile Security Framework: MobSF
Mobile Security Framework is an intelligent, all-in-one open source mobile application Android/iOS automated pen-testing framework capable of performing static and dynamic analysis. We’ve been depending on multiple tools to carry out reversing, decoding, debugging, code review, and pen-test and...
Assigning a GPU to a Windows VM using xe CLI
To assign a GPU to a Windows VM using xe CLI...