Lucene search
K

2833 matches found

GithubExploit
GithubExploit
added 2021/11/18 2:27 p.m.4 views

Exploit for Link Following in Thalesgroup Safenet_Authentication_Client

Safenet Authentication Client Privilege Escalation CVE-2021-42...

7.2CVSS7.7AI score0.01024EPSS
Exploits2
Packet Storm
Packet Storm
added 2021/11/17 12:0 a.m.648 views

SuiteCRM 7.11.18 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SuiteCRM Log File Remote Code Execution', 'Description' = %q This module exploits an input validation error on the log file extension parameter. ...

9CVSS8.6AI score0.64094EPSS
Exploits12
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.41 views

container-tools:2.0 security update

buildah 1.11.6-9.0.1 - Reduce unnecessary writable mounts in NaiveDiffDriver Orabug: 31025483 - Fixes troubles with oracle registry login Orabug: 29937283 1.11.6-9 - update to the latest content of https://github.com/containers/buildah/tree/release-1.11-rhel...

5.5CVSS5.8AI score0.00319EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.24 views

Mozilla Firefox Security Advisory (MFSA2013-87) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

6.8CVSS7.1AI score0.01823EPSS
Exploits0References3
0day.today
0day.today
added 2021/11/10 12:0 a.m.337 views

Microsoft OMI Management Interface Authentication Bypass Exploit

This Metasploit module demonstrates that by removing the authentication exchange, an attacker can issue requests to the local OMI management socket that will cause it to execute an operating system command as the root user. This vulnerability was patched in OMI version 1.6.8-1 released September...

9.8CVSS7.6AI score0.99723EPSS
Exploits20
OpenVAS
OpenVAS
added 2021/11/08 12:0 a.m.14 views

Mozilla Firefox Security Advisory (MFSA2017-04) - Deprecated

This host is missing a security update for Mozilla Firefox. This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

10CVSS9.7AI score0.03246EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/09/29 12:0 a.m.16 views

Zoom Client < 5.3.2 Privilege Escalation Vulnerability (ZSB-21004) - Windows

Zoom Client is prone to a privilege escalation vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

7.8CVSS7.9AI score0.00443EPSS
Exploits0References1
OSV
OSV
added 2021/09/27 2:15 p.m.2 views

CVE-2021-34410

A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac before 5.0.25611.0521 allows for privilege escalation to root...

7.8CVSS7.1AI score0.00221EPSS
Exploits0References1
NVD
NVD
added 2021/09/27 2:15 p.m.20 views

CVE-2021-34408

The Zoom Client for Meetings for Windows in all versions before version 5.3.2 writes log files to a user writable directory as a privileged user during the installation or update of the client. This could allow for potential privilege escalation if a link was created between the user writable...

7.8CVSS0.00443EPSS
Exploits0References1
OSV
OSV
added 2021/09/27 2:15 p.m.2 views

CVE-2021-34408

The Zoom Client for Meetings for Windows in all versions before version 5.3.2 writes log files to a user writable directory as a privileged user during the installation or update of the client. This could allow for potential privilege escalation if a link was created between the user writable...

7.8CVSS5.8AI score0.00443EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/09/27 1:55 p.m.17 views

CVE-2021-34410

A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac before 5.0.25611.0521 allows for privilege escalation to root...

8AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2021/09/27 6:15 a.m.5 views

CVE-2021-40981

ASUS ROG Armoury Crate Lite before 4.2.10 allows local users to gain privileges by placing a Trojan horse file in the publicly writable %PROGRAMDATA%\ASUS\GamingCenterLib directory...

7.3CVSS5.8AI score0.00387EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2021/09/15 12:0 a.m.47 views

seatd-launch -- privilege escalation with SUID

Kenny Levinsen reports: seatd-launch used execlp, which reads the PATH environment variable to search for the requested executable, to execute seatd. This meant that the caller could freely control what executable was loaded by adding a user-writable directory to PATH. If seatd-launch had the SUI...

8.8CVSS2.9AI score0.01029EPSS
Exploits0References1
CNVD
CNVD
added 2021/09/08 12:0 a.m.16 views

EyouCMS directory traversal vulnerability

EyouCms is a free and open source enterprise content management system based on the TP5.0 framework that focuses on the needs of enterprise website users. The vulnerability stems from a lack of input data validation for the tpldir, filename, type, and nid parameters. An attacker could use this...

5CVSS2AI score0.01415EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2021/08/18 12:0 a.m.5 views

Nextcloud Desktop Client 代码问题漏洞

Nextcloud is a suite of open source, self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany.Nextcloud Desktop Client is a desktop client application for Nextcloud. A code issue vulnerability exists in Nextcloud Desktop Client versions 3.0.3 through...

7.3CVSS7.4AI score0.00474EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2021/08/17 7:0 a.m.2 views

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLCERT` option (`--cert` with the command line tool).When libcurl is built to use the macOS native TLS library Secure Transport an application can ask for the client certificate by name or with a file name - using the same option. If the name exists as a file it will be used instead of by name.If the appliction runs with a current working directory that is writable by other users (like `/tmp`) a malicious user can create a file name with the same name as the app wants to use by name and thereby trick the application to use the file based cert instead of the one referred to by name making libcurl send the wrong client certificate in the TLS connection handshake.

...

7.5CVSS6.2AI score0.0982EPSS
Exploits1
Prion
Prion
added 2021/08/11 6:15 p.m.30 views

Privilege escalation

The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue. During the add printer process, a local attacker can overwrite CNMurGE.dll and, if timed properly, the overwritten DLL will be loaded into a SYSTEM process resulting in escalation of privileges. This...

7.2CVSS8.2AI score0.01009EPSS
Exploits3References4Affected Software1
OSV
OSV
added 2021/08/05 9:15 p.m.6 views

AZL-6364 CVE-2021-22926 affecting package curl for versions less than 7.82.0-1

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the CURLOPTSSLCERT option --cert with the command line tool.When libcurl is built to use the macOS native TLS library Secure Transport, an application can ask for the client certificat...

7.5CVSS6.4AI score0.0982EPSS
Exploits1References1
curl security advisories
curl security advisories
added 2021/07/21 8:0 a.m.9 views

CURLOPT_SSLCERT mix-up with Secure Transport

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the CURLOPTSSLCERT option --cert with the command line tool. When libcurl is built to use the macOS native TLS library Secure Transport, an application can ask for the client certifica...

7.5CVSS6.2AI score0.0982EPSS
Exploits1References1Affected Software2
OSV
OSV
added 2021/07/21 8:0 a.m.3 views

CURL-CVE-2021-22926 CURLOPT_SSLCERT mix-up with Secure Transport

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the CURLOPTSSLCERT option --cert with the command line tool. When libcurl is built to use the macOS native TLS library Secure Transport, an application can ask for the client certifica...

7.5CVSS8.4AI score0.0982EPSS
Exploits1
Rows per page
Query Builder