| Zoho ManageEngine Password Manager Pro XML-RPC Java Deserialization Vulnerability Remote Code Execution Exploit |
A java deserialization vulnerability in Zoho ManageEngine Pro before 12101 and PAM360 before 5510 allows unauthenticated attackers to send crafted XML-RPC requests with malicious serialized data to execute system commands as SYSTEM. |
August 8, 2022 |
CVE-2022-35405 |
Windows |
Exploits / Remote Code Execution |
Impact |
| Linux Kernel Legacy Parse Param IU HO Local Privilege Escalation Exploit |
A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that does not support the Filesystem Context API (and thus fallbacks to legacy handling) could use this flaw to escalate their privileges on the system
|
August 5, 2022 |
CVE-2022-0185 |
Linux |
Exploits / Local |
Impact |
| Microsoft Windows SMBv3 FileNormalizedNameInformation DoS |
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot. |
August 2, 2022 |
CVE-2022-32230 |
Windows |
Denial of Service / Remote |
Impact |
| Microsoft Endpoint Configuration Manager Connected Cache Local Privilege Escalation Exploit |
The vulnerability allowed a local low-privileged user to execute arbitrary Powershell as SYSTEM due to improper file permission assignment. |
July 29, 2022 |
CVE-2022-24527 |
Windows |
Exploits / Local |
Impact |
| Oracle Access Manager ADF Faces Deserialization Vulnerability Remote Code Execution Exploit |
A server side request forgery present in getKeyInfoData function of oracle.security.xmlsec.keys.RetrievalMethod and a deserialization vulnerability present in the ADF Faces framework allows a unauthenticated attacker with network access via HTTP to execute system commands. |
July 21, 2022 |
CVE-2022-21497 |
Windows, Linux |
Exploits / Remote Code Execution |
Impact |
| Microsoft Windows Networks File System 4.1 Remote DoS |
Microsoft Windows could allow a remote attacker to execute arbitrary code or BSOD the system, caused by a design flaw in the Network File System component. |
July 13, 2022 |
CVE-2022-30136 |
Windows |
Denial of Service / Remote |
Impact |
| Linux Kernel Netfilter Dup Netdev OOB Write Local Privilege Escalation Exploit |
net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-of-bounds write. This is related to nf_tables_offload.
|
July 7, 2022 |
CVE-2022-25636 |
Linux |
Exploits / Local |
Impact |
| phpIPAM <1.4.5 CVE-2022-23046 Authenticated SQL Injection |
phpIPAM |
June 30, 2022 |
|
|
Exploits / Remote |
SCADAPRO |
| JUNG Smart Panel Designer Directory Traversal 0day |
This module exploits a Directory Traversal vulnerability in JUNG Smart Panel Designer |
June 30, 2022 |
|
Windows |
Exploits / Remote |
SCADAPRO |
| SolarView Compact Directory Traversal Vulnerability |
This module exploits a directory traversal vulnerability in SolarView Compact ver 6.00 |
June 30, 2022 |
CVE-2022-29298 |
Windows |
Exploits / Remote |
SCADA |
| Siemens A8000 Missing Authentication Credential Disclosure |
A vulnerability has been identified in SICAM A8000 CP-8031 (All versions less V4.80), SICAM A8000 CP-8050 (All versions less V4.80).
Affected devices do not require an user to be authenticated to access certain files.
This could allow unauthenticated attackers to download these files. |
June 30, 2022 |
CVE-2022-27480 |
|
Exploits / Client Side |
SCADA |
| Franklin Fueling Systems Colibri Controller Local File Inclusion |
This module exploits a Local File Inclusion vulnerability in Franklin Fueling Systems Colibri Controller |
June 30, 2022 |
CVE-2021-46417 |
Windows |
Exploits / Remote |
SCADA |
| RealVNC Server Privilege Escalation Exploit |
A vulnerability was discovered in RealVNC VNC Server installations on Windows when running MSI repair, which can lead to a local user privilege escalation. |
June 24, 2022 |
CVE-2022-27502 |
Windows |
Exploits / Local |
Impact |
| Linux Kernel eBPF OR NULL Pointer Local Privilege Escalation Exploit |
The bpf verifier(kernel/bpf/verifier.c) did not properly restrict several *_OR_NULL pointer types which allows these types to do pointer arithmetic. An unprivileged user could use this flaw to escalate their privileges on a system. Setting parameter "kernel.unprivileged_bpf_disabled=1" prevents such privilege escalation by restricting access to bpf(2) call.
|
June 24, 2022 |
CVE-2022-23222 |
Linux |
Exploits / Local |
Impact |
| Atlassian Confluence xworks OGNL Injection Vulnerability Exploit |
An OGNL injection vulnerability present in ActionChainResult class of xwork jar file would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. |
June 7, 2022 |
CVE-2022-26134 |
Linux, Windows |
Exploits / Remote Code Execution |
Impact |
| Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Exploit |
This module exploits a vulnerability in Microsoft MSDT, which can be leveraged to execute arbitrary code on vulnerable machines by convincing an unsuspecting user to open a malicious document. |
June 3, 2022 |
CVE-2022-30190 |
Windows |
Exploits / Client Side |
Impact |
| Windows Ancillary Function Driver for WinSock DoS |
Windows Ancillary Function Driver for WinSock is prone to a DoS because of an integer overflow. |
May 31, 2022 |
CVE-2022-24507 |
Windows |
Denial of Service / Local |
Impact |
| Struts2 CVE-2021-31805 Remote Code Execution |
Struts2 CVE-2021-31805 Remote Code Execution |
May 30, 2022 |
|
Windows, Linux |
Exploits / Remote |
SCADAPRO |
| MyBB CVE-2022-24734 |
MyBB >= 1.2.0, |
May 30, 2022 |
|
Linux, Windows |
Exploits / Remote Code Execution |
SCADAPRO |
| CVE-2017-9841 PHPUnit |
PHPUnit 4.8.28 Remote Code Execution |
May 30, 2022 |
|
Windows, Linux |
Exploits / Remote Code Execution |
SCADAPRO |
| Ansys Scade Suite Version Student 2022 R1 Remote Denial of Service |
Denial of service Ansys Scade Suite Version Student 2022 R1 Exploit |
May 30, 2022 |
|
Windows |
Denial of Service / Remote |
SCADAPRO |
| POWERCOM UPSMON PRO for Windows Directory Traversal 0day |
This module exploits a Directory Traversal vulnerability in POWERCOM UPSMON PRO for Windows, Path traversal vulnerability that can be exploited to read files outside of the web root |
May 30, 2022 |
|
Windows |
Exploits / Remote |
SCADA |
| Open Automation Software CVE-2022-26833 |
OAS CVE-2022-26833 |
May 30, 2022 |
|
|
Exploits / Remote |
SCADA |
| Ransomware Simulation Enhancement - Rename encrypted files |
This update adds a new parameter to the "Ransomware Simulation" module: "RENAME FILES"; if set to TRUE, encrypted files will also be renamed by adding the .1mp4ct extension to them. |
May 27, 2022 |
NOCVE-9999-175115 |
|
Post Exploitation |
Impact |
| Microsoft Windows Point-to-Point Tunneling Protocol DoS |
A denial of service vulnerability exists in Point-to-Point Tunneling Protocol service when an unauthenticated attacker connects to the target system and sends specially crafted requests. |
May 24, 2022 |
CVE-2022-23253 |
Windows |
Denial of Service / Remote |
Impact |