| Netgear DGN2200 DGND3700 Admin Password Disclosure Vulnerability |
This module exploits a Information Disclosure vulnerability in Netgear DGN2200 DGND3700 |
June 29, 2020 |
|
Windows |
Exploits / Remote |
IOT |
| D-Link DNS-325 ShareCenter Command Injection (reboot) |
OS command execution vulneralbility in the photocenter_mgr.cgi file in Dlink DNS-325 ShareCenter firmware versions up to 1.05B03 |
June 29, 2020 |
|
|
Exploits / Remote |
IOT |
| Aptina AR0130 960P 1.3MP Camera Remote Configuration Disclosure |
Aptina AR0130 960P 1.3MP Camera Remote Configuration Disclosure |
June 29, 2020 |
CVE-2019-20213 |
|
Exploits / Client Side |
IOT |
| Telesquare SKT LTE Router SDT-CS3B1 Reset Router Vulnerability |
Telesquare SKT LTE Router SDT-CS3B1 Remote Reboot vulnerability |
June 29, 2020 |
|
|
Exploits / Client Side |
IOT |
| OpenSCADA Password Hash Authorization |
OpenSCADA Password Hash Authorization |
June 29, 2020 |
|
Linux |
Exploits / Remote |
SCADA |
| D-Link DIR850L credential disclosure vulnerability |
This module exploits a Information Disclosure vulnerability in D-Link DIR850L |
June 29, 2020 |
|
Windows |
Exploits / Remote |
IOT |
| Honeywell IP-Camera HICC-1100PT Password Disclosure Vulnerability |
Honeywell IP-Camera (HICC-1100PT) allows to unauthenticated user disclose the username and password remotely. |
June 29, 2020 |
|
|
Exploits / Client Side |
IOT |
| Mozilla WebThings Authorized Remote Code Execution |
Mozilla WebThings 0.10.0 Remote Code Execution |
June 29, 2020 |
|
|
Exploits / Remote Code Execution |
IOT |
| Netlink GPON Router 1.0.11 Remote Code Execution (reboot) |
Netlink GPON Router 1.0.11 Remote Code Execution vulnerability |
June 29, 2020 |
|
|
Exploits / Client Side |
IOT |
| Freeproxy Internet Suite Remote Denial of Service |
Denial of service vulnerability present in the web server. Vulnerability is very simple to trigger by sending special crafted GET request |
June 29, 2020 |
|
Windows |
Denial of Service / Remote |
IOT |
| HiSilicon hi3520d and similar system Directory Traversal Vulnerability |
This module exploits a directory traversal vulnerability in HiSilicon hi3520d |
June 29, 2020 |
|
Windows |
Exploits / Remote |
IOT |
| Cisco Catalyst 2960 IOS 12.2(55)SE1 ROCEM Remote Code Execution |
This module exploits a buffer overflow and installs an agent into the target host. |
June 29, 2020 |
|
Windows |
Exploits / Remote |
IOT |
| CleverMic 1011S-12 IP Camera Info Disclosure |
CleverMic 1011S-12 IP Camera credential disclosure vulnerability |
June 29, 2020 |
|
|
Exploits / Client Side |
IOT |
| Easy Internet Sharing Proxy Server SEH Buffer Overflow |
This module exploits a buffer overflow and installs an agent into the target host. |
June 29, 2020 |
|
Windows |
Exploits / Remote |
IOT |
| Microsoft .NET Framework Elevation of Privilege Vulnerability Exploit |
An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level. |
June 23, 2020 |
CVE-2020-1066 |
Windows |
Exploits / Local |
Impact |
| Trident Z Lighting Control Driver Local Privilege Escalation Exploit |
The ene.sys driver in Trident Z Lighting Control before v1.00.17 allow local non-privileged users (including low-integrity level processes) to read and write to arbitrary physical memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges. |
June 19, 2020 |
CVE-2020-12446 |
Windows |
Exploits / Local |
Impact |
| Advantech WebAccess SCADA DATACORE IOCTL 0x523e Buffer Overflow Exploit |
The specific flaw exists within DATACORE server. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of Administrator. |
June 18, 2020 |
CVE-2020-12002 |
Windows |
Exploits / Remote |
Impact |
| OpenAudit Remote Code Execution (CVE-2020-12078) |
An issue was discovered in Open-AudIT 3.3.1. There is shell metacharacter injection via attributes to an open-audit/configuration/ URI. An attacker can exploit this by adding an excluded IP address to the global discovery settings (internally called exclude_ip). This exclude_ip value is passed to the exec function in the discoveries_helper.php file (inside the all_ip_list function) without being filtered, which means that the attacker can provide a payload instead of a valid IP address. |
June 12, 2020 |
CVE-2020-12078 |
Windows, Linux |
Exploits / OS Command Injection / Known Vulnerabilities |
Impact |
| Artica Pandora FMS Events Remote OS Command Injection Exploit |
The target parameter in events.php in Pandora FMS 7.0NG 742, 743 and 744 allows remote authenticated users to execute arbitrary OS commands. |
June 10, 2020 |
CVE-2020-13851 |
Windows, Linux |
Exploits / OS Command Injection / Known Vulnerabilities |
Impact |
| Cisco AnyConnect Secure Mobility Client Uncontrolled Search Path Privilege Escalation Exploit |
A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local attacker to copy user-supplied files to system level directories with system level privileges. The vulnerability is due to the incorrect handling of directory paths. An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory. An exploit could allow the attacker to copy malicious files to arbitrary locations with system level privileges. |
June 5, 2020 |
CVE-2020-3153 |
Windows |
Exploits / Local |
Impact |
| Eaton HMiSoft VU3 File Parsing Buffer Overflow Exploit |
The specific flaw exists within the parsing of wTextLen information within VU3 files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. |
June 4, 2020 |
CVE-2020-10639 |
Windows |
Exploits / Client Side |
Impact |
| ATI Technologies Driver atillk64 Kernel Arbitrary Read Write Local Privilege Escalation Exploit |
AMD ATI atillk64 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHORITY\SYSTEM privileges via a DeviceIoControl call associated with MmMapIoSpace, IoAllocateMdl, MmBuildMdlForNonPagedPool, or MmMapLockedPages. |
June 2, 2020 |
CVE-2020-12138 |
Windows |
Exploits / Local |
Impact |
| SpiderControl SCADA 6.51.00 Denial Of Service Exploit |
SpiderControl SCADA Editor Exploit DoS |
May 29, 2020 |
|
Windows |
Denial of Service / Remote |
SCADA |
| JVSdicom Server Remote Denial Of Service Exploit |
RemoteThis exploit will leave the service unavailable. JVSdicom Server is an open source DICOM PACS server application that acts as a Storage Service SCP and as a Query/Retrieve Service SCP. The server is capable of accepting multiple associations simultaneously. The server administrators can configure it to contain several filesystem-based storage areas (with different AE Titles), as well as to limit access to these areas from a pre-defined AE network. Alternatively, the server features a public mode, which can be used to grant open access to the server. |
May 29, 2020 |
|
Windows |
Denial of Service / Remote |
MEDICAL |
| Cogent DataHub 9.0.x Denial of Service |
Remote Denial Of Service in Cogent DataHub 9.0.x |
May 29, 2020 |
|
|
Denial of Service / Remote |
SCADAPRO |