From ssd-disclosure.com
SSD Advisory - Common Log File System (CLFS) driver PE - SSD Secure Disclosure
2 2
Summary A vulnerability in the Common Log File System (CLFS) driver allows a local user to gain elevated privileges on Windows 11. The vulnerability is in the CClfsBaseFilePersisted::WriteMetadataBlock function, and is due to return value of ClfsDecodeBlock not being checked, it is possible to...
#cve #clfs #kernel #windows #exploitation #cybersecurity #vulnerability #informationsecurity
on Oct 25
From ssd-disclosure.com
SSD Advisory - Nortek Linear eMerge E3 Pre-Auth RCE - SSD Secure Disclosure
0 0
Summary A vulnerability in the Nortek Linear eMerge E3 allows remote unauthenticated attackers to cause the device to execute arbitrary commands. Credit An independent security researcher working with SSD Secure Disclosure Vendor Response The vendor has been notified 5 months ago, and has yet to...
on Sep 25
From ssd-disclosure.com
SSD Advisory - LANCOM LCOS Heap Overflow - SSD Secure Disclosure
0 0
Summary A vulnerability in LANCOM LCOS web interface (usually listening on port 443) allows a remote attacker to trigger a heap overflow in the service listening on this port. Credit An independent security researcher working with SSD Secure Disclosure Vendor Response We have sent out several...
on Sep 17
From ssd-disclosure.com
SSD Advisory - Linux Kernel taprio OOB - SSD Secure Disclosure
0 1
Summary This white paper describes an out-of-bound access vulnerability for TyphoonPWN 2024 in the Linux PE category. This vulnerability has been tested and confirmed on Ubuntu 22.04 with the kernel version: 6.5.0-1023-oem. Credit An independent security researcher participating in TyphoonPWN...
on Aug 31
From ssd-disclosure.com
SSD Advisory - Google Chrome RCE - SSD Secure Disclosure
0 1
Summary WASM isorecursive canonical type id <-> wasm::HeapType / wasm::ValueType confusion in JS-to-WASM conversion functions and their wrappers (FromJS(), (Wasm)JSToWasmObject(), etc.), resulting in type confusion between arbitrary WASM types. This can be considered a variant bug of...
on Aug 13
From ssd-disclosure.com
Cisco ISE vulnerability scope - SSD Secure Disclosure
0 1
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Jul 29
From ssd-disclosure.com
Sophos Firewall vulnerability scope - SSD Secure Disclosure
0 0
aaPanel is a free, open-source, powerful control panel. Vulnerabilities in demand: Code/command execution, Authentication bypass, Command injection.
on Jul 25
From ssd-disclosure.com
Junos OS vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Jul 22
From ssd-disclosure.com
SSD Advisory - SonicWall SMA100 Stored XSS to RCE - SSD Secure Disclosure
0 0
Summary There are pre-auth stored XSS and post-auth remote command injection vulnerabilities in SonicWall SMA100. These vulnerabilities allow unauthenticated attackers to execute arbitrary command when an authenticated user is exposed to the stored XSS. The vulnerabilities were silently patched...
on Jul 17
From ssd-disclosure.com
SSD Advisory - XenForo RCE via CSRF - SSD Secure Disclosure
0 0
Summary A vulnerability in XenForo allows a user to trigger an RCE via incorrect parsing and handling of user provided templates, this combined with a CSRF bypass allows attackers to execute arbitrary code whenever an admin visits styles / widgets page. Credit An independent security researcher,...
on Jul 16
From ssd-disclosure.com
SSD Advisory - Foscam R4M UDTMediaServer Buffer Overflow - SSD Secure Disclosure
0 0
Summary A stack-based overflow exists in UDTMediaServer, one of the binaries running in the background in Foscam. This vulnerability could be exploited to execute any command. Credit Yoseop Kim working with SSD Labs Korea Vendor Response The vendor has released an updated version,...
on Jul 4
From ssd-disclosure.com
SSD Advisory - TP-Link ViGi onvif_discovery Overflow - SSD Secure Disclosure
0 0
Summary A buffer overflow in the onvif_discovery binary located at /bin/onvif_discovery which listens on UDP port 5001. This vulnerability can be leveraged by a network-adjacent attacker to execute arbitrary code on the target as root. No authentication is required to exploit this. Credit An...
on Jun 26
From ssd-disclosure.com
0 0
Summary A vulnerability in the Linux kernel allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...
on Jun 4
From ssd-disclosure.com
SSD Advisory - NVMS9000 Information Disclosure - SSD Secure Disclosure
0 0
Summary The NVMS9000 product by TVT has a critical security flaw that allows remote unauthenticated attackers a wealth of information on the device including, but not limited to, username and passwords, network configuration, etc. This security flaw can be easily exploited, all that is required...
on May 24
From ssd-disclosure.com
SSD Advisory - D-Link DIR-X4860 Security Vulnerabilities - SSD Secure Disclosure
0 0
Summary Security vulnerabilities in DIR-X4860 allow remote unauthenticated attackers that can access the HNAP port to gain elevated privileges and run commands as root. By combining an authentication bypass with command execution the device can be completely compromised. Credit A security...
on May 15
From ssd-disclosure.com
Cisco AnyConnect vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on May 6
From ssd-disclosure.com
ConnectWise vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on May 1
From ssd-disclosure.com
WinZip vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Apr 21
From ssd-disclosure.com
FortiADC vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Apr 17
From ssd-disclosure.com
Panasonic printers vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Apr 15
From ssd-disclosure.com
0 0
SSD provides the knowledge, experience and tools needed to find and disclose vulnerabilities and advanced attack vectors.
on Apr 14
From ssd-disclosure.com
pfSense Firewall vulnerability scope - SSD Secure Disclosure
0 0
aaPanel is a free, open-source, powerful control panel. Vulnerabilities in demand: Code/command execution, Authentication bypass, Command injection.
on Apr 7
From ssd-disclosure.com
SSD Advisory - IP.Board 'nexus' RCE and Blind SQLi - SSD Secure Disclosure
0 0
Summary IP.Board e-commerce plugin ‘nexus’ contains two security vulnerabilities that when combined can be used to trigger a pre-auth RCE. Credit An independent security researcher, Egidio Romano from Karma(In)Security, working with SSD Secure Disclosure. Vendor Response The vendor has released...
on Apr 5
From ssd-disclosure.com
Canon printers vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Apr 4
From ssd-disclosure.com
Uniview vulnerability scope - SSD Secure Disclosure
0 0
aaPanel is a free, open-source, powerful control panel. Vulnerabilities in demand: Code/command execution, Authentication bypass, Command injection.
on Apr 1
From ssd-disclosure.com
Apache SpamAssassin vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 28
From ssd-disclosure.com
Webmin vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 26
From ssd-disclosure.com
SSD Advisory - Uniview IPC2322LB Auth Bypass and CLI escape - SSD Secure Disclosure
0 0
Summary The Uniview IPC2322LB processes authentication requests allows remote attackers to bypass the authentication process and gain unauthorized access. If this is combined with a CLI escape, the Uniview device’s security can be completely compromised. Credit Yoseop Kim working for SSD Labs...
on Mar 25
From ssd-disclosure.com
xenForo vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 24
From ssd-disclosure.com
WinRAR vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 20
From ssd-disclosure.com
CWP vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 18
From ssd-disclosure.com
ProFTPD vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 13
From ssd-disclosure.com
VMware Horizon vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 11
From ssd-disclosure.com
ASUS routers vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 3
From ssd-disclosure.com
TP-Link vulnerability scope - SSD Secure Disclosure
0 0
TP-Link is a provider of networking devices and accessories. Vulnerabilities in demand: Code/command execution, PE, Auth bypass, and Command injection.
on Mar 2
From ssd-disclosure.com
Brother printers vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Mar 1
From ssd-disclosure.com
SSD Advisory - TP-Link NCXXX Authentication Bypass - SSD Secure Disclosure
0 0
Summary A vulnerability exists in TP-Link NCXXX family of devices, the vulnerability allows accessing the device without credentials – this chained with well known and currently unpatched post-auth vulnerabilities allow for the complete compromise of the device. Credit An independent security...
on Mar 1
From ssd-disclosure.com
Cacti vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Feb 20
From ssd-disclosure.com
Roundcube webmail vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Feb 13
From ssd-disclosure.com
SSD Advisory - TOTOLINK LR1200GB Auth Bypass - SSD Secure Disclosure
0 0
Summary A vulnerability in TOTOLINK LR1200GB allows remote unauthenticated attackers to become authenticated due to a stack overflow vulnerability in the web interface. Additional post-auth vulnerabilities in the product allow for command injection and their execution with elevated privileges –...
on Feb 8
From ssd-disclosure.com
Foscam vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Feb 6
From ssd-disclosure.com
HP printers vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Jan 29
From ssd-disclosure.com
SSD Advisory - Zyxel VPN Series Pre-auth Remote Command Execution - SSD Secure Disclosure
0 0
Summary Chaining of three vulnerabilities allows unauthenticated attackers to execute arbitrary command with root privileges on Zyxel VPN firewall (VPN50, VPN100, VPN300, VPN500, VPN1000). Due to recent attack surface changes in Zyxel, the chain described below broke and become unusable – we...
on Jan 25
From ssd-disclosure.com
Zimbra Mail Server vulnerability scope - SSD Secure Disclosure
0 0
Zimbra is a dedicated server that manages mailbox contents. Vulnerabilities in demand: Code/command execution, Authentication bypass, and Command injection.
on Jan 23
From ssd-disclosure.com
Netgear Nighthawk vulnerability scope - SSD Secure Disclosure
0 0
F5’s BIG-IP is a family of products covering software and hardware. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Jan 23
From ssd-disclosure.com
SSD Advisory - WifiKey AC Gateway Pre-auth RCE - SSD Secure Disclosure
0 0
Summary A vulnerability exists in WifiKey’s AC Gateway allowing remote attackers to trigger a pre-auth RCE vulnerability in the product allowing complete compromise of the device. Credit An independent security researcher working with SSD Secure Disclosure. Affected Versions WifiKey AC Gateway...
on Jan 21
From ssd-disclosure.com
Huawei USG vulnerability scope - SSD Secure Disclosure
0 0
aaPanel is a free, open-source, powerful control panel. Vulnerabilities in demand: Code/command execution, Authentication bypass, Command injection.
on Dec 26
From ssd-disclosure.com
0 0
Summary A vulnerability exists in processing IRP_MJ_CREATE requests in driver clfs.sys. This occurs during the processing of blf files that are parsed in kernel. Credit An independent security researcher working with SSD Secure Disclosure. CVE CVE-2023-36424 Affected Versions Windows systems...
on Dec 20
From ssd-disclosure.com
Watchguard vulnerability scope - SSD Secure Disclosure
0 0
airCube AC creates a wireless local area network or WLAN. Vulnerabilities in demand: Code/command execution, Privilege escalation, Auth bypass, and Command injection.
on Dec 18
From ssd-disclosure.com
Cisco Secure Email vulnerability scope - SSD Secure Disclosure
0 0
Cisco’s ESA offers a layered approach against email threats. Vulnerabilities in demand: Code/command execution, Auth-bypass, and Command injection.
on Dec 12