multiple

Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers/漏洞数据库

日期 标题 类别 作者
2018-12-11 PrinterOn Enterprise 4.1.4 – Arbitrary File Deletion
  • webapps
    		•  bzyo
    2018-12-11 XNU – POSIX Shared Memory Mappings have Incorrect Maximum Protection
  • local
    		•  Google Security Research
    2018-12-10 Kubernetes – (Unauthenticated) Arbitrary Requests
  • remote
    		•  evict
    2018-12-10 Kubernetes – (Authenticated) Arbitrary Requests
  • remote
    		•  evict
    2018-12-04 Wireshark – ‘find_signature’ Heap Out-of-Bounds Read
  • dos
    		•  Google Security Research
    2018-12-04 Wireshark – ‘cdma2k_message_ACTIVE_SET_RECORD_FIELDS’ Stack Corruption
  • dos
    		•  Google Security Research
    2018-11-30 xorg-x11-server < 1.20.3 - 'modulepath' Local Privilege Escalation
  • local
    		•  Marco Ivaldi
    2018-11-29 TeamCity Agent – XML-RPC Command Execution (Metasploit)
  • remote
    		•  Metasploit
    2018-11-29 WebKit JSC – BytecodeGenerator::hoistSloppyModeFunctionIfNecessary Does not Invalidate the ‘ForInContext’ Object
  • dos
    		•  Google Security Research
    2018-11-29 WebKit JIT – ‘ByteCodeParser::handleIntrinsicCall’ Type Confusion
  • dos
    		•  Google Security Research
    2018-11-29 WebKit JSC JIT – ‘JSPropertyNameEnumerator’ Type Confusion
  • dos
    		•  Google Security Research
    2018-11-26 Xorg X11 Server – SUID privilege escalation (Metasploit)
  • local
    		•  Metasploit
    2018-11-19 ImageMagick – Memory Leak
  • local
    		•  ttffdd
    2018-10-30 Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass
  • remote
    		•  Adam Brown
    2018-10-25 xorg-x11-server < 1.20.3 - Local Privilege Escalation
  • local
    		•  Hacker Fantastic
    2018-10-25 Oracle Weblogic Server – Deserialization Remote Command Execution (Patch Bypass)
  • remote
    		•  allyshka
    2018-10-22 Apple iOS/macOS – Kernel Memory Corruption due to Integer Overflow in IOHIDResourceQueue::enqueueReport
  • dos
    		•  Google Security Research
    2018-10-22 Apple iOS/macOS – Sandbox Escape due to mach Message sent from Shared Memory
  • dos
    		•  Google Security Research
    2018-10-22 Apple iOS/macOS – Sandbox Escape due to Trusted Length Field in Shared Memory used by HID Event Subsystem
  • dos
    		•  Google Security Research
    2018-10-04 Cisco Prime Infrastructure – (Unauthenticated) Remote Code Execution
  • remote
    		•  SecuriTeam
    2018-09-25 WebKit – ‘WebCore::SVGTextLayoutAttributes::context’ Use-After-Free
  • dos
    		•  Google Security Research
    2018-09-25 WebKit – ‘WebCore::RenderLayer::updateDescendantDependentFlags’ Use-After-Free
  • dos
    		•  Google Security Research
    2018-09-25 WebKit – ‘WebCore::SVGTRefElement::updateReferencedText’ Use-After-Free
  • dos
    		•  Google Security Research
    2018-09-25 WebKit – ‘WebCore::RenderMultiColumnSet::updateMinimumColumnHeight’ Use-After-Free
  • dos
    		•  Google Security Research