Cedric Martz

2 exploits Active since Mar 2017

CVE-2025-36911 NOMISEC HIGH SCANNER

Google Android - Information Disclosure

In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user's conversations and location with no additional execution privileges needed. User interaction is not needed for exploitation.

4 stars

CVSS 7.1

View Code

CVE-2017-0143 NOMISEC HIGH WRITEUP

Microsoft Server Message Block < 4.0e - Remote Code Execution

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148.

CVSS 8.8

View Code