Michael Schwarz

5 exploits Active since Jan 2018
CVE-2017-5754 GITHUB MEDIUM WRITEUP
Intel Atom C/E/X3 - Unauthorized Information Disclosure via Speculative Execution Side-Channel
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
3,480 stars
CVSS 5.6
CVE-2017-5754 GITHUB MEDIUM WRITEUP
Intel Atom C/E/X3 - Unauthorized Information Disclosure via Speculative Execution Side-Channel
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
14 stars
CVSS 5.6
CVE-2021-23758 WRITEUP HIGH WRITEUP
ajaxpro.2 < 21.10.30.1 and AjaxNetProfessional < 21.11.29.1 - Remote Code Execution via Untrusted Data Deserialization
All versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code execution.
CVSS 8.1
CVE-2023-49289 WRITEUP MEDIUM WRITEUP
Ajax.NET Professional < 21.12.22.1 - Cross-Site Scripting
Ajax.NET Professional (AjaxPro) is an AJAX framework for Microsoft ASP.NET which will create proxy JavaScript classes that are used on client-side to invoke methods on the web server. Affected versions of this package are vulnerable cross site scripting attacks. Releases before version 21.12.22.1 are affected. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS 6.3
CVE-2018-3639 EXPLOITDB MEDIUM c WORKING POC
Intel Atom C/E/X5/X7/Z - Information Disclosure via Speculative Store Bypass
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4.
CVSS 5.5