RedyOpsResearchLabs

4 exploits Active since May 2020
CVE-2020-5837 NOMISEC HIGH WORKING POC
Symantec Endpoint Protection <14.3 - Privilege Escalation
Symantec Endpoint Protection, prior to 14.3, may not respect file permissions when writing to log files that are replaced by symbolic links, which can lead to a potential elevation of privilege.
43 stars
CVSS 7.8
CVE-2020-8103 NOMISEC HIGH WORKING POC
Bitdefender Antivirus Free <1.0.17.178 - Privilege Escalation
A vulnerability in the improper handling of symbolic links in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. This issue affects Bitdefender Antivirus Free versions prior to 1.0.17.178.
16 stars
CVSS 7.2
CVE-2020-7283 NOMISEC HIGH WORKING POC
McAfee Total Protection < 16.0.R26 - Privilege Escalation via Symbolic Link Manipulation
Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine.
13 stars
CVSS 7.5
CVE-2020-1283 NOMISEC MEDIUM WORKING POC
Windows 10 and Windows Server 2016/2019 - Denial of Service via Memory Object Handling
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.
7 stars
CVSS 6.5