Salman Asad (@deathflash1411) - Security Researcher

CVE-2022-25012 NOMISEC MEDIUM WORKING POC

Argussurveillance Dvr - Weak Encryption

Argus Surveillance DVR v4.0 employs weak password encryption.

6 stars

CVSS 5.5

View Code

CVE-2021-3560 NOMISEC HIGH WORKING POC

polkit - Privilege Escalation

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS 7.8

View Code

CVE-2021-3560 NOMISEC HIGH WORKING POC

polkit - Privilege Escalation

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS 7.8

View Code