SaumyajeetDas

3 exploits Active since Sep 2022
CVE-2023-46604 NOMISEC CRITICAL WORKING POC
Java OpenWire - Deserialization RCE
The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.
123 stars
CVSS 10.0
CVE-2022-36271 NOMISEC HIGH WRITEUP
Outbyte PC Repair Installation File <1.7.112.7856 - Code Injection
Outbyte PC Repair Installation File 1.7.112.7856 is vulnerable to Dll Hijacking. iertutil.dll is missing so an attacker can use a malicious dll with same name and can get admin privileges.
9 stars
CVSS 7.8
CVE-2022-38633 WRITEUP HIGH WRITEUP
Genymotion Desktop <3.2.1 - Privilege Escalation
Genymotion Desktop v3.2.1 was discovered to contain a DLL hijacking vulnerability which allows attackers to escalate privileges and execute arbitrary code via a crafted binary.
CVSS 7.8