Y3A

5 exploits Active since May 2020
CVE-2023-28229 NOMISEC HIGH WORKING POC
Windows CNG Key Isolation Service - Privilege Escalation
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
137 stars
CVSS 7.0
CVE-2021-31956 NOMISEC HIGH WORKING POC
Windows NTFS - Elevation of Privilege via Integer Underflow
Windows NTFS Elevation of Privilege Vulnerability
5 stars
CVSS 7.8
CVE-2021-4034 NOMISEC HIGH WORKING POC
Local Privilege Escalation in polkits pkexec
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the calling parameters count correctly and ends trying to execute environment variables as commands. An attacker can leverage this by crafting environment variables in such a way it'll induce pkexec to execute arbitrary code. When successfully executed the attack can cause a local privilege escalation given unprivileged users administrative rights on the target machine.
4 stars
CVSS 7.8
CVE-2023-21766 NOMISEC MEDIUM WORKING POC
Windows Overlay Filter - Info Disclosure
Windows Overlay Filter Information Disclosure Vulnerability
CVSS 4.7
CVE-2020-1048 NOMISEC HIGH WORKING POC
Microsoft Spooler Local Privilege Elevation Vulnerability
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1070.
CVSS 7.8