hawkteam404

7 exploits Active since Aug 2024
CVE-2024-13188 WRITEUP MEDIUM WRITEUP
MicroWorld eScan Antivirus 7.0.32 - Info Disclosure
A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been rated as critical. Affected by this issue is some unknown functionality of the file /opt/MicroWorld/var/ of the component Installation Handler. The manipulation leads to incorrect default permissions. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 5.3
CVE-2024-13206 WRITEUP HIGH WRITEUP
REVE Antivirus 1.0.0.0 - Info Disclosure
A vulnerability classified as critical has been found in REVE Antivirus 1.0.0.0 on Linux. This affects an unknown part of the file /usr/local/reveantivirus/tmp/reveinstall. The manipulation leads to incorrect default permissions. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 7.8
CVE-2024-8075 WRITEUP MEDIUM WRITEUP
TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 - Command Injection
A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 and classified as critical. Affected by this vulnerability is the function setDiagnosisCfg. The manipulation leads to os command injection. The attack can be launched remotely. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 6.3
CVE-2024-8076 WRITEUP HIGH WRITEUP
TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 - Buffer Overflow
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 and classified as critical. Affected by this issue is the function setDiagnosisCfg. The manipulation leads to buffer overflow. The attack may be launched remotely. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 8.8
CVE-2024-8077 WRITEUP MEDIUM WRITEUP
TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 - Command Injection
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been classified as critical. This affects the function setTracerouteCfg. The manipulation leads to os command injection. It is possible to initiate the attack remotely. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 6.3
CVE-2024-8078 WRITEUP HIGH WRITEUP
TOTOLINK AC1200 T8 4.1.5cu.862_ - Buffer Overflow
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been declared as critical. This vulnerability affects the function setTracerouteCfg. The manipulation leads to buffer overflow. The attack can be initiated remotely. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 8.8
CVE-2024-8079 WRITEUP HIGH WRITEUP
TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 - Buffer Overflow
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been rated as critical. This issue affects the function exportOvpn. The manipulation leads to buffer overflow. The attack may be initiated remotely. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 8.8