lsw29475

6 exploits Active since Dec 2018
CVE-2018-8611 NOMISEC HIGH WORKING POC
Windows Kernel - Privilege Escalation
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
11 stars
CVSS 7.8
CVE-2020-9715 NOMISEC HIGH WORKING POC
Adobe Acrobat DC < 15.006.30523 - Use After Free
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution .
5 stars
CVSS 7.8
CVE-2020-0022 NOMISEC HIGH WORKING POC
Android -8.0,8.1,9,10 - RCE
In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-143894715
4 stars
CVSS 8.8
CVE-2019-17026 NOMISEC HIGH WORKING POC
Mozilla Firefox < 68.4.1 - Type Confusion
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 68.4.1, Thunderbird < 68.4.1, and Firefox < 72.0.1.
3 stars
CVSS 8.8
CVE-2021-39863 NOMISEC HIGH WORKING POC
Adobe Acrobat DC < 21.005.20060 - Heap Buffer Overflow
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Buffer Overflow vulnerability when parsing a specially crafted PDF file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
2 stars
CVSS 7.8
CVE-2020-17057 NOMISEC HIGH WORKING POC
Windows Win32k - Privilege Escalation
Windows Win32k Elevation of Privilege Vulnerability
2 stars
CVSS 7.0