shubham0d

8 exploits Active since Feb 2020
CVE-2021-30657 NOMISEC MEDIUM WORKING POC
macOS Gatekeeper check bypass
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application may bypass Gatekeeper checks. Apple is aware of a report that this issue may have been actively exploited..
30 stars
CVSS 5.5
CVE-2020-1301 NOMISEC HIGH WORKING POC
Windows SMBv1 - Remote Code Execution via Malicious Request Handling
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'.
17 stars
CVSS 8.8
CVE-2020-1048 NOMISEC HIGH WORKING POC
Microsoft Spooler Local Privilege Elevation Vulnerability
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1070.
13 stars
CVSS 7.8
CVE-2021-28312 NOMISEC LOW WORKING POC
Windows 10 and Windows Server 2016/2019 - Denial of Service in NTFS
Windows NTFS Denial of Service Vulnerability
6 stars
CVSS 3.3
CVE-2020-3153 NOMISEC MEDIUM WORKING POC
Cisco AnyConnect < - Path Traversal
A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local attacker to copy user-supplied files to system level directories with system level privileges. The vulnerability is due to the incorrect handling of directory paths. An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory. An exploit could allow the attacker to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks. To exploit this vulnerability, the attacker needs valid credentials on the Windows system.
5 stars
CVSS 6.5
CVE-2020-9767 NOMISEC HIGH WORKING POC
Zoom Sharing Service - Uncontrolled Search Path Element via DLL Loading
A vulnerability related to Dynamic-link Library (“DLL”) loading in the Zoom Sharing Service would allow an attacker who had local access to a machine on which the service was running with elevated privileges to elevate their system privileges as well through use of a malicious DLL. Zoom addressed this issue, which only applies to Windows users, in the 5.0.4 client release.
1 stars
CVSS 7.8
CVE-2020-27955 NOMISEC CRITICAL
Git Remote Code Execution via git-lfs (CVE-2020-27955)
Git LFS 2.12.0 allows Remote Code Execution.
CVSS 9.8
CVE-2020-1048 METASPLOIT HIGH ruby WORKING POC
Microsoft Spooler Local Privilege Elevation Vulnerability
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1070.
CVSS 7.8