This is a proof of concept for CVE-2021-28476 (“Hyper-V Remote Code Execution Vulnerability”), an arbitrary memory read in vmswitch.sys (network virtualization service provider) patched by Microsoft in May 2021.
Proof of concept exploit for an out-of-bounds access vulnerability in the Realtek RTKVHD64.sys, leading to pool corruption.
This is a proof of concept for a Windows TCP/IP denial of service vulnerability due to a NULL dereference in tcpip.sys. This was patched by Microsoft in February 2021. It is triggerable remotely by sending malicious UDP packet over IPv6.
XNU suffers from a network stack kernel heap overflow due to an out-of-bounds memmove in 6lowpan. Proof of concept code included.
Microsoft Windows has an issue where you can use the CreateProcessWithLogon API to escape a write restricted service and achieve full write access as the service user.
Multiple Schneider Electric EVlink Charging Stations suffers from authentication bypass and remote code execution vulnerabilities.
WordPress Plugin Popular Posts 5.3.2 – Remote Code Execution (RCE) (Authenticated)
Tags: 0day, remote exploitThese are details on an open redirection vulnerability in Apache Tomcat version 9.0.0M1 that was discovered in 2018.
These are details on a cross site scripting vulnerability in Apache Tomcat version 9.0.0M1 that was discovered in 2019.