Search Results | AttackerKB

Show filters

Topics 285 Users 9,714

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

285 Total Results

Displaying 61-70 of 285

Attacker Value

Unknown

CVE-2023-26299

Disclosure Date: June 30, 2023 (last updated October 08, 2023)

A potential Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in certain HP PC products using AMI UEFI Firmware (system BIOS), which might allow arbitrary code execution. AMI has released updates to mitigate the potential vulnerability.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2023-34650

Disclosure Date: June 28, 2023 (last updated October 08, 2023)

PHPgurukl Small CRM v.1.0 is vulnerable to Cross Site Scripting (XSS).

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2023-28060

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28058

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28050

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28044

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28036

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28034

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28031

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28027

Disclosure Date: June 23, 2023 (last updated October 08, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0