<--
א
Itai Greenhut
Twitter:
@Gr33nh4t
Homepage:
http://bar/
GitHub:
baz
Keybase:
qux
POSTS
Aruba in Chains: Chaining Vulnerabilities for Fun and Profit
15-Jul 2021
,
CVE-2021-25155
CVE-2021-25156
CVE-2021-25157
CVE-2021-25158
CVE-2021-25159
CVE-2021-25160
CVE-2021-25161
CVE-2021-25162
Exploiting crash handlers: LPE on Ubuntu
16-Feb 2021
,
CVE-2021-25682
CVE-2021-25683
CVE-2021-25684
VULNS
03/09/21
CVE-2021-25155
Authenticated Arbitrary File Write via Web UI (cplogo-install)
03/09/21
CVE-2021-25162
Unauthenticated Command Injection via Web UI
03/09/21
CVE-2021-25161
Authenticated Reflected Cross-Site Scripting (cp_perview)
03/09/21
CVE-2021-25160
Authenticated Arbitrary File Write via Web UI to Specific Backup File
03/09/21
CVE-2021-25159
Authenticated Arbitrary File Write via Web UI (cp-upload)
03/09/21
CVE-2021-25158
Unauthenticated Arbitrary File Read via Race Condition Vulnerability
03/09/21
CVE-2021-25157
Authenticated Arbitrary File Read via Web UI (cplogo-install)
03/09/21
CVE-2021-25156
Authenticated Arbitrary Directory Create via Web UI (cplogo-install)
01/21/21
CVE-2021-25684
Stuck reading fifo file in Apport
01/21/21
CVE-2021-25683
Incorrect parsing of /proc/pid/stat in Apport
01/21/21
CVE-2021-25682
Incorrect parsing of /proc/pid/status in Apport