what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Armin Weihbold

One Identity Password Manager Kiosk Escape Privilege Escalation

Posted Dec 13, 2023

Authored by Armin Weihbold, Stefan Schweighofer, Constantin Schieber-Knobl | Site sec-consult.com

One Identity Password Manager versions prior to 5.13.1 suffer from a kiosk escape privilege escalation vulnerability.

tags | exploit

advisories | CVE-2023-48654

SHA-256 | 697a67d1e739daefce9d6501eb44b5bb45d5475a33e15ead624f4ab3c2df62f5

Download | Favorite | View

Atos Unify OpenScape Authentication Bypass / Remote Code Execution

Posted Dec 13, 2023

Authored by Armin Weihbold | Site sec-consult.com

Atos Unify OpenScape Session Border Controller (SBC) versions before V10 R3.4.0, Branch versions before V10 R3.4.0, and BCF versions before V10 R10.12.00 and V10 R11.05.02 suffer from an argument injection vulnerability that can lead to unauthenticated remote code execution and authentication bypass.

tags | exploit, remote, code execution

advisories | CVE-2023-6269

SHA-256 | 15f221e1138d1ef925e8ba667c47a56574048d29e535136df21b4d5bd24bea13

Download | Favorite | View

Atos Unify OpenScape Code Execution / Missing Authentication

Posted Sep 18, 2023

Authored by Armin Weihbold | Site sec-consult.com

Atos Unify OpenScape Session Border Controller, Atos Unify OpenScape Branch, and Atos Unify OpenScape BCF suffer from remote code execution and missing authentication vulnerabilities. Atos OpenScape SBC versions before 10 R3.3.0, Branch version 10 versions before R3.3.0, and BCF version 10 versions before 10 R10.10.0 are affected.

tags | exploit, remote, vulnerability, code execution

advisories | CVE-2023-36618, CVE-2023-36619

SHA-256 | e2e8c6ce30a0287849087e96a892584daa40873cf0049db9a9cd2dc86e763b18

Download | Favorite | View