{"uuid": "1afce524-75d6-41d7-9af2-e7bfc92795b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-6961", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/59", "content": "#exploit\n1. CVE-2018-6961:\nVMware NSX SD-WAN Edge by VeloCloud <3.1.0 contains a command injection in local web UI component\nhttps://github.com/bokanrb/CVE-2018-6961\n]-> VMware NSX SD-WAN command injection vulnerability (Exploit in Python3)\nhttps://github.com/r3dxpl0it/CVE-2018-6961\n\n2. RCE in MVPower DVR/CCTV-DVR\naffecting over 70 different vendors\nhttp://www.kerneronsec.com/2016/02/remote-code-execution-in-cctv-dvrs-of.html\n]-> https://www.pentestpartners.com/security-blog/pwning-cctv-cameras\n]-> RCE exploit on TVT DVR:\nhttps://github.com/k1p0d/h264_dvr_rce\n\n3. Exploiting a Windows 10 PagedPool off-by-one overflow\nhttps://j00ru.vexillium.org/2018/07/exploiting-a-windows-10-pagedpool-off-by-one\n]-> PoC: https://gist.github.com/j00ru/2347cf937366e61598d1140c31262b18", "creation_timestamp": "2024-02-15T13:22:05.000000Z"}