EXODUS BLOG

Month: March 2022

Exodus Answers Biden’s Call to Action

MARCH 23, 2022

White House issues call to action in light of new intelligence on Russian cyberthreat The Biden administration renewed calls Monday for the private sector to address known vulnerabilities and shore up cyberdefenses in light...

Exploiting a use-after-free in Windows Common Logging File System (CLFS)

MARCH 10, 2022

By Arav Garg Overview This post analyzes a use-after-free vulnerability in clfs.sys, the kernel driver that implements the Common Logging File System, a general-purpose logging service that can be used by user-space and kernel-space...

Advantech iView ztp_search_value Parameter SQL Injection Remote Code Execution Vulnerability

MARCH 1, 2022

EIP-b4311e44 A vulnerability exists within Advantech iView SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp_search_value’ parameter to the ‘NetworkServlet’ endpoint. Successful...

Advantech iView data Parameter SQL Injection Information Disclosure Vulnerability

MARCH 1, 2022

EIP-d835f368 A vulnerability exists within Advantech iView SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘data’ parameter to the ‘NetworkServlet’ endpoint. Successful...

Advantech iView search_term Parameter SQL Injection Remote Code Execution Vulnerability

MARCH 1, 2022

EIP-626345ce A vulnerability exists within Advantech iView SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘search_term’ parameter to the ‘NetworkServlet’ endpoint. Successful...

Advantech iView getInventoryReportData Parameter SQL Injection Information Disclosure Vulnerability

MARCH 1, 2022

EIP-62f7da8c A vulnerability exists within Advantech iView SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘getInventoryReportData’ parameter to the ‘NetworkServlet’ endpoint. Successful...

Advantech iView ztp_config_id Parameter SQL Injection Information Disclosure Vulnerability

MARCH 1, 2022

EIP-824d14ae A vulnerability exists within Advantech iView SNMP management tool that allows for remote attackers to bypass authentication checks and reach a SQL injection vulnerability within the ‘ztp_config_id’ parameter to the ‘NetworkServlet’ endpoint. Successful...