HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

Thunderstorm - is a modular framework to exploit UPS devices

Status
Not open for further replies.
itsMe

itsMe

*KillmeMories*
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
Joined
Jan 8, 2019
Messages
56,609
Solutions
2
Reputation
32
Reaction score
100,454
Points
2,313
Credits
32,610
‎6 Years of Service‎
 
76%
Thunderstorm.png


Thunderstorm is a modular framework to exploit UPS devices.

For now, only the CS-141 and NetMan 204 exploits will be available. The beta version of the framework will be released on the future.

CVE

Thunderstorm is currently capable of exploiting the following CVE:

    CVE-2022-47186 – Unrestricted file Upload # [CS-141]
    CVE-2022-47187 – Cross-Site Scripting via File upload # [CS-141]
    CVE-2022-47188 – Arbitrary local file read via file upload # [CS-141]
    CVE-2022-47189 – Denial of Service via file upload # [CS-141]
    CVE-2022-47190 – Remote Code Execution via file upload # [CS-141]
    CVE-2022-47191 – Privilege Escalation via file upload # [CS-141]
    CVE-2022-47192 – Admin password reset via file upload # [CS-141]
    CVE-2022-47891 – Admin password reset # [NetMan 204]
    CVE-2022-47892 – Sensitive Information Disclosure # [NetMan 204]
    CVE-2022-47893 – Remote Code Execution via file upload # [NetMan 204]

To see this hidden content, you must like this content.
 
Status
Not open for further replies.
Back
Top