http://shivasurya.me/categories/cve/Recent content in Cve on ShivasuryaHugoen-usWed, 01 Apr 2026 00:00:00 +0000http://shivasurya.me/2026/04/01/cve-2026-33186-grpc-go-authorization-bypass/Wed, 01 Apr 2026 00:00:00 +0000http://shivasurya.me/2026/04/01/cve-2026-33186-grpc-go-authorization-bypass/http://shivasurya.me/2023/03/25/CVE-2023-23397-vulnerability-deep-dive-and-poc/Sat, 25 Mar 2023 00:00:00 +0000http://shivasurya.me/2023/03/25/CVE-2023-23397-vulnerability-deep-dive-and-poc/<h2 id="quick-overview">Quick Overview</h2> <p>Microsoft announced patch for <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-23397">CVE-2023-23397</a> which generally goes out usually on tuesday (Mar 14, 2023). This particular vulnerability caught my eyes due to the fact that I actively work on <code>Active Directory</code> based HackTheBox machines and this one is something similar to <code>Android Application Exploits</code> where attacker passes random url to <code>activities</code> or <code>services</code> and the outbound network connection often contains sensitive tokens attached to it.</p> <p>IIRC, I reported a similar vulnerability in 2020 which completely leaks encrypted sandbox local files including e-mail, tasks in the ProtonMail Android Client <a href="https://proton.me/blog/protonmail-security-contributors">reference</a> However, it requires user interaction in the victim side of Android app.</p>