[Canvas] CANVAS 7.31 released

canvas at immunityinc.com canvas at immunityinc.com
Fri Dec 10 11:33:38 UTC 2021

*CANVAS Release 7.31*

*Date*: 10 December 2021

*Version*: 7.31

*Download URL*: https://canvas.immunityinc.com/getcanvas

*Release Notes*:

In this CANVAS release we are bringing you 5 new modules and bugfixes.

Our new modules include a local privilege escalation targeting Windows 10 (CVE-2021-33739),
a remote command execution exploit targeting Microsoft Azure OMI (CVE-2021-38647),
a remote code execution in Microsoft Office (CVE-2021-40444), a module exploiting
SeriousSAM (CVE-2021-36934) and one remote command execution
exploit targeting Apache 2.4.49/2.4.50 (CVE-2021-41773, CVE-2021-42013).


o Linux installer fixes (Kali)

==New Modules==

o dwm_remove_binding_lpe (CVE-2021-33739)

o office_mshtml_activex (CVE-2021-40444)

o omigod (CVE-2021-38647)

o serious_sam (CVE-2021-36934)

o apache_cgi_rce (CVE-2021-41773, CVE-2021-42013)

More information about the Canvas mailing list