The vulnerability of the Windows operating system’s Recovery Environment Agent allows a hacker to increase their privileges.

The vulnerability of the Windows operating system’s Recovery Environment Agent is related to access control errors. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability in the implementation of the Secure Boot protocol for Windows operating systems allows attackers to disclose sensitive information that is protected by this security mechanism.

The vulnerability of the Secure Boot secure bootloading protocol for the Windows operating system is related to access control errors. Exploiting this vulnerability could allow a perpetrator to disclose protected information...

The vulnerability of the Active Directory Domain Services service on the Windows operating system allows a perpetrator to elevate their privileges to a system-level level.

The vulnerability of the Active Directory Domain Services service on the Windows operating system is related to access control errors. Exploiting this vulnerability can allow a malicious actor to elevate their privileges to a system-level level...

The vulnerability of the Azure Marketplace component of Microsoft Azure’s software platform allows a perpetrator to disclose protected information.

The vulnerability of the Azure Marketplace component of Microsoft Azure’s software platform is related to access control errors. Exploiting this vulnerability could allow a malicious actor to disclose protected information remotely...

PT-2024-10289 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Microsoft Edge, which is based on Chromium. This vulnerability can be exploited by a remote attacker...

The vulnerability of BigDL’s software, related to access control errors, allows attackers to escalate their privileges.

The vulnerability of BigDL software is related to errors in access control. Exploiting this vulnerability can allow a remote attacker to enhance their privileges...

The vulnerability in the web interface for managing microprogrammed software devices of Cisco Analog Telephone Adapter (ATA) series 190 allows a perpetrator to execute commands on behalf of the Admin user.

The vulnerability of the web interface for managing microprogrammed software in Cisco Analog Telephone Adapter ATA devices of the 190 series is related to access control errors. Exploiting this vulnerability allows a malicious actor to execute commands on behalf of the Admin user by sending a...

The vulnerability of Microprogrammed Software in Synology cameras such as BC500, TC500, and CC400W arises from access control errors, allowing attackers to execute arbitrary code.

The vulnerability of the microprogramming software of Synology BC500, Synology TC500, and Synology CC400W is related to access control errors. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of Remote Desktop Services (RDS) for Windows operating systems allows a hacker to circumvent existing security restrictions.

The vulnerability of Remote Desktop Services RDS for Windows operating systems is related to access control errors. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

The vulnerability of the vlapic_error function in Xen hypervisors allows a perpetrator to trigger a service failure.

The vulnerability of the vlapicerror function in supervisors is related to access control errors. Exploiting this vulnerability could allow a malicious actor to cause service failures...

TestLink 安全漏洞

TestLink is a suite of open source software from the TestLink team for managing the software testing process and providing statistical analysis. A security vulnerability exists in TestLink version 1.9.20 that stems from the application not checking user permissions, resulting in an access control...

The vulnerability of Microsoft Visio graphic editors, Microsoft Office programs, and 365 Apps for Enterprise, related to access control errors, allows a perpetrator to perform arbitrary actions.

The vulnerability of Microsoft Visio graphic editors, Microsoft Office programs, and 365 Apps for Enterprise is related to access control errors. Exploiting this vulnerability allows an attacker to execute arbitrary code, provided that the user opens a specially crafted file...

The vulnerability of the TCP/IP Connectivity Utilities component in IBM i operating systems allows attackers to enhance their privileges.

The vulnerability of the TCP/IP Connectivity Utilities component in IBM i operating systems is related to access control errors. Exploiting this vulnerability allows attackers to enhance their privileges...

The vulnerability of the PowerScale OneFS operating system, related to access control errors, allows attackers to escalate their privileges.

The vulnerability of the PowerScale OneFS operating system is related to access control errors. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the NVIDIA GPU Display Driver software driver allows a hacker to execute arbitrary code, increase their privileges, or disclose sensitive information.

The vulnerability of the NVIDIA GPU Display Driver software driver is related to access control errors. Exploiting this vulnerability allows an attacker to execute arbitrary code, enhance their privileges, or disclose sensitive information...

The vulnerability of the PowerScale OneFS operating system, related to access control errors, allows attackers to escalate their privileges.

The vulnerability of the PowerScale OneFS operating system is related to access control errors. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Node Role Label Handler component in the corporate platform’s application programming interface, Red Hat OpenShift Container Platform, allows a malicious individual to escalate their privileges.

The vulnerability of the Node Role Label Handler component in the corporate platform’s application programming interface of Red Hat OpenShift Container Platform is related to access control errors. Exploiting this vulnerability could allow a malicious actor to enhance their privileges by modifyin...

The vulnerability of Microsoft Exchange Server’s mail server, related to access control errors, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Exchange Server is related to access control errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code within the server’s account context through a remote network call...

The vulnerability of the local management platform FortiSwitchManager, related to errors in access control, allows a attacker to modify settings by sending commands through the application programming interface.

The vulnerability of the FortiSwitchManager local management platform is related to errors in access control. Exploiting this vulnerability allows a malicious actor to make changes to settings by sending commands through the application programming interface...

The vulnerability of the SICAM TOOLBOX II engineering software, related to access control errors, allows a intruder to execute arbitrary commands with elevated privileges.

The vulnerability of the SICAM TOOLBOX II engineering software is related to access control errors. Exploiting this vulnerability can allow attackers to execute arbitrary commands with elevated privileges...