Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:24 a.m.10 views

CVE-2023-38041

A logged in user may elevate its permissions by abusing a Time-of-Check to Time-of-Use TOCTOU race condition. When a particular process flow is initiated, an attacker can exploit this condition to gain unauthorized elevated privileges on the affected system...

7.8CVSS7AI score0.00672EPSS
Exploits0References1
NVD
NVD
added 2023/10/25 6:17 p.m.21 views

CVE-2023-38041

A logged in user may elevate its permissions by abusing a Time-of-Check to Time-of-Use TOCTOU race condition. When a particular process flow is initiated, an attacker can exploit this condition to gain unauthorized elevated privileges on the affected system...

7.8CVSS7.2AI score0.00672EPSS
Exploits0References1
OSV
OSV
added 2023/10/25 6:17 p.m.9 views

CVE-2023-38041

A logged in user may elevate its permissions by abusing a Time-of-Check to Time-of-Use TOCTOU race condition. When a particular process flow is initiated, an attacker can exploit this condition to gain unauthorized elevated privileges on the affected system...

7CVSS5.8AI score0.00672EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/25 12:24 a.m.19 views

CVE-2023-38041

A logged in user may elevate its permissions by abusing a Time-of-Check to Time-of-Use TOCTOU race condition. When a particular process flow is initiated, an attacker can exploit this condition to gain unauthorized elevated privileges on the affected system...

7.8CVSS7.1AI score0.00672EPSS
Exploits0References1
CVE
CVE
added 2023/10/25 12:24 a.m.61 views

CVE-2023-38041

CVE-2023-38041 affects Ivanti Secure Access Client prior to 22.6R1. A local unprivileged user can elevate privileges via a TOCTOU race in a specific process flow, enabling unauthorized elevated access on the system. The Ivanti forum entry provides a remediation: upgrade to version 22.6R1. The CVS...

7.8CVSS7.6AI score0.00672EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/25 12:24 a.m.8 views

CVE-2023-38041

A logged in user may elevate its permissions by abusing a Time-of-Check to Time-of-Use TOCTOU race condition. When a particular process flow is initiated, an attacker can exploit this condition to gain unauthorized elevated privileges on the affected system...

7.8CVSS7.2AI score0.00672EPSS
Exploits0References1
Ivanti
Ivanti
added 2023/10/19 9:32 p.m.18 views

CVE-2023-38041 New client side release to address a privilege escalation on Windows user machines

Summary A vulnerability exists on all versions of the Ivanti Secure Access Client Below 22.6R1 that would allow an unprivileged local user to gain unauthorized elevated privileges on the affected system. Mitigation Currently None Resoluiton To resolve the below mentioned vulnerability upgrade you...

7.8CVSS6.8AI score0.00672EPSS
Exploits0
Rows per page
Query Builder