Lucene search
K

5 matches found

Circl
Circl
added 2025/02/18 8:41 a.m.5 views

CVE-2025-0425

creationtimestamp| type| source ---|---|--- 2025-02-18 08:41:03+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4758 2025-02-18 10:00:46+00:00| seen| Telegram/uXTsRbSVOAxT-nr3t30Hie5F7TyPrUPFsbnyygTMVunZ5lI 2025-02-18 10:57:38+00:00| seen| https://t.me/cvedetector/18302...

8.5CVSS4.8AI score0.0016EPSS
Exploits1References2
NVD
NVD
added 2025/02/18 8:15 a.m.10 views

CVE-2025-0425

Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...

8.5CVSS0.0016EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/18 7:57 a.m.13 views

CVE-2025-0425 Local Privilege Escalation via Config Manipulation

Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...

8.5CVSS0.0016EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/18 7:57 a.m.5 views

CVE-2025-0425 Local Privilege Escalation via Config Manipulation

Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...

8.5CVSS7AI score0.0016EPSS
Exploits1References1
CVE
CVE
added 2025/02/18 7:57 a.m.58 views

CVE-2025-0425

Cordaware bestinformed Infoclient is vulnerable to local privilege escalation: a low-privileged user can change the server address to a malicious or spoofed server, enabling elevation to nt authority\system on Windows. This relies on default GUI permissions and can be mitigated by deploying a cus...

8.5CVSS7.1AI score0.0016EPSS
Exploits1References1
Rows per page
Query Builder