Lucene search
K

4017 matches found

cve
cve
added 2026/04/23 6:57 a.m.17 views

CVE-2025-10549

CVE-2025-10549 : DLL hijacking in EfficientLab Controlio before v1.3.95 due to weak permissions in the installation directory. A local attacker can drop a crafted DLL and achieve arbitrary code execution with SYSTEM privileges because the service runs as NT AUTHORITY\SYSTEM. Affects EfficientLab ...

5.1CVSS6.4AI score0.00163EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2026/04/23 6:57 a.m.6 views

CVE-2025-10549 DLL Hijacking in EfficientLab Controlio Leads to Local Privilege Escalation

EfficientLab Controlio before v1.3.95 contains a DLL hijacking vulnerability caused by weak folder permissions in the installation directory. A local attacker can place a specially crafted DLL in this directory and achieve arbitrary code execution with highest privileges, because the affected...

6.4AI score0.00163EPSS
Exploits1References2
cvelist
cvelist
added 2026/04/23 6:57 a.m.32 views

CVE-2025-10549 DLL Hijacking in EfficientLab Controlio Leads to Local Privilege Escalation

EfficientLab Controlio before v1.3.95 contains a DLL hijacking vulnerability caused by weak folder permissions in the installation directory. A local attacker can place a specially crafted DLL in this directory and achieve arbitrary code execution with highest privileges, because the affected...

0.00163EPSS
Exploits1References2
attackerkb
attackerkb
added 2026/04/23 6:57 a.m.3 views

CVE-2025-10549

EfficientLab Controlio before v1.3.95 contains a DLL hijacking vulnerability caused by weak folder permissions in the installation directory. A local attacker can place a specially crafted DLL in this directory and achieve arbitrary code execution with highest privileges, because the affected...

6.4AI score0.00163EPSS
Exploits1References3Affected Software1
euvd
euvd
added 2026/04/15 3:31 p.m.6 views

EUVD-2026-22919

A potential DLL hijacking vulnerability was reported in Lenovo Service Bridge that, under certain conditions, could allow a local authenticated user to execute code with elevated privileges...

6.7CVSS5.9AI score0.00126EPSS
Exploits0References2
nvd
nvd
added 2026/04/15 1:16 p.m.5 views

CVE-2026-1636

A potential DLL hijacking vulnerability was reported in Lenovo Service Bridge that, under certain conditions, could allow a local authenticated user to execute code with elevated privileges...

6.7CVSS0.00126EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/04/15 12:27 p.m.5 views

CVE-2026-1636

A potential DLL hijacking vulnerability was reported in Lenovo Service Bridge that, under certain conditions, could allow a local authenticated user to execute code with elevated privileges...

6.7CVSS5.9AI score0.00126EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/04/15 12:27 p.m.5 views

CVE-2026-1636

A potential DLL hijacking vulnerability was reported in Lenovo Service Bridge that, under certain conditions, could allow a local authenticated user to execute code with elevated privileges...

6.7CVSS5.9AI score0.00126EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/04/08 9:35 p.m.2 views

CVE-2026-40031 MemProcFS < 5.17 DLL/Shared Library Hijacking

MemProcFS before 5.17 contains multiple unsafe library-loading patterns that enable DLL and shared-library hijacking across six attack surfaces, including bare-name LoadLibraryU and dlopen calls without path qualification for vmmpyc, libMSCompression, and plugin DLLs. An attacker who places a...

8.5CVSS6.5AI score0.00142EPSS
Exploits0References4
cvelist
cvelist
added 2026/04/08 9:35 p.m.24 views

CVE-2026-40031 MemProcFS < 5.17 DLL/Shared Library Hijacking

MemProcFS before 5.17 contains multiple unsafe library-loading patterns that enable DLL and shared-library hijacking across six attack surfaces, including bare-name LoadLibraryU and dlopen calls without path qualification for vmmpyc, libMSCompression, and plugin DLLs. An attacker who places a...

8.5CVSS0.00142EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2026/04/08 12:0 a.m.5 views

PT-2026-31468

MemProcFS before 5.17 contains multiple unsafe library-loading patterns that enable DLL and shared-library hijacking across six attack surfaces, including bare-name LoadLibraryU and dlopen calls without path qualification for vmmpyc, libMSCompression, and plugin DLLs. An attacker who places a...

8.5CVSS6.5AI score0.00142EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/04/03 11:2 p.m.3 views

CVE-2026-27774

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References1
euvd
euvd
added 2026/04/02 6:31 p.m.6 views

EUVD-2026-18418

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/04/02 5:5 p.m.2 views

CVE-2026-27774

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References2
cvelist
cvelist
added 2026/04/02 5:4 p.m.15 views

CVE-2026-28728

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS0.00096EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/04/02 5:4 p.m.3 views

CVE-2026-28728

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References2
cve
cve
added 2026/04/02 5:4 p.m.7 views

CVE-2026-28728

In Acronis True Image (Windows) prior to build 42902, a local privilege escalation is reported due to a DLL hijacking vulnerability. The affected component is the application on Windows; root cause is DLL hijacking. Public details explicitly state the product and build range; no exploitation deta...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2026/04/02 5:4 p.m.2 views

CVE-2026-28728

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/04/02 12:0 a.m.2 views

PT-2026-29842

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/04/02 12:0 a.m.4 views

PT-2026-29843

Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis True Image Windows before build 42902...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References2
Rows per page
Query Builder