346 matches found
Roslyn CodeLens MCP Server 安全漏洞
Roslyn CodeLens MCP Server is a Roslyn-based .NET code library tool for deep semantic analysis, developed by Marcel Roozekrans. Versions of Roslyn CodeLens MCP Server from 0.0.9 to 1.17.0 contain security vulnerabilities. These vulnerabilities stem from the getdiagnostics tool, which loads and...
CVE-2026-4255
A DLL search order hijacking vulnerability in Thermalright TR-VISION HOME on Windows 64-bit allows a local attacker to escalate privileges via DLL side-loading. The application loads certain dynamic-link library DLL dependencies using the default Windows search order, which includes directories...
Synology Presto Client 代码问题漏洞
Synology Presto Client is a high-speed transfer tool developed by the Chinese company Synology. Versions of Synology Presto Client prior to 2.1.3-0672 contained a code vulnerability. This vulnerability stemmed from uncontrolled search path elements during the installation process, which could all...
CVE-2026-25656
A vulnerability has been identified in SINEC NMS All versions V4.0 SP3, User Management Component UMC All versions V2.15.2.1. The affected application permits improper modification of a configuration file by a low-privileged user. This could allow an attacker to load malicious DLLs, potentially...
PT-2026-7258
Name of the Vulnerable Software and Affected Versions SINEC NMS versions prior to 4.0 SP2 Description The application allows unauthorized modification of a configuration file by a user with limited privileges. This could enable an attacker to load malicious DLLs, potentially resulting in arbitrar...
PT-2026-7259
Name of the Vulnerable Software and Affected Versions SINEC NMS versions prior to 2.15.2.1 User Management Component UMC versions prior to 2.15.2.1 Description The application allows unauthorized modification of a configuration file by a user with limited privileges. This could enable an attacker...
PT-2026-5870
Name of the Vulnerable Software and Affected Versions Mitsubishi Electric Corporation FREQSHIP-mini for Windows versions 8.0.0 through 8.0.2 Description A flaw exists in default permissions within the software that could allow a local attacker to execute code with system privileges. This is...
CVE-2020-36911 Covenant 0.5 - Remote Code Execution (RCE)
Covenant 0.1.3 - 0.5 contains a remote code execution vulnerability that allows attackers to craft malicious JWT tokens with administrative privileges. Attackers can generate forged tokens with admin roles and upload custom DLL payloads to execute arbitrary commands on the target system...
CVE-2023-40352
McAfee Safe Connect before 2.16.1.126 may allow an adversary with system privileges to achieve privilege escalation by loading arbitrary DLLs...
PT-2025-48119
CMService.exe creates the C:usr directory and subdirectories with insecure permissions, granting write access to all authenticated users. This allows attackers to replace configuration files such as snmp.conf or hijack DLLs to escalate privileges...
CVE-2025-59485
CVE-2025-59485 affects Security Point (Windows) of MaLion prior to Ver.5.3.4. The flaw allows placing an arbitrary file in a specific folder by a logged-in user; if the file is a crafted DLL, it could execute code with SYSTEM privileges. Remediation: update to Security Point MaLion Ver.5.3.4 or l...
[SECURITY] Fedora 43 Update: mingw-binutils-2.45-2.fc43
Cross compiled binutils utilities like 'strip', 'as', 'ld' which understand Windows executables and DLLs...
SUSE CVE-2023-47113
BleachBit cleans files to free disk space and to maintain privacy. BleachBit for Windows up to version 4.4.2 is vulnerable to a DLL Hijacking vulnerability. By placing a DLL in the Folder c:\DLLs, an attacker can run arbitrary code on every execution of BleachBit for Windows. This issue has been...
EUVD-2020-3960
Malware in sbrugna...
EUVD-2017-15957
Malware in sbrugna...
EUVD-2010-3161
Malware in sbrugna...
EUVD-2015-0986
Malware in sbrugna...
EUVD-2020-28213
Malware in sbrugna...
EUVD-2021-13594
Malware in sbrugna...
EUVD-2017-11471
Malware in sbrugna...