Lucene search
+L

131 matches found

Zero Day Initiative
Zero Day Initiative
added 2021/10/14 12:0 a.m.29 views

Microsoft Windows AppX Deployment Service Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the AppX Deploymen...

7CVSS6AI score0.00689EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/09/16 12:0 a.m.56 views

Microsoft Windows Installer Service Directory Junction Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

6.1CVSS4.8AI score0.00979EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/09/16 12:0 a.m.51 views

Microsoft Windows Update Agent Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within Windows Update...

7CVSS5.7AI score0.00829EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/09/16 12:0 a.m.40 views

Microsoft Windows Installer Service Directory Junction Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS3.8AI score0.01215EPSS
Exploits0References1
OSV
OSV
added 2021/09/06 12:15 p.m.5 views

CVE-2021-36744

Trend Micro Security Consumer 2021 and 2020 are vulnerable to a directory junction vulnerability which could allow an attacker to exploit the system to escalate privileges and create a denial of service...

7.8CVSS7.3AI score0.00471EPSS
Exploits0References2
NVD
NVD
added 2021/09/06 12:15 p.m.15 views

CVE-2021-36744

Trend Micro Security Consumer 2021 and 2020 are vulnerable to a directory junction vulnerability which could allow an attacker to exploit the system to escalate privileges and create a denial of service...

7.8CVSS0.00471EPSS
Exploits0References2
Prion
Prion
added 2021/09/06 12:15 p.m.21 views

Memory corruption

Trend Micro Security Consumer 2021 and 2020 are vulnerable to a directory junction vulnerability which could allow an attacker to exploit the system to escalate privileges and create a denial of service...

4.6CVSS7.6AI score0.00471EPSS
Exploits0References2Affected Software4
CVE
CVE
added 2021/09/06 11:37 a.m.59 views

CVE-2021-36744

CVE-2021-36744: A directory junction vulnerability exists in Trend Micro Maximum Security/consumer components (as discussed in ZDI advisory) that allows a local attacker with low privileges to create a directory junction via the Maximum Security Agent, enabling denial-of-service by deleting a fil...

7.8CVSS7.6AI score0.00471EPSS
Exploits0References2Affected Software4
Cvelist
Cvelist
added 2021/09/06 11:37 a.m.18 views

CVE-2021-36744

Trend Micro Security Consumer 2021 and 2020 are vulnerable to a directory junction vulnerability which could allow an attacker to exploit the system to escalate privileges and create a denial of service...

7.8AI score0.00471EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/09/03 7:10 a.m.4 views

Trend Micro Security family vulnerable to improper handling of Directory Junction

Overview Trend Micro Incorporated has released security updates for Trend Micro Security family. Trend Micro Incorporated reported this vulnerability to JPCERT/CC to notify users of the solutions through JVN. Impact An attacker may obtain unauthorized privileges and cause a denial-of-service DoS...

6.6AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2021/08/30 12:0 a.m.40 views

Trend Micro Maximum Security Directory Junction Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exis...

6.1CVSS3.8AI score0.00471EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/08/11 12:0 a.m.40 views

Microsoft Windows Event Tracing Directory Junction Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

6.1CVSS5.1AI score0.00831EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/08/11 12:0 a.m.60 views

Microsoft Windows User Profile Service Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the User Profile...

7.8CVSS5.9AI score0.14393EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
added 2021/08/11 12:0 a.m.33 views

Microsoft Windows Defender Directory Junction Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

6.1CVSS5.2AI score0.0044EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/08/11 12:0 a.m.44 views

Microsoft Windows User Profile Service Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the User Profile...

7.8CVSS5.9AI score0.00563EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/08/03 12:0 a.m.34 views

Microsoft Edge Installer Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Edge. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within Edge Installer. By...

7CVSS4.8AI score0.00729EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/05/13 12:0 a.m.56 views

Microsoft Windows WalletService Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within WalletService. By...

7.8CVSS5.9AI score0.01136EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/04/21 12:0 a.m.69 views

Microsoft Windows AppX Deployment Service Directory Junction Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...

6.1CVSS4.6AI score0.0098EPSS
Exploits0References1
OSV
OSV
added 2021/03/29 9:15 p.m.4 views

CVE-2021-27241

This vulnerability allows local attackers to delete arbitrary directories on affected installations of Avast Premium Security 20.8.2429 Build 20.8.5653.561. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The...

6.1CVSS6.6AI score0.00261EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/03/29 9:5 p.m.22 views

CVE-2021-27241

This vulnerability allows local attackers to delete arbitrary directories on affected installations of Avast Premium Security 20.8.2429 Build 20.8.5653.561. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The...

6.1CVSS6.5AI score0.00261EPSS
Exploits0References1
Rows per page
Query Builder