Lucene search
K

28 matches found

Cvelist
Cvelist
added 2026/04/14 4:57 p.m.27 views

CVE-2026-26153 Windows Encrypted File System (EFS) Elevation of Privilege Vulnerability

...

7.8CVSS0.00286EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/14 4:57 p.m.4 views

CVE-2026-26153 Windows Encrypted File System (EFS) Elevation of Privilege Vulnerability

...

7.8CVSS6.2AI score0.00286EPSS
Exploits0References1
CVE
CVE
added 2026/04/14 4:57 p.m.36 views

CVE-2026-26153

CVE-2026-26153 describes an out-of-bounds read in the Windows Encrypting File System (EFS) that could allow an authorized, locally authenticated attacker to obtain elevated privileges. The vulnerability is associated with EFS in Windows and is listed across multiple sources (NVD, CVE databases, M...

7.8CVSS5.7AI score0.00286EPSS
Exploits0References1Affected Software11
Microsoft CVE
Microsoft CVE
added 2026/04/14 2:0 p.m.7 views

Windows Encrypted File System (EFS) Elevation of Privilege Vulnerability

Out-of-bounds read in Windows Encrypting File System EFS allows an authorized attacker to elevate privileges locally...

7.8CVSS6.2AI score0.00286EPSS
Exploits0
Kaspersky
Kaspersky
added 2026/04/14 12:0 a.m.14 views

KLA90980 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, spoof user interface, execute arbitrary code, cause denial of service, read local...

8CVSS7.1AI score0.64095EPSS
Exploits3References121
EUVD
EUVD
added 2025/10/09 6:30 p.m.9 views

EUVD-2017-18919

NetSarang Xmanager Enterprise 5.0 Build 1232, Xmanager 5.0 Build 1045, Xshell 5.0 Build 1322, Xftp 5.0 Build 1218, and Xlpd 5.0 Build 1220 contain a malicious nssock2.dll that implements a multi-stage, DNS-based backdoor. The dormant library contacts a C2 DNS server via a specially crafted TXT...

9.3CVSS7.3AI score0.00622EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2000-0419

Malware in sbrugna...

7.2CVSS6.4AI score0.0149EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-0261

Malware in sbrugna...

2.1CVSS6.4AI score0.02562EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.25 views

CVE-2024-36495

The application Faronics WINSelect Standard + Enterprise saves its configuration in an encrypted file on the file system which "Everyone" has read and write access to, path to file: C:\ProgramData\WINSelect\WINSelect.wsd The path for the affected WINSelect Enterprise configuration file is:...

7.7CVSS6.9AI score0.0031EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2022/07/12 7:0 a.m.72 views

July 12, 2022—KB5015808 (OS Build 14393.5246) - EXPIRED

None None...

8.8CVSS6.8AI score0.32146EPSS
Exploits4
Positive Technologies
Positive Technologies
added 2022/04/01 12:0 a.m.10 views

PT-2022-9996 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to improper validation of buffer size input to the EFS file, which can lead to memory corruption in various Qualcomm Snapdragon products, including Snapdrag...

7.8CVSS7.8AI score0.0014EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/03/07 12:0 a.m.5 views

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and from time to time manufactured on the surface of semiconductor wafers. A security vulnerability exists in a number of Qualcomm products th...

7.8CVSS7.5AI score0.0014EPSS
Exploits0References8
CNNVD
CNNVD
added 2022/02/07 12:0 a.m.7 views

Qualcomm 多款产品安全漏洞

Qualcomm Qca chips and others are products of Qualcomm Incorporated, a U.S. company.The Qualcomm Qca chip is a Bluetooth module chip.The Qualcomm Qcs chip is a high-performance IoT system-on-chip.The Qualcomm Sd chip is a processor.The Qualcomm Qca chip is a Bluetooth module chip.The Qualcomm Qcs...

7.8CVSS7.3AI score0.00154EPSS
Exploits0References5
OSV
OSV
added 2021/11/17 2:15 p.m.5 views

CVE-2021-29861

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in EFS to expose sensitive information. IBM X-Force ID: 206085...

6.2CVSS5.8AI score0.00258EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2021/08/10 7:0 a.m.101 views

August 10, 2021—KB5005031 (OS Build 18363.1734)

None None...

9.9CVSS6.8AI score0.67252EPSS
Exploits15
Microsoft KB
Microsoft KB
added 2021/08/10 7:0 a.m.74 views

August 10, 2021—KB5005089 (Security-only update)

None None...

9.9CVSS6.8AI score0.66023EPSS
Exploits7
Microsoft KB
Microsoft KB
added 2016/10/27 12:0 a.m.5 views

October 27, 2016 — KB3197954 (OS Build 14393.351)

None None...

6.1AI score
Exploits0
OSV
OSV
added 2010/09/17 6:0 p.m.9 views

UBUNTU-CVE-2010-3074

SSLCipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a watermark attack...

2.1CVSS5.8AI score0.00386EPSS
Exploits0References2
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.24 views

CVE-2002-0788

An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System EFS, creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain...

5.1AI score0.00375EPSS
Exploits0References5
NVD
NVD
added 2002/08/12 4:0 a.m.13 views

CVE-2002-0788

An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System EFS, creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain...

5.5CVSS5.2AI score0.00375EPSS
Exploits0References5
Rows per page
Query Builder