EUVD-2025-205537

Exposure of Sensitive Information to an Unauthorized Actor, Missing Encryption of Sensitive Data, Files or Directories Accessible to External Parties vulnerability in Kings Information & Network Co. KESS Enterprise on Windows allows Privilege Escalation, Modify Existing Service, Modify Shared...

CVE-2025-20386 Incorrect permission assignment on Splunk Enterprise for Windows during new installation or upgrade

In Splunk Enterprise for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Splunk Enterprise for Windows Installation directory. This lets non-administrator users on the machine...

PT-2025-48958

Name of the Vulnerable Software and Affected Versions Splunk Enterprise for Windows versions prior to 10.0.2 Splunk Enterprise for Windows versions prior to 9.4.6 Splunk Enterprise for Windows versions prior to 9.3.8 Splunk Enterprise for Windows versions prior to 9.2.10 Description A flaw exists...

CVE-2024-45731

Summary: CVE-2024-45731 affects Splunk Enterprise for Windows prior to 9.3.1, 9.2.3, and 9.1.6. A low-privileged user (not admin/power roles) could write a file to the Windows system root (default System32 location) when Splunk is installed on a separate drive. Root cause / impact: arbitrary file...

PRIMX Zed Security Vulnerability

Primx PRIMX Zed is a suite of sensitive data encryption software from the French company Primx. A security vulnerability exists in ZED that stems from the presence of a sensitive information disclosure vulnerability. Affected products and versions: ZED Enterprise for Windows versions Q.2020.1,...

CVE-2023-40596 Splunk Enterprise on Windows Privilege Escalation due to Insecure OPENSSLDIR Build Definition Reference in DLL

In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library DLL that ships with Splunk Enterprise references an insecure path for the OPENSSLDIR build definition. An attacker can abuse this reference and subsequently install malicious code to achieve privilege...

Qlik Sense 输入验证错误漏洞

Qlik Sense is an application from Qlik USA. Allows users to create visualizations, charts, interactive dashboards and analytical applications for local and offline use. A security vulnerability exists in Qlik Sense Enterprise for Windows. An attacker could exploit the vulnerability to access file...

Qlik Sense 环境问题漏洞

Qlik Sense is an application from Qlik USA. Allows users to create visualizations, charts, interactive dashboards and analytical applications for local and offline use. A security vulnerability exists in Qlik Sense Enterprise for Windows. An attacker can exploit the vulnerability to elevate...

DiskBoss Enterprise 8.4.16 - Local Buffer Overflow (PoC) Exploit

Exploit for windows platform in category dos / poc !/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: DiskBoss Enterprise v8.4.16 Local Buffer OverflowPoC Date:...