295 matches found
CVE-2025-10314
CVE-2025-10314 concerns Mitsubishi Electric Corporation FREQSHIP-mini for Windows (versions 8.0.0–8.0.2). Affected component is the installation directory’s service executables or DLLs, with root cause described as incorrect default permissions. Local attackers can execute arbitrary code with sys...
CVE-2024-2747
CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which could cause privilege escalation when a valid user replaces a trusted file name on the system and reboots the machine...
Foxit PDF Editor Installation Uncontrolled Search Path Privilege Escalation Vulnerability
Talos Vulnerability Report TALOS-2025-2275 Foxit PDF Editor Installation Uncontrolled Search Path Privilege Escalation Vulnerability December 19, 2025 CVE Number CVE-2025-57779 SUMMARY A privilege escalation vulnerability exists during the installation of Foxit PDF Editor via the Microsoft Store....
Acer ListCheck.exe 安全漏洞
Acer ListCheck.exe is a version comparison and system checking tool from Acer Taiwan, China. A security vulnerability exists in Acer ListCheck.exe that originates from a file that can be replaced by a malicious file with the same name, which could result in a local elevation of privilege...
CVE-2025-36747
ShineLan-X contains a set of credentials for an FTP server was found within the firmware, allowing testers to establish an insecure FTP connection with the server. This may allow an attacker to replace legitimate files being deployed to devices with their own malicious versions, since the firmwar...
EUVD-2025-203250
ShineLan-X contains a set of credentials for an FTP server was found within the firmware, allowing testers to establish an insecure FTP connection with the server. This may allow an attacker to replace legitimate files being deployed to devices with their own malicious versions, since the firmwar...
CVE-2025-36747
ShineLan-X contains a set of credentials for an FTP server was found within the firmware, allowing testers to establish an insecure FTP connection with the server. This may allow an attacker to replace legitimate files being deployed to devices with their own malicious versions, since the firmwar...
MegaTec ClientMate 安全漏洞
MegaTec ClientMate is a power management software from Taiwan, China-based MegaTec. A security vulnerability exists in MegaTec ClientMate that stems from insecure permissions in the C:\usr directory, which could lead to configuration file replacement or DLL hijacking...
Sublime Text 安全漏洞
Sublime Text is a cross-platform, extensible text editor from Sublime, Inc. A security vulnerability exists in Sublime Text version 4 4200 that originates from a low-privilege attacker who can replace uninstalled files in the installation folder, potentially resulting in elevated privileges...
Hash Collision Weakness
Dragonfly is vulnerable to Hash Collision Weakness. The vulnerability is due to the use of insecure hash functions such as MD5 for verifying downloaded files, which allows an attacker to craft malicious files with colliding hashes and replace legitimate files without detection...
JLSEC-2025-158 An issue was discovered in GNOME GLib before 2.66.8
An issue was discovered in GNOME GLib before 2.66.8. When gfilereplace is used with GFILECREATEREPLACEDESTINATION to replace a path that is a dangling symlink, it incorrectly also creates the target of the symlink as an empty file, which could conceivably have security relevance if the symlink is...
EUVD-2020-23125
Malware in sbrugna...
EUVD-2019-15051
Malware in sbrugna...
EUVD-2018-6679
Malware in sbrugna...
EUVD-2019-5578
Malware in sbrugna...
EUVD-2019-3094
Malware in sbrugna...
EUVD-2010-2078
Malware in sbrugna...
EUVD-2017-11849
Malware in sbrugna...
EUVD-2021-19670
Malware in sbrugna...
EUVD-2012-0400
Malware in sbrugna...