CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the GDTunerSvc...

7.8CVSS7.5AI score

Exploits0

RedhatCVE•added 2025/05/22 10:23 a.m.•4 views

CVE-2019-9742

gdwfpcd.sys in G Data Total Security before 2019-02-22 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILEDEVICESECUREOPEN and therefore files and directories "inside" the \\.\gdwfpcd device are not properly protected, leading to unintended impersonation or...

7.5CVSS6.9AI score0.00198EPSS

Exploits1References1

Zero Day Initiative•added 2024/12/11 12:0 a.m.•6 views

G DATA Total Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability

7CVSS7.2AI score0.00038EPSS

Exploits0

NVD•added 2024/11/22 10:15 p.m.•8 views

CVE-2024-6871

G DATA Total Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the targ...

7.8CVSS0.00038EPSS

Exploits0References1

OSV•added 2024/11/22 10:15 p.m.•0 views

CVE-2024-6871

7.8CVSS7.4AI score0.00038EPSS

Exploits0References1

Cvelist•added 2024/11/22 9:30 p.m.•23 views

CVE-2024-6871 G DATA Total Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability

7CVSS0.00038EPSS

Exploits0References1

CVE•added 2024/11/22 9:30 p.m.•50 views

CVE-2024-6871

CVE-2024-6871 affects G DATA Total Security. The flaw is in autostart task handling, caused by incorrect permissions on folders, allowing a local attacker who can run low-privileged code to escalate to SYSTEM and execute arbitrary code. The vulnerability is documented by ZDI-24-1486 and mirrored ...

7.8CVSS7.1AI score0.00038EPSS

Exploits0References1Affected Software1

OSV•added 2024/11/22 8:15 p.m.•3 views

CVE-2024-30377

G DATA Total Security Scan Server Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target...

7.8CVSS6.2AI score

Exploits0References1

NVD•added 2024/11/22 8:15 p.m.•7 views

CVE-2024-30377

7.8CVSS0.00099EPSS

Exploits0References1

NVD•added 2024/11/22 8:15 p.m.•15 views

CVE-2024-1868

G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in orde...

7.8CVSS0.00102EPSS

Exploits0References1

NVD•added 2024/11/22 8:15 p.m.•8 views

CVE-2024-1867

7.8CVSS0.00102EPSS

Exploits0References1

CVE•added 2024/11/22 8:5 p.m.•50 views

CVE-2024-30377

CVE-2024-30377 affects G DATA Total Security. The vulnerability lies in the G DATA AntiVirus Scan Server: by abusing symbolic links, a local attacker can delete arbitrary files and escalate privileges to SYSTEM, potentially executing arbitrary code. Public documents cite ZDI as the advisory sourc...

7.8CVSS7.8AI score0.00099EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by