Lucene search
K

384 matches found

Vulnrichment
Vulnrichment
added 2025/12/03 4:22 p.m.3 views

CVE-2025-13751

Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7alpha1 through 2.7rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service...

5.6CVSS7.3AI score0.00157EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/12/03 4:22 p.m.5 views

CVE-2025-13751

Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7alpha1 through 2.7rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service...

5.6CVSS8AI score0.00157EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/11/28 12:0 a.m.5 views

PT-2025-48947

Name of the Vulnerable Software and Affected Versions OpenVPN versions 2.5.0 through 2.7 rc2 Description A local authenticated user can connect to the interactive service agent and trigger an error, resulting in a local denial of service. Recommendations Update to a version later than 2.7 rc2...

5.6CVSS7.6AI score0.00157EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2025/11/19 5:20 p.m.3 views

CVE-2025-46373

A Heap-based Buffer Overflow vulnerability CWE-122 vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.3, FortiClientWindows 7.2.0 through 7.2.8 may allow an authenticated local IPSec user to execute arbitrary code or commands via "fortips74.sys". The attacker would need to bypass the...

7.8CVSS7.6AI score0.00137EPSS
Exploits0References1
NVD
NVD
added 2025/11/14 6:15 p.m.5 views

CVE-2025-4618

A sensitive information disclosure vulnerability in Palo Alto Networks Prisma® Browser allows a locally authenticated non-admin user to retrieve sensitive data from Prisma Browser. Browser self-protection should be enabled to mitigate this issue...

6.9CVSS0.00077EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/14 12:0 a.m.6 views

PT-2025-46978

Name of the Vulnerable Software and Affected Versions Palo Alto Networks Prisma® Browser affected versions not specified Description An issue exists where improper validation of untrusted input in Palo Alto Networks Prisma® Browser could allow a locally authenticated, non-administrative user to...

4.8CVSS6.3AI score0.00081EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/11/13 8:3 p.m.6 views

CVE-2025-8485

An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application...

7.3CVSS6.9AI score0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/12 7:18 p.m.5 views

CVE-2025-8485

An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application...

7.3CVSS0.00106EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/12 7:18 p.m.2 views

CVE-2025-8485

An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application...

7.3CVSS6.5AI score0.00106EPSS
Exploits0References1
CVE
CVE
added 2025/11/12 7:18 p.m.17 views

CVE-2025-8485

CVE-2025-8485 affects Lenovo App Store. Description: an improper permissions vulnerability could allow a locally authenticated user to execute code with elevated privileges during the installation of an application. Affected component: Lenovo App Store's installation process. Root cause: improper...

7.3CVSS6.5AI score0.00106EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/11 4:50 p.m.7 views

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

6.7CVSS0.00111EPSS
Exploits0References1
CVE
CVE
added 2025/11/11 4:49 p.m.12 views

CVE-2025-24519

CVE-2025-24519 affects Intel® QuickAssist Technology (QAT) Windows software prior to version 2.6.0. The issue is a buffer overflow in Ring 3 user applications that may allow local escalation of privilege with an authenticated, low-complexity attacker and no user interaction. Impact is described a...

6.8CVSS6.3AI score0.00115EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/03 9:40 p.m.7 views

CVE-2025-11193

A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information...

6.8CVSS0.00107EPSS
Exploits0References1
CVE
CVE
added 2025/11/03 9:40 p.m.24 views

CVE-2025-11193

Technical details for CVE-2025-11193 are not publicly available in the provided documents. No explicit affected products/versions, root cause, impact, or remediation are disclosed. Monitor for updates.

6.8CVSS6.2AI score0.00107EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/03 9:40 p.m.3 views

CVE-2025-11193

A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information...

6.8CVSS6.2AI score0.00107EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/16 2:52 p.m.6 views

CVE-2025-9548

A potential null pointer dereference vulnerability was reported in the Lenovo Power Management Driver that could allow a local authenticated user to cause a Windows blue screen error...

6.8CVSS6.4AI score0.00108EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/16 2:51 p.m.7 views

CVE-2025-10581

A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal security assessment that could allow a local authenticated user to execute code with elevated privileges...

8.5CVSS7AI score0.00141EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 3:16 p.m.4 views

CVE-2025-8486

A potential vulnerability was reported in PC Manager that could allow a local authenticated user to execute code with elevated privileges...

8.5CVSS5.9AI score0.00141EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 3:16 p.m.5 views

CVE-2025-10581

A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal security assessment that could allow a local authenticated user to execute code with elevated privileges...

8.5CVSS5.9AI score0.00141EPSS
Exploits0References1
NVD
NVD
added 2025/10/15 3:16 p.m.7 views

CVE-2025-10581

A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal security assessment that could allow a local authenticated user to execute code with elevated privileges...

8.5CVSS0.00141EPSS
Exploits0References1
Rows per page
Query Builder