384 matches found
CVE-2025-13751
Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7alpha1 through 2.7rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service...
CVE-2025-13751
Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7alpha1 through 2.7rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service...
PT-2025-48947
Name of the Vulnerable Software and Affected Versions OpenVPN versions 2.5.0 through 2.7 rc2 Description A local authenticated user can connect to the interactive service agent and trigger an error, resulting in a local denial of service. Recommendations Update to a version later than 2.7 rc2...
CVE-2025-46373
A Heap-based Buffer Overflow vulnerability CWE-122 vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.3, FortiClientWindows 7.2.0 through 7.2.8 may allow an authenticated local IPSec user to execute arbitrary code or commands via "fortips74.sys". The attacker would need to bypass the...
CVE-2025-4618
A sensitive information disclosure vulnerability in Palo Alto Networks Prisma® Browser allows a locally authenticated non-admin user to retrieve sensitive data from Prisma Browser. Browser self-protection should be enabled to mitigate this issue...
PT-2025-46978
Name of the Vulnerable Software and Affected Versions Palo Alto Networks Prisma® Browser affected versions not specified Description An issue exists where improper validation of untrusted input in Palo Alto Networks Prisma® Browser could allow a locally authenticated, non-administrative user to...
CVE-2025-8485
An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application...
CVE-2025-8485
An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application...
CVE-2025-8485
An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application...
CVE-2025-8485
CVE-2025-8485 affects Lenovo App Store. Description: an improper permissions vulnerability could allow a locally authenticated user to execute code with elevated privileges during the installation of an application. Affected component: Lenovo App Store's installation process. Root cause: improper...
CVE-2025-24918
Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...
CVE-2025-24519
CVE-2025-24519 affects Intel® QuickAssist Technology (QAT) Windows software prior to version 2.6.0. The issue is a buffer overflow in Ring 3 user applications that may allow local escalation of privilege with an authenticated, low-complexity attacker and no user interaction. Impact is described a...
CVE-2025-11193
A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information...
CVE-2025-11193
Technical details for CVE-2025-11193 are not publicly available in the provided documents. No explicit affected products/versions, root cause, impact, or remediation are disclosed. Monitor for updates.
CVE-2025-11193
A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information...
CVE-2025-9548
A potential null pointer dereference vulnerability was reported in the Lenovo Power Management Driver that could allow a local authenticated user to cause a Windows blue screen error...
CVE-2025-10581
A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal security assessment that could allow a local authenticated user to execute code with elevated privileges...
CVE-2025-8486
A potential vulnerability was reported in PC Manager that could allow a local authenticated user to execute code with elevated privileges...
CVE-2025-10581
A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal security assessment that could allow a local authenticated user to execute code with elevated privileges...
CVE-2025-10581
A potential DLL hijacking vulnerability was discovered in the Lenovo PC Manager during an internal security assessment that could allow a local authenticated user to execute code with elevated privileges...