4290 matches found
CVE-2025-24842
Intel System Support Utility for Windows before 4.1.0 is affected by an uncontrolled search path vulnerability in Ring 3 (user applications). A local, unprivileged attacker could potentially escalate to privilege or execute code with local access, given high complexity and passive user interactio...
CVE-2025-24327
Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...
CVE-2025-24327
Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...
CVE-2025-20050
Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-20050
Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-20050
Intel CIP software prior to WIN_DCA_2.4.0.11001 is affected by an Uncontrolled search path issue in Ring 3 User Applications that can lead to privilege escalation and local code execution. The vulnerability arises from improper/unsafe path handling, enabling an unprivileged, authenticated user wi...
EUVD-2025-84342
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2024-57695
An issue in Agnitum Outpost Security Suite 7.5.3 3942.608.1810 and 7.6 3984.693.1842 allows a local attacker to execute arbitrary code via the lock function. The manufacturer fixed the vulnerability in version 8.0 4164.652.1856 from December 17, 2012...
CVE-2024-57695
An issue in Agnitum Outpost Security Suite 7.5.3 3942.608.1810 and 7.6 3984.693.1842 allows a local attacker to execute arbitrary code via the lock function. The manufacturer fixed the vulnerability in version 8.0 4164.652.1856 from December 17, 2012...
CVE-2025-11697
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2025-11697 Studio 5000 ® Simulation Interface Local Code Execution
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2025-11697 Studio 5000 ® Simulation Interface Local Code Execution
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2025-11697
The CVE-2025-11697 entry describes a local code-execution vulnerability in Rockwell Automation’s Studio 5000 Simulation Interface exposed via the API. The issue allows a Windows user on the system to perform path-traversal file access, leading to execution of scripts with Administrator privileges...
Visual Studio Remote Code Execution Vulnerability
Improper neutralization of special elements used in a command 'command injection' in Visual Studio allows an authorized attacker to execute code locally...
Windows OLE Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally...
Azure Monitor Agent Remote Code Execution Vulnerability
Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally...
Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Microsoft Excel Remote Code Execution Vulnerability
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Intel® System Support Utility Advisory
Summary: A potential security vulnerability for the Intel® System Support Utility may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-24842 Description: Uncontrolled search path for the Intel® Syst...
Intel® DSA Software Advisory
Summary: A potential security vulnerability for some Intel® Driver & Support Assistant Intel® DSA software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-30506 Description: Uncontrolled search...