4838 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-1451
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in MP4v2 2.1.2. It has been classified as problematic. Affected is the function mp4v2::impl::MP4Track::GetSampleFileOffset of the file...
Linux Distros Unpatched Vulnerability : CVE-2023-27734
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue found in Eteran edb-debugger v.1.3.0 allows a local attacker to causea denial of service via the collectsymbols function in...
Linux Distros Unpatched Vulnerability : CVE-2016-6745
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the Synaptics touchscreen driver in Android before 2016-11-05 could enable a local malicious application to execute...
EulerOS 2.0 SP12 : binutils (EulerOS-SA-2025-2031)
According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the fil...
CVE-2025-55245
Improper link resolution before file access 'link following' in Xbox allows an authorized attacker to elevate privileges locally...
CVE-2025-55317
Improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...
CVE-2025-54895
Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally...
CVE-2025-54103
Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally...
CVE-2025-53810
Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...
CVE-2025-53800
No cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...
Microsoft Brokering File System Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...
Windows TCP/IP Driver Elevation of Privilege Vulnerability
Time-of-check time-of-use toctou race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally...
Xbox Gaming Services Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Xbox allows an authorized attacker to elevate privileges locally...
Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally...
ZhenShi Mibro Fit App 安全漏洞
ZhenShi Mibro Fit App is a smartwatch companion app from China-based ZhenShi. A security vulnerability exists in ZhenShi Mibro Fit App version 1.6.3.17499, which originates from an improperly exported AndroidManifest.xml component and could lead to a local attack...
PT-2025-36850
Name of the Vulnerable Software and Affected Versions: Capability Access Management Service camsvc affected versions not specified Description: A race condition exists within the Capability Access Management Service camsvc due to improper synchronization during concurrent execution using a shared...
PT-2025-36877
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A use-after-free issue in Windows BitLocker can allow a local attacker to elevate privileges. This elevation-of-privilege allows attackers to affect the system. Recommendations: At the...
Medium: libtiff
Issue Overview: A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as critical. This vulnerability affects the function gethistogram of the file tools/tiffmedian.c. The manipulation leads to use after free. The attack needs to be approached locally. The exploit has been...
CVE-2025-48550
In testGrantSlicePermission of SliceManagerTest.java, there is a possible permanent denial of service due to a path traversal error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-48542
In multiple functions of AccountManagerService.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...