Lucene search
K

4838 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-1451

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in MP4v2 2.1.2. It has been classified as problematic. Affected is the function mp4v2::impl::MP4Track::GetSampleFileOffset of the file...

5.5CVSS3.9AI score0.00368EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-27734

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue found in Eteran edb-debugger v.1.3.0 allows a local attacker to causea denial of service via the collectsymbols function in...

5.5CVSS6AI score0.00193EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-6745

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the Synaptics touchscreen driver in Android before 2016-11-05 could enable a local malicious application to execute...

9.3CVSS8.1AI score0.00724EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

EulerOS 2.0 SP12 : binutils (EulerOS-SA-2025-2031)

According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the fil...

7.8CVSS4.2AI score0.00243EPSS
Exploits3References4
NVD
NVD
added 2025/09/09 5:16 p.m.14 views

CVE-2025-55245

Improper link resolution before file access 'link following' in Xbox allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00386EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 5:16 p.m.2 views

CVE-2025-55317

Improper link resolution before file access 'link following' in Microsoft AutoUpdate MAU allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00386EPSS
Exploits0References1
NVD
NVD
added 2025/09/09 5:16 p.m.3 views

CVE-2025-54895

Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00263EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 5:15 p.m.0 views

CVE-2025-54103

Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally...

7.4CVSS5.7AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 5:15 p.m.4 views

CVE-2025-53810

Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...

6.7CVSS5.7AI score0.00435EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 5:15 p.m.7 views

CVE-2025-53800

No cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00457EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/09/09 7:0 a.m.4 views

Microsoft Brokering File System Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...

7CVSS7AI score0.00263EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/09 7:0 a.m.11 views

Windows TCP/IP Driver Elevation of Privilege Vulnerability

Time-of-check time-of-use toctou race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

7CVSS6.9AI score0.00349EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/09 7:0 a.m.3 views

Xbox Gaming Services Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Xbox allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00386EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/09 7:0 a.m.3 views

Windows Connected Devices Platform Service Elevation of Privilege Vulnerability

Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00416EPSS
Exploits0
CNNVD
CNNVD
added 2025/09/09 12:0 a.m.2 views

ZhenShi Mibro Fit App 安全漏洞

ZhenShi Mibro Fit App is a smartwatch companion app from China-based ZhenShi. A security vulnerability exists in ZhenShi Mibro Fit App version 1.6.3.17499, which originates from an improperly exported AndroidManifest.xml component and could lead to a local attack...

5.3CVSS5.3AI score0.00122EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/09 12:0 a.m.1 views

PT-2025-36850

Name of the Vulnerable Software and Affected Versions: Capability Access Management Service camsvc affected versions not specified Description: A race condition exists within the Capability Access Management Service camsvc due to improper synchronization during concurrent execution using a shared...

7CVSS6.2AI score0.00263EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/09 12:0 a.m.3 views

PT-2025-36877

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A use-after-free issue in Windows BitLocker can allow a local attacker to elevate privileges. This elevation-of-privilege allows attackers to affect the system. Recommendations: At the...

7.8CVSS6AI score0.00471EPSS
Exploits0References12
Amazon
Amazon
added 2025/09/08 12:0 a.m.4 views

Medium: libtiff

Issue Overview: A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as critical. This vulnerability affects the function gethistogram of the file tools/tiffmedian.c. The manipulation leads to use after free. The attack needs to be approached locally. The exploit has been...

7.8CVSS6.5AI score0.00238EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/09/06 7:31 p.m.12 views

CVE-2025-48550

In testGrantSlicePermission of SliceManagerTest.java, there is a possible permanent denial of service due to a path traversal error. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.2AI score0.00094EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/06 7:31 p.m.5 views

CVE-2025-48542

In multiple functions of AccountManagerService.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.2AI score0.00076EPSS
Exploits0References1
Rows per page
Query Builder