4835 matches found
CVE-2025-47976
Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally...
CVE-2025-47975
Double free in Windows SSDP Service allows an authorized attacker to elevate privileges locally...
CVE-2025-47987
Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges locally...
CVE-2025-49667
Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...
CVE-2025-49742
Integer overflow or wraparound in Microsoft Graphics Component allows an authorized attacker to execute code locally...
CVE-2025-49727
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
CVE-2025-49685
Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally...
CVE-2025-49679
Numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally...
CVE-2025-48799
Improper link resolution before file access 'link following' in Windows Update Service allows an authorized attacker to elevate privileges locally...
CVE-2025-49659
Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally...
CVE-2025-49675
Use after free in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally...
CVE-2025-48816
Integer overflow or wraparound in HID class driver allows an authorized attacker to elevate privileges locally...
CVE-2025-21004
Improper verification of intent by broadcast receiver in System UI for Galaxy Watch prior to SMR Jul-2025 Release 1 allows local attackers to power off the device...
CVE-2025-21000
Improper privilege management in Bluetooth prior to SMR Jul-2025 Release 1 allows local attackers to enable Bluetooth...
CVE-2025-20997
Incorrect default permission in Framework for Galaxy Watch prior to SMR Jul-2025 Release 1 allows local attackers to reset some configuration of Galaxy Watch...
CVE-2025-20982
Out-of-bounds write in setting auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to write out-of-bounds memory...
EulerOS 2.0 SP10 : augeas (EulerOS-SA-2025-1768)
According to the versions of the augeas package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in Hercules Augeas 1.14.1 and classified as problematic. This vulnerability affects the function recaseexpand of the...
EulerOS 2.0 SP10 : elfutils (EulerOS-SA-2025-1770)
According to the versions of the elfutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function...
EulerOS 2.0 SP10 : elfutils (EulerOS-SA-2025-1793)
According to the versions of the elfutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function...
SUSE CVE-2025-7207
A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...