CVE-2024-40460

An issue in Ocuco Innovation v.2.10.24.51 allows a local attacker to escalate privileges via the JOBENTRY.EXE...

CVE-2024-40461

An issue in Ocuco Innovation v.2.10.24.51 allows a local attacker to escalate privileges via the STOCKORDERENTRY.EXE component...

CVE-2024-40460

CVE-2024-40460 : Affects Ocuco Innovation v2.10.24.51; vulnerability rooted in JOBENTRY.EXE enabling local privilege escalation. Impact stated as local attacker gains higher privileges; no explicit patch/versioned fix documented in the provided sources. Some references suggest restricting access ...

CVE-2007-5028

Dibbler 0.6.0 on Linux uses weak world-writable permissions for unspecified files in /var/lib/dibbler, which has unknown impact and local attack vectors...

CVE-2002-2323

Sun PC NetLink 1.0 through 1.2 does not properly set the access control list ACL for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions...

CVE-2025-3908

The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...

CVE-2025-4905

A vulnerability was found in iop-apl-uw basestation3 up to 3.0.4 and classified as problematic. This issue affects the function loadqcpickl of the file basestation3/QC.py. The manipulation of the argument qcfile leads to deserialization. An attack has to be approached locally. The exploit has bee...

CVE-2024-56428

The local iLabClient database in itech iLabClient 3.7.1 allows local attackers to read cleartext credentials from the CONFIGS table for their servers configured in the client...

Apple XNU kernel vm_map Race Condition Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of virtual...

CVE-2025-4891

A vulnerability was found in code-projects Police Station Management System 1.0. It has been classified as critical. Affected is the function criminal::display of the file source.cpp of the component Display Record. The manipulation of the argument N leads to buffer overflow. It is possible to...

CVE-2025-4888

A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. This affects the function medicineType::takeorder of the component Add Order Details. The manipulation leads to buffer overflow. An attack has to be approached locally. The exploit has be...

CVE-2025-4892

A vulnerability was found in code-projects Police Station Management System 1.0. It has been declared as critical. Affected by this vulnerability is the function criminal::remove of the file source.cpp of the component Delete Record. The manipulation of the argument No leads to stack-based buffer...

CVE-2025-3908

The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...

CVE-2025-4905 iop-apl-uw basestation3 QC.py load_qc_pickl deserialization

A vulnerability was found in iop-apl-uw basestation3 up to 3.0.4 and classified as problematic. This issue affects the function loadqcpickl of the file basestation3/QC.py. The manipulation of the argument qcfile leads to deserialization. An attack has to be approached locally. The exploit has bee...

CVE-2025-4905 iop-apl-uw basestation3 QC.py load_qc_pickl deserialization

A vulnerability was found in iop-apl-uw basestation3 up to 3.0.4 and classified as problematic. This issue affects the function loadqcpickl of the file basestation3/QC.py. The manipulation of the argument qcfile leads to deserialization. An attack has to be approached locally. The exploit has bee...

CVE-2025-4905

The CVE-2025-4905 issue affects iop-apl-uw basestation3 up to version 3.0.4, specifically the load_qc_pickl function in basestation3/QC.py. The vulnerability stems from deserialization triggered by manipulating the qc_file argument, requiring local access. Public exploit details exist, and the pr...

CVE-2025-4892

A vulnerability was found in code-projects Police Station Management System 1.0. It has been declared as critical. Affected by this vulnerability is the function criminal::remove of the file source.cpp of the component Delete Record. The manipulation of the argument No leads to stack-based buffer...

CVE-2025-4891

A vulnerability was found in code-projects Police Station Management System 1.0. It has been classified as critical. Affected is the function criminal::display of the file source.cpp of the component Display Record. The manipulation of the argument N leads to buffer overflow. It is possible to...

CVE-2025-4892

The CVE-2025-4892 entry affects code-projects Police Station Management System 1.0. The vulnerability lies in the function criminal::remove in source.cpp (Delete Record component): manipulating the No argument triggers a stack-based buffer overflow. Exploitation requires local access, and public ...

CVE-2025-4888

A vulnerability, which was classified as critical, was found in code-projects Pharmacy Management System 1.0. This affects the function medicineType::takeorder of the component Add Order Details. The manipulation leads to buffer overflow. An attack has to be approached locally. The exploit has be...