Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally...

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally...

Visual Studio Tools for Applications and SQL Server Management Studio Elevation of Privilege Vulnerability

Uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally...

RPC Endpoint Mapper Service Elevation of Privilege Vulnerability

Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges locally...

Microsoft System Center Elevation of Privilege Vulnerability

Untrusted search path in System Center allows an authorized attacker to elevate privileges locally...

Windows Kernel Elevation of Privilege Vulnerability

Sensitive data storage in improperly locked memory in Windows Kernel allows an authorized attacker to elevate privileges locally...

Windows USB Print Driver Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally...

Microsoft Office Elevation of Privilege Vulnerability

Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...

CVE-2025-29824

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

PT-2025-15535 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a use after free condition in Windows Digital Media, allowing an authorized attacker to elevate privileges locally. This elevation-of-privilege...

PT-2025-15562 · Microsoft · Windows Kernel +1

Name of the Vulnerable Software and Affected Versions: Windows Kernel affected versions not specified Description: The issue is related to an untrusted pointer dereference in the Windows Kernel, allowing an authorized attacker to elevate privileges locally. Recommendations: At the moment, there i...

PT-2025-15344

Name of the Vulnerable Software and Affected Versions: secfr trustlet versions prior to SMR Apr-2025 Release 1 Description: The issue allows local privileged attackers to cause memory corruption due to an out-of-bounds write in the secfr trustlet. Recommendations: For versions prior to SMR Apr-20...

PT-2025-15350 · Samsung · Samsung Notes

Name of the Vulnerable Software and Affected Versions: SamsungNotes versions prior to 4.4.26.45 Description: The issue allows local attackers to access sensitive information due to the use of implicit intent for sensitive communication. Recommendations: For versions prior to 4.4.26.45, update to...

CVE-2025-29482

Buffer Overflow vulnerability in libheif 1.19.7 allows a local attacker to execute arbitrary code via the SAO Sample Adaptive Offset processing of libde265...

CVE-2025-22842

in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds read...

CVE-2025-20657

In vdec, there is a possible permission bypass due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09486425; Issue ID: MSV-2609...

PT-2025-15284 · Libheif +3 · Libheif +3

Name of the Vulnerable Software and Affected Versions: libheif version 1.19.7 Description: The issue allows a local attacker to execute arbitrary code via the SAO Sample Adaptive Offset processing of libde265. This is a Buffer Overflow vulnerability. Recommendations: For libheif version 1.19.7,...

CVE-2025-29479

Removed by vendor...

CVE-2025-3165

A vulnerability classified as critical has been found in thu-pacman chitu 0.1.0. This affects the function torch.load of the file chitu/chitu/backend.py. The manipulation of the argument ckptpath/quantckptdir leads to deserialization. An attack has to be approached locally...