4293 matches found
CVE-2025-30506
Uncontrolled search path for some Intel Driver and Support Assistant before version 25.2 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-27246
Incorrect default permissions for the IntelR Processor Identification Utility before version 8.0.43 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable local code execution...
CVE-2025-24842
Intel System Support Utility for Windows before 4.1.0 is affected by an uncontrolled search path vulnerability in Ring 3 (user applications). A local, unprivileged attacker could potentially escalate to privilege or execute code with local access, given high complexity and passive user interactio...
CVE-2025-24842
Uncontrolled search path for the IntelR System Support Utility before version 4.1.0 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable local code execution. This result may...
CVE-2025-24327
Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...
CVE-2025-24327
Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...
CVE-2025-20050
Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-20050
Intel CIP software prior to WIN_DCA_2.4.0.11001 is affected by an Uncontrolled search path issue in Ring 3 User Applications that can lead to privilege escalation and local code execution. The vulnerability arises from improper/unsafe path handling, enabling an unprivileged, authenticated user wi...
CVE-2025-20050
Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
EUVD-2025-84342
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2024-57695
An issue in Agnitum Outpost Security Suite 7.5.3 3942.608.1810 and 7.6 3984.693.1842 allows a local attacker to execute arbitrary code via the lock function. The manufacturer fixed the vulnerability in version 8.0 4164.652.1856 from December 17, 2012...
CVE-2024-57695
An issue in Agnitum Outpost Security Suite 7.5.3 3942.608.1810 and 7.6 3984.693.1842 allows a local attacker to execute arbitrary code via the lock function. The manufacturer fixed the vulnerability in version 8.0 4164.652.1856 from December 17, 2012...
CVE-2025-11697
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2025-11697
The CVE-2025-11697 entry describes a local code-execution vulnerability in Rockwell Automation’s Studio 5000 Simulation Interface exposed via the API. The issue allows a Windows user on the system to perform path-traversal file access, leading to execution of scripts with Administrator privileges...
CVE-2025-11697 Studio 5000 ® Simulation Interface Local Code Execution
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2025-11697 Studio 5000 ® Simulation Interface Local Code Execution
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
Visual Studio Remote Code Execution Vulnerability
Improper neutralization of special elements used in a command 'command injection' in Visual Studio allows an authorized attacker to execute code locally...
Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Windows OLE Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally...
Microsoft Excel Remote Code Execution Vulnerability
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally...