24 matches found
EUVD-2021-12172
Malware in sbrugna...
EUVD-2022-32677
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2008-5367
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ip-up in ppp-udeb 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on the /tmp/resolv.conf.tmp temporary file...
CVE-2022-28225
Local privilege vulnerability in Yandex Browser for Windows prior to 22.3.3.684 allows a local, low privileged, attacker to execute arbitary code with the SYSTEM privileges through manipulating symlinks to installation file during Yandex Browser update process...
CVE-2021-25263
Local privilege vulnerability in Yandex Browser for Windows prior to 21.9.0.390 allows a local, low privileged, attacker to execute arbitary code with the SYSTEM privileges through manipulating files in directory with insecure permissions during Yandex Browser update process...
SUSE CVE-2014-4240
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows local users to affect confidentiality and integrity via vectors related to SRREP...
CVE-2022-28225
The CVE-2022-28225 entry concerns Yandex Browser for Windows before version 22.3.3.684, where a local, low-privilege attacker can gain SYSTEM-level arbitrary code execution by manipulating symlinks to the installation file during the update process. Affected software is Yandex Browser for Windows...
CVE-2022-28225
Local privilege vulnerability in Yandex Browser for Windows prior to 22.3.3.684 allows a local, low privileged, attacker to execute arbitary code with the SYSTEM privileges through manipulating symlinks to installation file during Yandex Browser update process...
CVE-2022-21827
An improper privilege vulnerability has been discovered in Citrix Gateway Plug-in for Windows Citrix Secure Access for Windows 21.9.1.2 what could allow an attacker who has gained local access to a computer with Citrix Gateway Plug-in installed, to corrupt or delete files as SYSTEM...
Exploit for Out-of-bounds Write in Polkit_Project Polkit
This is a PoC exploit for CVE-2021-4034, a local privilege escal...
Local Privilege Vulnerability in VMware Antivirus Software
Ltd. was founded in 1996, is a professional anti-virus vendor with strong comprehensive strength in China, and is a high-tech software enterprise integrating the research and development, production, sales and after-sales service of anti-virus software. A local privilege extraction vulnerability...
GBase 8s database suffers from a local boost vulnerability (CNVD-2020-70784)
GBase 8s is a mature and stable enterprise-level domestic transactional database independently developed by Tianjin Nanda General Data Technology Co. GBase 8s database has a local privilege vulnerability, which can be exploited by an attacker to gain control of the server...
GBase 8s database suffers from a local boost vulnerability (CNVD-2020-70785)
GBase 8s is a mature and stable enterprise-level domestic transactional database independently developed by Tianjin Nanda General Data Technology Co. GBase 8s database has a local privilege vulnerability, which can be exploited by an attacker to gain control of the server...
GBase 8s database suffers from a local boost vulnerability (CNVD-2020-69447)
GBase 8s is a mature and stable enterprise-level domestic transactional database independently developed by Tianjin Nanda General Data Technology Co. GBase 8s database has a local privilege vulnerability, which can be exploited by an attacker to gain control of the server...
GBase 8s database suffers from a local boost vulnerability (CNVD-2020-69448)
GBase 8s is a mature and stable enterprise-level domestic transactional database independently developed by Tianjin Nanda General Data Technology Co. GBase 8s database has a local privilege vulnerability, which can be exploited by an attacker to gain control of the server...
CVE-2020-7207
A local elevation of privilege using physical access security vulnerability was found in HPE Proliant Gen10 Servers using Intel Innovation Engine IE. This attack requires a physical attack to the server motherboard. To mitigate this issue, ensure your server is always physically secured. HPE will...
CVE-2019-1380
A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Elevation of Privilege Vulnerability'...
Check Point ZoneAlarm Permission Permit Access Control Vulnerability
Check Point ZoneAlarm is a network firewall program from Check Point Israel. A privilege access control vulnerability exists in Check Point ZoneAlarm 15.3.064.17729 and prior versions. A local attacker can exploit this vulnerability to execute arbitrary code as the SYSTEM user...
4GEE WiFi Mini Local Privilege Vulnerability
4GEE WiFi Mini is a portable wireless router. A local elevation vulnerability exists in versions prior to 4GEE WiFi Mini EE400002.0045, which can be exploited by a local attacker to gain elevated system privileges...
Dashlane Local Privilege Vulnerability
Dashlane is a system security software for the mobile platform from Dashlane Inc. There is a security vulnerability in Dashlane. A local attacker can exploit this vulnerability by placing the WINHTTP.dll file in the %APPDATA%Dashlane directory...