CVE-2023-54353 Chromacam 4.0.3.0 Unquoted Service Path Privilege Escalation

Chromacam 4.0.3.0 contains an unquoted service path vulnerability in the PsyFrameGrabberService that allows local attackers to execute arbitrary code by placing malicious executables in unquoted path directories. Attackers with write access to C:\ or subdirectories like C:\Program Files...

CVE-2023-26918

Diasoft File Replication Pro 7.5.0 allows attackers to escalate privileges by replacing a legitimate file with a Trojan horse that will be executed as LocalSystem. This occurs because %ProgramFiles%\FileReplicationPro allows Everyone:F access...

PT-2021-20384 · Unknown · Winwaste.Net

Name of the Vulnerable Software and Affected Versions: WinWaste.NET version 1.0.6183.16475 Description: The issue allows a local unprivileged user to replace the executable with a malicious file that will be executed with "LocalSystem" privileges due to incorrect permissions. Recommendations: For...

Microsoft Windows and Windows Server Elevation of Privilege Vulnerability (CNVD-2020-19010)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows and Windows Server,...