CVE-2025-11739

CWE‑502: Deserialization of Untrusted Data vulnerability exists that could cause arbitrary code execution with administrative privileges when a locally authenticated attacker sends a crafted data stream, triggering unsafe deserialization...

CVE-2025-11739

CWE‑502: Deserialization of Untrusted Data vulnerability exists that could cause arbitrary code execution with administrative privileges when a locally authenticated attacker sends a crafted data stream, triggering unsafe deserialization...

CVE-2025-11739

CWE‑502: Deserialization of Untrusted Data vulnerability exists that could cause arbitrary code execution with administrative privileges when a locally authenticated attacker sends a crafted data stream, triggering unsafe deserialization...

CVE-2022-35717

"IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-"Force ID: 231361...

EUVD-2020-21869

Malware in sbrugna...

EUVD-2020-8850

Malware in sbrugna...

EUVD-2020-21868

Malware in sbrugna...

EUVD-2020-21871

Malware in sbrugna...

EUVD-2019-9748

Malware in sbrugna...

EUVD-2021-2838

Malicious code in bioql PyPI...

EUVD-2022-38592

Malicious code in bioql PyPI...

EUVD-2023-42342

Malicious code in bioql PyPI...

CVE-2023-38043

A vulnerability exists on all versions of the Ivanti Secure Access Client below 22.6R1.1, which could allow a locally authenticated attacker to exploit a vulnerable configuration, potentially leading to a denial of service DoS condition on the user machine and, in some cases, resulting in a full...

Ivanti EPM 安全漏洞

Ivanti EPM is a comprehensive endpoint management solution developed by Ivanti. Ivanti EPM suffers from an elevation of privilege vulnerability that stems from an issue containing an uninitialized resource that can be exploited by an attacker to elevate its privileges...

Juniper Junos OS Vulnerability (JSA88131)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA88131 advisory. - A NULL Pointer Dereference vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on MX304, MX with MPC10/11/LC9600, and EX9200 with EX9200-15C...

Ivanti Velocity License Server 安全漏洞

Ivanti Velocity License Server is an application from Ivanti USA that provides licenses to mobile devices using Velocity or terminal emulation clients. A security vulnerability exists in Ivanti Velocity License Server versions prior to 5.2, which stems from the presence of insecure privileges tha...

PT-2024-21240 · Dell · Dell Grab For Windows

Name of the Vulnerable Software and Affected Versions: Dell Grab for Windows versions 5.0.4 and below Description: The issue is related to improper file permissions, which could be exploited by a locally authenticated attacker to disclose certain system information. A locally authenticated attack...

Remote code execution

Sysmac Studio installs executables in a directory with poor permissions. This can allow a locally-authenticated attacker to overwrite files which will result in code execution with privileges of a different user...

Ivanti Secure Access Client < 22.6R1.1 Multiple Vulnerabilities

The Ivanti Secure Access Client installed on the remote Windows system is prior to 22.6R1.1. It is, therefore, affected by multiple vulnerabilities. - A vulnerability exists on all versions of the Ivanti Secure Access Client below 22.6R1.1, which could allow a locally authenticated attacker to...

CVE-2023-35080

A vulnerability has been identified in the Ivanti Secure Access Windows client, which could allow a locally authenticated attacker to exploit a vulnerable configuration, potentially leading to various security risks, including the escalation of privileges, denial of service, or information...