Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:56 a.m.4 views

CVE-2020-12613

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. An attacker can spawn a process with multiple users as part of the security token prior to Avecto elevation. When Avecto elevates the process, it removes the user who is launching the process, but not the second...

8.8CVSS7AI score0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/07/28 3:40 p.m.1 views

CVE-2025-6250 Privilege Management for Windows - Elevation of Privilege

Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...

7.1CVSS6.5AI score0.00085EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/04/28 12:0 a.m.2 views

BeyondTrust Privilege Management For Windows Installed (Windows)

Binary data beyondtrustprivilegemanagementwininstalled.nbin...

7.3AI score
Exploits0References1
Cvelist
Cvelistadded 2025/02/26 1:41 a.m.9 views

CVE-2025-0889 Privilege Management for Windows – Elevation of Privilege

Prior to 25.2, a local authenticated attacker can elevate privileges on a system with Privilege Management for Windows installed, via the manipulation of COM objects under certain circumstances where an EPM policy allows for automatic privilege elevation of a user process...

7.2CVSS0.00034EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/07 11:27 p.m.7 views

CVE-2024-8424 WatchGuard Endpoint Protection Privilege Escalation in PSANHost Enables Arbitrary File Delete as SYSTEM

Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on Windows PSANHost.exe module allows arbitrary file delete with SYSTEM permissions. This issue affects EPDR: before 8.00.23.0000; Panda AD360: before 8.00.23.0000; Panda Dome: before 22.03.00...

7.8CVSS7.1AI score0.00041EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/02/16 12:0 a.m.2 views

PT-2024-18155 · Beyondtrust · Privilege Management For Windows

Name of the Vulnerable Software and Affected Versions: Privilege Management for Windows versions prior to 24.1 Description: A local authenticated attacker can view Sysvol when Privilege Management for Windows is configured to use a GPO policy, allowing them to view the policy and potentially find...

3.3CVSS3.8AI score0.00061EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2023/12/25 8:15 a.m.3 views

CVE-2023-49944

The Challenge Response feature of BeyondTrust Privilege Management for Windows PMfW before 2023-07-14 allows local administrators to bypass this feature by decrypting the shared key, or by locating the decrypted shared key in process memory. The threat is mitigated by the Agent Protection feature...

6.7CVSS6.7AI score0.00011EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/12/25 12:0 a.m.3 views

PT-2023-31416 · Beyondtrust · Beyondtrust Privilege Management For Windows

Name of the Vulnerable Software and Affected Versions: BeyondTrust Privilege Management for Windows versions prior to 2023-07-14 Description: The Challenge Response feature allows local administrators to bypass it by decrypting the shared key or locating the decrypted shared key in process memory...

6.7CVSS6.4AI score0.00011EPSS
Exploits0References7
Rows per page
Query Builder