17 matches found
EUVD-2019-4621
Malware in sbrugna...
CVE-2022-24138
IOBit Advanced System Care Asc.exe 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with ...
CVE-2019-13069
extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service...
Code injection
Due to a hardlink created in the ProgramData folder during the repair process of the software, the installer MSI of WARP Client for Windows = 2022.12.582.0 allowed a malicious attacker to forge the destination of the hardlink and escalate privileges, overwriting SYSTEM protected files. As...
CVE-2023-0652 Local Privilege Escalation in Cloudflare WARP Installer (Windows)
Due to a hardlink created in the ProgramData folder during the repair process of the software, the installer MSI of WARP Client for Windows = 2022.12.582.0 allowed a malicious attacker to forge the destination of the hardlink and escalate privileges, overwriting SYSTEM protected files. As...
CVE-2023-0652
CVE-2023-0652 is a Local Privilege Escalation in Cloudflare WARP Installer (Windows). The issue stems from a hardlink created in the ProgramData folder during the repair process, where the MSI-based installer could forge the hardlink’s destination, enabling privilege escalation and overwriting SY...
PT-2023-16429 · Cloudflare · Warp Client For Windows
Name of the Vulnerable Software and Affected Versions: WARP Client for Windows versions = 2022.12.582.0 WARP Client for Windows versions up to 2022.5.309.0 Description: The issue allows a malicious attacker to escalate privileges and overwrite SYSTEM protected files by forging the destination of ...
GOG Galaxy 安全漏洞
GOG Galaxy is a game client program from the Polish company GOG. The program is used to install, launch and update games. A security vulnerability exists in GOG Galaxy version 2.0.46, which stems from the presence of an exploitable local lifting vulnerability that, due to insufficient folder...
CVE-2022-24138
IOBit Advanced System Care Asc.exe 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with ...
CVE-2022-24138
IOBit Advanced System Care Asc.exe 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with ...
CVE-2022-2145
Cloudflare WARP client for Windows up to v. 2022.5.309.0 allowed creation of mount points from its ProgramData folder. During installation of the WARP client, it was possible to escalate privileges and overwrite SYSTEM protected files...
Asus Rog Armory Crate 代码问题漏洞
Asus Rog Armory Crate is a one-stop application from Asus China Inc. for connecting, configuring and controlling a vast array of Rog gaming products. A security vulnerability exists in Asus Rog Armory Crate Lite versions prior to 4.2.10, which stems from the software previously allowing local use...
CVE-2019-13069
extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service...
Privilege escalation
extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service...
CVE-2019-13069
extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service...
CVE-2019-13069
CVE-2019-13069 affects Extenua SilverSHielD 6.x. Local Privilege Escalation occurs by exploiting unsecured ProgramData folder; attacker must replace SilverShield.config.sqlite with a version including an extra user account, then use SSH and port forwarding to reach a 127.0.0.1 service, enabling S...
PT-2019-6133 · Docker · Docker Desktop Community Edition +1
Name of the Vulnerable Software and Affected Versions: Docker Desktop Community Edition versions prior to 2.1.0.1 Description: The issue is related to incorrect permission assignment for the docker-credential-wincred.exe file in the %PROGRAMDATA%DockerDesktopversion-bin folder. This could allow a...