CVE-2025-9067

A security issue exists within the x86 Microsoft Installer File MSI, installed with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting console window. This allows the launching of a command prompt running with SYSTEM-level privileges...

CVE-2024-50592

CVE-2024-50592 describes a local privilege escalation in HASOMED Elefant software, via a race condition in the Elefant Update Service during repair/update. An attacker with local access can exploit the window between copying vulnerable executables to a user-writable folder (C:\Elefant1) and the f...

PT-2023-16886 · Cloudflare · Cloudflared

Name of the Vulnerable Software and Affected Versions: cloudflared versions = 2023.3.0 Description: A vulnerability has been discovered in cloudflared's installer for Windows 32-bits devices that allows a local attacker with no administrative permissions to escalate their privileges on the affect...

PT-2022-8391 · Verint · Verint Desktop Resources

Name of the Vulnerable Software and Affected Versions: Verint Desktop Resources version 15.2 Description: The issue allows an unprivileged local user to elevate their privileges during the installation or repair process of the software. Recommendations: For Verint Desktop Resources version 15.2,...

CVE-2021-31847

Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user,...

CVE-2021-31847 Improper privilege management in repair process of MA for Windows

Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user,...

Mcafee McAfee Agent 安全漏洞

Mcafee McAfee Agent MA is a McAfee client component that provides secure communication between ePolicy Orchestrator antivirus management platform and managed products. A security vulnerability exists in the repair process in McAfee Agent for Windows versions prior to 5.7.4, which stems from not...

PT-2021-19548 · Mcafee · Mcafee Agent For Windows

Name of the Vulnerable Software and Affected Versions: McAfee Agent for Windows versions prior to 5.7.4 Description: The issue is related to improper access control in the repair process, allowing a local attacker to perform a DLL preloading attack using unsigned DLLs. This results in elevation o...

Product update: Virtuozzo Automator 7.0 Update 2 (VA MN: 7.0.2-266, VA Agent: 7.0.2-115)

The Update 2 for Virtuozzo Automator 7.0 provides new features and stability and usability bug fixes. Vulnerability id: PVA-36694 No 'Renew backup' button on virtual environment's backups tab. Vulnerability id: PVA-36693 Existing bridges were not used when attaching interfaces to virtual networks...

MySQL / MariaDB / PerconaDB - mention the rights/conditions of competition vulnerability(POC)-vulnerability warning-the black bar safety net

Vulnerability found person: Dawid Golunski Vulnerability level: severe CVE number: CVE-2 0 1 6-6 6 6 3 / CVE-2 0 1 6-5 6 1 6 Vulnerability impact: MariaDB 5.5.52 10.1.18 10.0.28 MySQL = 5.5.51 = 5.6.32 = 5.7.14 Percona Server 5.5.51-38.2 5.6.32-7 8-1 5.7.14-8 Percona XtraDB Cluster 5.6.32-25.17...