Lucene search
K

874 matches found

EUVD
EUVD
added 2026/05/04 5:41 a.m.10 views

EUVD-2026-26885

In geniezone, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10724073; Issue ID: MSV-6296...

6.7CVSS5.8AI score0.00114EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/04 5:41 a.m.5 views

CVE-2026-20447

In geniezone, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10724073; Issue ID: MSV-6296...

5.8AI score0.00114EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/30 12:0 a.m.7 views

PT-2026-36165

Name of the Vulnerable Software and Affected Versions Amazon ECS Agent on Windows versions prior to 1.103.0 Description Improper neutralization of inputs used in an OS command within the FSx Windows File Server volume mounting component allows a remote authenticated threat actor to execute shell...

7.5CVSS5.9AI score0.00547EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/04/13 5:4 a.m.1 views

CVE-2026-21012

External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege...

6.8CVSS5.8AI score0.00093EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/04 1:51 p.m.2 views

CVE-2016-20058 Netgate AMITI Antivirus build 23.0.305 Unquoted Service Path Privilege Escalation

Netgate AMITI Antivirus build 23.0.305 contains an unquoted service path vulnerability in the AmitiAvSrv and AmitiAntivirusHealth services that allows local attackers to escalate privileges. Attackers can place a malicious executable in the unquoted service path and trigger service restart or...

8.5CVSS6.1AI score0.00718EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/26 6:55 a.m.34 views

CVE-2026-32680

The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder. If the installation folder is customized to some non-default one, the folder may be left with un-secure ACLs and non-administrative users can alter contents of that folder. It may allow a...

8.5CVSS0.00145EPSS
Exploits0References2
CVE
CVE
added 2026/03/26 6:55 a.m.22 views

CVE-2026-32680

The issue concerns RATOC RAID Monitoring Manager for Windows. If users customize the installer’s target folder, that folder may retain insecure ACLs, allowing non-administrative users to alter its contents. This can enable a non-administrative user to execute arbitrary code with SYSTEM privileges...

8.5CVSS7.4AI score0.00145EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/03/25 8:58 a.m.9 views

SANYO DENKI SANUPS SOFTWARE registers Windows services with unquoted file paths

Overview SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. contains the following vulnerability. Unquoted search path or element CWE-428 - CVE-2026-33253 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

8.4CVSS7AI score0.00191EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/03/25 6:18 a.m.216 views

Exploit for Heap-based Buffer Overflow in Microsoft

CVE-2024-30051 — Windows DWM Heap Overflow EoP · Master's Thes...

7.8CVSS8AI score0.05687EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.5 views

PT-2026-24911

An Insufficient Integrity Verification vulnerability in the ASUS ROG peripheral driver installation process allows privilege escalation to SYSTEM. The vulnerability is due to improper access control on the installation directory, which enables the exploitation of a race condition where the...

5.4CVSS6AI score0.0013EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.7 views

CVE-2026-20416

In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315038 / ALPS10340155; Issue ID: MSV-51...

7.2CVSS5.9AI score0.00184EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.5 views

CVE-2026-20445

In MDDP, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10289875; Issue ID: MSV-5184...

4.4CVSS5.9AI score0.00122EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.6 views

CVE-2026-20427

In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5537...

6.7CVSS5.9AI score0.00077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.8 views

CVE-2026-20443

In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5722...

6.7CVSS5.9AI score0.00077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.5 views

CVE-2026-20425

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5539...

6.7CVSS5.9AI score0.00077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.5 views

CVE-2026-20441

In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10432500; Issue ID: MSV-5803...

6.7CVSS5.9AI score0.00077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.6 views

CVE-2026-20429

In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5535...

4.4CVSS5.9AI score0.00073EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.7 views

CVE-2026-20426

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5538...

6.7CVSS5.9AI score0.00077EPSS
Exploits0References1
OSV
OSV
added 2026/03/02 9:16 a.m.5 views

CVE-2026-20444

In display, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436995; Issue ID: MSV-5721...

6.7CVSS5.8AI score0.00077EPSS
Exploits0References1
NVD
NVD
added 2026/03/02 9:16 a.m.5 views

CVE-2026-20441

In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10432500; Issue ID: MSV-5803...

6.7CVSS0.00077EPSS
Exploits0References1
Rows per page
Query Builder