Lucene search
K

868 matches found

Vulnrichment
Vulnrichment
added 2026/03/02 8:39 a.m.3 views

CVE-2026-20426

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5538...

5.9AI score0.00077EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/02 8:38 a.m.6 views

EUVD-2026-9153

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5539...

6.7CVSS5.9AI score0.00077EPSS
Exploits0References1
CVE
CVE
added 2026/03/02 8:38 a.m.16 views

CVE-2026-20425

CVE-2026-20425 describes a local escalation-of-privilege due to a missing bounds check that allows an out-of-bounds write in display logic. Exploitation requires no user interaction and would grant System-level privileges to a sufficiently privileged attacker. The reports consistently cite the sa...

6.7CVSS5.9AI score0.00077EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.5 views

PT-2026-22566

In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10432500; Issue ID: MSV-5803...

5.9AI score0.00077EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.3 views

PT-2026-22555

In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5537...

5.9AI score0.00077EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.4 views

PT-2026-22570

In MDDP, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10289875; Issue ID: MSV-5184...

5.9AI score0.00122EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.5 views

PT-2026-22552

In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5540...

5.9AI score0.00073EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.10 views

PT-2026-22567

In display, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5723...

5.9AI score0.00071EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.5 views

PT-2026-22568

In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5722...

5.9AI score0.00077EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.3 views

PT-2026-22556

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5536...

5.9AI score0.00077EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.6 views

PT-2026-22553

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5539...

5.9AI score0.00077EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.7 views

PT-2026-22569

In display, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436995; Issue ID: MSV-5721...

5.9AI score0.00077EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/26 6:30 a.m.6 views

EUVD-2026-8834

The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may execute arbitrary code with SYSTEM privilege...

8.5CVSS5.8AI score0.0012EPSS
Exploits0References3
NVD
NVD
added 2026/02/26 6:17 a.m.13 views

CVE-2026-23703

The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may execute arbitrary code with SYSTEM privilege...

8.5CVSS0.0012EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/26 5:39 a.m.25 views

CVE-2026-23703

The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may execute arbitrary code with SYSTEM privilege...

8.5CVSS0.0012EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/26 5:39 a.m.4 views

CVE-2026-23703

The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may execute arbitrary code with SYSTEM privilege...

8.5CVSS8AI score0.0012EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/02/26 5:24 a.m.7 views

Multiple vulnerabilities in the installer of FinalCode Client

Overview The installer of FinalCode Client provided by Digital Arts Inc. contains multiple vulnerabilities listed below. Incorrect default permissions CWE-276 - CVE-2026-23703 Uncontrolled search path element CWE-427 - CVE-2026-25191 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported...

8.5CVSS6.3AI score0.00144EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/02/12 7:2 p.m.4 views

CVE-2019-25343

NextVPN 4.10 contains an insecure file permissions vulnerability that allows local users to modify executable files with full access rights. Attackers can replace system executables with malicious files to gain SYSTEM or Administrator privileges through unauthorized file modification...

8.5CVSS5.5AI score0.00108EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/04 6:14 a.m.4 views

CVE-2026-20982

Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege...

6.8CVSS5.4AI score0.00295EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/02/03 9:18 a.m.5 views

CVE-2026-20412

In cameraisp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10351676; Issue ID: MSV-5733...

7.8CVSS5.4AI score0.00096EPSS
Exploits0References1
Rows per page
Query Builder