Lucene search
+L

126 matches found

OSV
OSV
added 2025/07/08 10:15 p.m.5 views

CVE-2025-6759

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS...

7.8CVSS5.8AI score0.00242EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/08 9:41 p.m.4 views

CVE-2025-6759

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows Virtual Delivery Agent for CVAD and Citrix DaaS...

7.8CVSS5.8AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/08 12:0 a.m.10 views

TeamViewer Remote Full Client (Windows) < 11.0.259324 / 12.x < 12.0.259325 / 13.x < 13.2.36227 / 14.x < 14.7.48809 / 15.x < 15.64.5 / 15.65.x < 15.67 Privilege Escalation (TV-2025-1002)

The version of TeamViewer Remote Full Client installed on the remote Windows host is prior to 11.0.259324, 12.x prior to 12.0.259325, 13.x prior to 13.2.36227, 14.x prior to 14.7.48809, 15.x prior to 15.64.5, or 15.65.x prior to 15.67. It is, therefore, affected by a privilege escalation...

7CVSS8AI score0.00161EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/13 12:0 a.m.4 views

Tenable Agent 安全漏洞

Tenable Agent is a vulnerability scanning program from Tenable USA. Tenable Agent has an elevation of privilege vulnerability, which originates from a non-administrative user deleting arbitrary local system files with SYSTEM privileges, and can be exploited by an attacker to tamper with the syste...

8.8CVSS7AI score0.00173EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:6 a.m.10 views

CVE-2023-20768

In ion, there is a possible out of bounds read due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560720; Issue ID: ALPS07559800...

6.7CVSS6.5AI score0.00114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:5 a.m.9 views

CVE-2023-20724

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07843845; Issue ID: ALPS07843841...

6.7CVSS6.5AI score0.0009EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:5 a.m.5 views

CVE-2023-20673

In vcu, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519103; Issue ID: ALPS07519103...

6.7CVSS6.8AI score0.00095EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:4 a.m.7 views

CVE-2023-20621

In tinysys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664755; Issue ID: ALPS07664755...

6.7CVSS6.6AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:4 a.m.4 views

CVE-2023-20608

In display drm, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07363599; Issue ID: ALPS07363599...

6.4CVSS6.6AI score0.00092EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:57 p.m.4 views

CVE-2022-43722

A vulnerability has been identified in SICAM PAS/PQS All versions V7.0. Affected software does not properly secure a folder containing library files. This could allow an attacker to place a custom malicious DLL in this folder which is then run with SYSTEM rights when a service is started that...

7.8CVSS6.7AI score0.00217EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 p.m.5 views

CVE-2021-37364

OpenClinic GA 5.194.18 is affected by Insecure Permissions. By default the Authenticated Users group has the modify permission to openclinic folders/files. A low privilege account is able to rename mysqld.exe or tomcat8.exe files located in bin folders and replace with a malicious file that would...

9.3CVSS7.3AI score0.01276EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:6 p.m.11 views

CVE-2020-10515

STARFACE UCC Client before 6.7.1.204 on WIndows allows binary planting to execute code with System rights, aka usd-2020-0006...

10CVSS7.4AI score0.02868EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 6:10 p.m.8 views

CVE-1999-0534

A Windows NT user has inappropriate rights or privileges, e.g. Act as System, Add Workstation, Backup, Change System Time, Create Pagefile, Create Permanent Object, Create Token Name, Debug, Generate Security Audit, Increase Priority, Increase Quota, Load Driver, Lock Memory, Profile Single...

4.6CVSS7.1AI score0.01508EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/22 12:0 a.m.4 views

VIPRE Advanced Security 后置链接漏洞

VIPRE Advanced Security is an antivirus security software from VIPRE Corporation. VIPRE Advanced Security suffers from a back-link vulnerability that originates from a vulnerability that could allow a local attacker to elevate privileges on an affected installation and execute arbitrary code in a...

7.8CVSS7.7AI score0.00407EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/08 12:0 a.m.9 views

HASOMED Elefant 安全漏洞

HASOMED Elefant is an exercise software from the German company HASOMED. It specializes in meeting the needs of psychotherapists, child and adolescent psychotherapists, and medical psychotherapists. HASOMED Elefant has a security vulnerability. An attacker with local access to a medical office...

7CVSS6.4AI score0.00176EPSS
Exploits0References2
OSV
OSV
added 2024/11/04 2:15 a.m.5 views

CVE-2024-20106

In m4u, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08960505; Issue ID: MSV-1590...

6.7CVSS5.9AI score0.00084EPSS
Exploits0References1
OSV
OSV
added 2024/10/07 3:15 a.m.2 views

CVE-2024-20095

In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996894; Issue ID: MSV-1636...

4.4CVSS5.9AI score0.00099EPSS
Exploits0References1
OSV
OSV
added 2024/09/11 11:15 p.m.4 views

CVE-2024-7889

Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows...

7.3CVSS5.8AI score0.00246EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/06/10 12:0 a.m.19 views

The vulnerability of the Ivanti Secure Access Client (formerly Pulse Secure Desktop Client) for corporate networks’ VPN servers in Windows operating systems stems from an operation that goes beyond the buffer in memory, allowing a malicious actor to execute arbitrary code with SYSTEM privileges.

The vulnerability of the Ivanti Secure Access Client formerly Pulse Secure Desktop Client for corporate networks’ VPN servers on Windows operating systems is related to the execution of commands outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execut...

7.8CVSS8.2AI score0.00343EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/05/06 12:0 a.m.9 views

PT-2024-18547 · Mediatek +1 · Mt6580 +24

Name of the Vulnerable Software and Affected Versions: In da affected versions not specified Description: The issue is related to a possible escalation of privilege due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User...

5.9CVSS7.1AI score0.00106EPSS
Exploits0References4
Rows per page
Query Builder