151 matches found
CVE-2021-47787
TotalAV 5.15.69 contains an unquoted service path vulnerability in multiple system services running with LocalSystem privileges. Attackers can place malicious executables in specific unquoted path segments to potentially gain SYSTEM-level access by exploiting the service path configuration...
EUVD-2018-9743
Malware in sbrugna...
EUVD-2018-10057
Malware in sbrugna...
EUVD-2019-5346
Malware in sbrugna...
EUVD-2012-5825
Malware in sbrugna...
EUVD-2008-5394
Malware in sbrugna...
EUVD-2009-2671
Malware in sbrugna...
EUVD-2017-11505
Malware in sbrugna...
EUVD-2023-34103
Malicious code in bioql PyPI...
EUVD-2023-25421
Malicious code in bioql PyPI...
EUVD-2022-44781
Malicious code in bioql PyPI...
CVE-2023-21253
In multiple locations, there is a possible way to crash multiple system services due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-2637
Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Hard-coded cryptographic key may lead to privilege escalation. This vulnerability may allow a local, authenticated non-admin user to generate an invalid administrator cookie...
CVE-2022-41589
The DFX unwind stack module of the ArkCompiler has a vulnerability in interface calling.Successful exploitation of this vulnerability affects system services and device availability...
CVE-2020-28344
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. System services may crash because of the lack of a NULL parameter check. The LG ID is LVE-SMP-200024 November 2020...
Huawei EMUI和Huawei HarmonyOS 安全漏洞
Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. A service logic error vulnerability exists in the Huawei EMUI and HarmonyOS system service module, which can be...
Qualys TRU Uncovers Five Local Privilege Escalation Vulnerabilities in needrestart
The Qualys Threat Research Unit TRU has identified five Local Privilege Escalation LPE vulnerabilities within the needrestart component, which is installed by default on Ubuntu Server. These vulnerabilities can be exploited by any unprivileged user to gain full root access without requiring user...
PT-2024-34345 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Elefant affected versions not specified Description: Attackers with local access to the medical office computer can escalate their Windows user privileges to "NT AUTHORITYSYSTEM" by overwriting one of two Elefant service binaries with weak...
CVE-2022-26488
A flaw was found in Python that may allow local users to gain privileges due to the search path being inadequately secured. The installer may allow a local attacker to add user-writable directories to the system search path. To exploit, an administrator must have installed Python for all users an...
BIT-PYTHON-2022-26488
In Python before 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer may allow a local attacker to add user-writable directories to the system search path. To exploit, an administrator must have installed Python for all users and enabl...