CVE-2021-47767

CVE-2021-47767 affects 10-Strike Network Inventory Explorer Pro 9.31, specifically the srvInventoryWebServer service which runs with LocalSystem privileges. The root cause is an unquoted service path, allowing an attacker to place a malicious executable in an unresolved path segment to achieve pr...

EUVD-2025-205011

RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of RealDefense SUPERAntiSpyware. An attacker must first obtain the ability to execute low-privileged code on...

Sitecore Experience Platform (XP) PreAuth Deserialization RCE

This module exploits a deserialization vulnerability in the Report.ashx page of Sitecore XP 7.5 to 7.5.2, 8.0 to 8.0.7, 8.1 to 8.1.3, and 8.2 to 8.2.7. Versions 7.2.6 and earlier and 9.0 and later are not affected. The vulnerability occurs due to Report.ashx's handler, located in...

Microsoft Windows用户访问控制(UAC)绕过本地权限提升漏洞

BUGTRAQ ID: 45045 Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows实现上存在漏洞，本地攻击攻击者可以利用此漏洞以系统级权限执行任意代码，成功利用漏洞将完全操纵受影响的计算机，利用失败后可能形成拒绝服务。 Microsoft Vista x64 Edition SP2 Microsoft Vista x64 Edition SP1 Microsoft Vista x64 Edition 0 Microsoft Vista Ultimate SP2 Microsoft Vista Ultimate SP1 Microso...