Lucene search
K

873 matches found

EUVD
EUVD
added 2026/02/02 8:15 a.m.6 views

EUVD-2026-5102

In cameraisp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10351676; Issue ID: MSV-5733...

7.8CVSS5.4AI score0.00096EPSS
Exploits0References1
CVE
CVE
added 2026/02/02 8:15 a.m.22 views

CVE-2026-20411

CVE-2026-20411 affects the cameraisp component, with a use-after-free condition that enables escalation of privileges and could cause local denial of service when the attacker already has System privileges. Exploitation is reported as not requiring user interaction. The vulnerability is accompani...

7.8CVSS5.4AI score0.00096EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/02 8:15 a.m.32 views

CVE-2026-20411

In cameraisp, there is a possible escalation of privilege due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10351676; Issue ID: MSV-5737...

0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/02 8:15 a.m.7 views

EUVD-2026-5131

In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10362552; Issue ID: MSV-5760...

6.7CVSS5.4AI score0.00097EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/02 8:14 a.m.4 views

CVE-2026-20409

In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10363246; Issue ID: MSV-5779...

5.3AI score0.00096EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/02 8:14 a.m.29 views

CVE-2026-20409

In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10363246; Issue ID: MSV-5779...

0.00096EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/02 8:14 a.m.7 views

CVE-2026-20409

In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10363246; Issue ID: MSV-5779...

7.8CVSS5.4AI score0.00096EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.7 views

PT-2026-5635

In cameraisp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10351676; Issue ID: MSV-5733...

5.4AI score0.00096EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.13 views

PT-2026-5639

In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10314946 / ALPS10340155; Issue ID: MSV-51...

5.4AI score0.00085EPSS
Exploits0References2
NVD
NVD
added 2026/01/29 3:16 p.m.7 views

CVE-2020-37021

10-Strike Bandwidth Monitor 3.9 contains an unquoted service path vulnerability in multiple services that allows local attackers to escalate privileges. Attackers can place a malicious executable in specific file path locations to achieve privilege escalation to SYSTEM during service startup...

8.5CVSS0.00115EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/01/25 2:3 a.m.268 views

Exploit for Improper Input Validation in Intel Ethernet_Diagnostics_Driver_Iqvw32.Sys

iqvw64e-privilege-escalation CVE-2015-2291 Local Privilege Esc...

8.8CVSS6.2AI score0.58132EPSS
Exploits23
RedhatCVE
RedhatCVE
added 2026/01/09 12:17 p.m.6 views

CVE-2018-10204

PureVPN 6.0.1 for Windows suffers from a SYSTEM privilege escalation vulnerability in its "sevpnclient" service. When configured to use the OpenVPN protocol, the "sevpnclient" service executes "openvpn.exe" using the OpenVPN config file located at %PROGRAMDATA%\purevpn\config\config.ovpn. This fi...

9CVSS7.3AI score0.01537EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:16 p.m.8 views

CVE-2018-1000670

KOHA Library System version 16.11.x up until 16.11.13 and 17.05.x up until 17.05.05 contains a Cross Site Scripting XSS vulnerability in Multiple fields on multiple pages including /cgi-bin/koha/acqui/supplier.pl?op=enter , /cgi-bin/koha/circ/circulation.pl?borrowernumber=number ,...

6.1CVSS6.3AI score0.00648EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:46 a.m.7 views

CVE-2022-0517

Mozilla VPN can load an OpenSSL configuration file from an unsecured directory. A user or attacker with limited privileges could leverage this to launch arbitrary code with SYSTEM privilege. This vulnerability affects Mozilla VPN 2.7.1...

7.8CVSS7.1AI score0.00185EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:35 a.m.7 views

CVE-2024-41143

Origin validation error vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this vulnerability is exploited, an arbitrary process may be executed with SYSTEM privilege by a user who can log in to the PC where the product's Windows client is installed...

7.8CVSS7AI score0.00117EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:14 a.m.8 views

CVE-2022-33725

A vulnerability using PendingIntent in Knox VPN prior to SMR Aug-2022 Release 1 allows attackers to access content providers with system privilege...

4CVSS6.8AI score0.00108EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:48 a.m.16 views

CVE-2025-23236

Buffer overflow vulnerability exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker performs a specific operation, SYSTEM privilege of the Windows system where the product is running may be obtained...

8.8CVSS7.1AI score0.00189EPSS
Exploits0References1
NVD
NVD
added 2026/01/07 12:17 p.m.12 views

CVE-2026-20893

Origin validation error issue exists in Fujitsu Security Solution AuthConductor Client Basic V2 2.0.25.0 and earlier. If this vulnerability is exploited, an attacker who can log in to the Windows system where the affected product is installed may execute arbitrary code with SYSTEM privilege and/o...

8.5CVSS0.00123EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/07 9:54 a.m.5 views

CVE-2025-20783

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4684...

6.7CVSS6.6AI score0.00072EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:54 a.m.4 views

CVE-2025-20806

In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114835; Issue ID: MSV-4479...

6.7CVSS6.8AI score0.00071EPSS
Exploits0References1
Rows per page
Query Builder