156 matches found
CVE-2021-47787
TotalAV 5.15.69 contains an unquoted service path vulnerability in multiple system services running with LocalSystem privileges. Attackers can place malicious executables in specific unquoted path segments to potentially gain SYSTEM-level access by exploiting the service path configuration...
EUVD-2008-5394
Malware in sbrugna...
EUVD-2012-5825
Malware in sbrugna...
EUVD-2018-10057
Malware in sbrugna...
EUVD-2019-5346
Malware in sbrugna...
EUVD-2009-2671
Malware in sbrugna...
EUVD-2017-11505
Malware in sbrugna...
EUVD-2018-9743
Malware in sbrugna...
EUVD-2023-25421
Malicious code in bioql PyPI...
EUVD-2022-44781
Malicious code in bioql PyPI...
EUVD-2023-34103
Malicious code in bioql PyPI...
CVE-2023-21253
In multiple locations, there is a possible way to crash multiple system services due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-2637
Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Hard-coded cryptographic key may lead to privilege escalation. This vulnerability may allow a local, authenticated non-admin user to generate an invalid administrator cookie...
CVE-2022-41589
The DFX unwind stack module of the ArkCompiler has a vulnerability in interface calling.Successful exploitation of this vulnerability affects system services and device availability...
CVE-2020-28344
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. System services may crash because of the lack of a NULL parameter check. The LG ID is LVE-SMP-200024 November 2020...
The vulnerability of the FactoryTalk System Services system service in the FactoryTalk Policy Manager software for manufacturing process control, related to access control deficiencies, allows a intruder to gain unauthorized access to protected information.
The vulnerability of the FactoryTalk System Services system service in the FactoryTalk Policy Manager software for manufacturing process management is related to deficiencies in access control for the backup copy folder. Exploiting this vulnerability could allow an intruder operating remotely to...
Huawei EMUI和Huawei HarmonyOS 安全漏洞
Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. A service logic error vulnerability exists in the Huawei EMUI and HarmonyOS system service module, which can be...
Qualys TRU Uncovers Five Local Privilege Escalation Vulnerabilities in needrestart
The Qualys Threat Research Unit TRU has identified five Local Privilege Escalation LPE vulnerabilities within the needrestart component, which is installed by default on Ubuntu Server. These vulnerabilities can be exploited by any unprivileged user to gain full root access without requiring user...
PT-2024-34345 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Elefant affected versions not specified Description: Attackers with local access to the medical office computer can escalate their Windows user privileges to "NT AUTHORITYSYSTEM" by overwriting one of two Elefant service binaries with weak...
CVE-2022-26488
A flaw was found in Python that may allow local users to gain privileges due to the search path being inadequately secured. The installer may allow a local attacker to add user-writable directories to the system search path. To exploit, an administrator must have installed Python for all users an...