EUVD-2017-15417

Malware in sbrugna...

EUVD-2017-14434

Malware in sbrugna...

EUVD-2025-8667

Malicious code in bioql PyPI...

CVE-2025-2782

The WatchGuard Terminal Services Agent on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system. This issue affects Terminal Services Agent: from...

CVE-2025-2782

The WatchGuard Terminal Services Agent on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system. This issue affects Terminal Services Agent: from...

CVE-2025-2782

The CVE identifies a local privilege-escalation in WatchGuard Terminal Services Agent (Windows) due to improper directory-permission configuration when installed in a non-default directory. Affected versions are 12.0–12.10. The root cause is permission misconfiguration enabling an authenticated l...

CVE-2025-2782 WatchGuard Terminal Services Agent Local Privilege Escalation via Non-Standard Installation Directory

The WatchGuard Terminal Services Agent on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system. This issue affects Terminal Services Agent: from...

CVE-2017-6356

Palo Alto Networks Terminal Services aka TS Agent 6.0, 7.0, and 8.0 before 8.0.1 uses weak permissions for unspecified resources, which allows attackers to obtain sensitive session information via unknown vectors...

Session fixation

Palo Alto Networks Terminal Services aka TS Agent 6.0, 7.0, and 8.0 before 8.0.1 uses weak permissions for unspecified resources, which allows attackers to obtain sensitive session information via unknown vectors...

Palo Alto Networks Terminal Services Agent Arbitrary User Forgery Vulnerability

Palo Alto Networks Terminal Services Agent is a terminal services agent program. A security vulnerability exists in Palo Alto Networks Terminal Services Agent that could be exploited by remote attackers to spoof arbitrary users...

Palo Alto Networks Terminal Services Agent Elevation of Privilege Vulnerability

Palo Alto Networks Terminal Services Agent is a terminal services agent program. An elevation of privilege vulnerability exists in Palo Alto Networks Terminal Services Agent, which could be exploited by a local attacker to elevate privileges...

CVE-2017-5328

Palo Alto Networks Terminal Services Agent before 7.0.7 allows attackers to spoof arbitrary users via unspecified vectors...

CVE-2017-5329

Palo Alto Networks Terminal Services Agent before 7.0.7 allows local users to gain privileges via vectors that trigger an out-of-bounds write operation...

Out-of-bounds

Palo Alto Networks Terminal Services Agent before 7.0.7 allows local users to gain privileges via vectors that trigger an out-of-bounds write operation...

Design/Logic Flaw

Palo Alto Networks Terminal Services Agent before 7.0.7 allows attackers to spoof arbitrary users via unspecified vectors...

CVE-2017-5329

Palo Alto Networks Terminal Services Agent before 7.0.7 allows local users to gain privileges via vectors that trigger an out-of-bounds write operation...

CVE-2017-5328

The CVE-2017-5328 entry concerns Palo Alto Networks Terminal Server Agent. Connected sources confirm a spoofing vulnerability that allows an attacker to impersonate another authenticated user, affecting Terminal Server Agent versions up to 7.0.6 (and potentially 6.0 per advisory, before 7.0.7). T...

CVE-2017-5329

CVE-2017-5329 affects Palo Alto Networks Terminal Services Agent (Terminal Server Agent) prior to 7.0.7. It enables local privilege escalation via an out-of-bounds write, with reported impact to confidentiality, integrity, and availability (per CVSS 3.1: HIGH). Exploitation activity is documented...

CVE-2017-5328

Palo Alto Networks Terminal Services Agent before 7.0.7 allows attackers to spoof arbitrary users via unspecified vectors...