CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2026/02/20 1:27 p.m.•4 views

CVE-2025-15561

An attacker can exploit the update behavior of the WorkTime monitoring daemon to elevate privileges on the local system to NT Authority\SYSTEM. A malicious executable must be named WTWatch.exe and dropped in the C:\ProgramData\wta\ClientExe directory, which is writable by "Everyone". The executab...

7.8CVSS5.6AI score0.00104EPSS

Exploits0References1

OSV•added 2026/02/19 11:15 a.m.•6 views

CVE-2025-15561

7.8CVSS5.8AI score0.00104EPSS

Exploits0References1

NVD•added 2026/02/19 11:15 a.m.•8 views

CVE-2025-15561

7.8CVSS0.00104EPSS

Exploits0References1

Vulnrichment•added 2026/02/19 10:53 a.m.•8 views

CVE-2025-15561 Local Privilege Escalation in NesterSoft WorkTime

5.4AI score0.00104EPSS

Exploits0References1

Cvelist•added 2026/02/19 10:53 a.m.•27 views

CVE-2025-15561 Local Privilege Escalation in NesterSoft WorkTime

0.00104EPSS

Exploits0References1

CVE•added 2026/02/19 10:53 a.m.•15 views

CVE-2025-15561

CVE-2025-15561 concerns the WorkTime monitoring daemon. An attacker can escalate local privileges to NT AUTHORITY\SYSTEM by placing a malicious WTWatch.exe into C:\ProgramData\wta\ClientExe (writable by Everyone); the daemon then executes it with SYSTEM privileges due to its update behavior. Affe...

7.8CVSS5.6AI score0.00104EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/02/19 12:0 a.m.•8 views

PT-2026-20800

An attacker can exploit the update behavior of the WorkTime monitoring daemon to elevate privileges on the local system to NT AuthoritySYSTEM. A malicious executable must be named WTWatch.exe and dropped in the C:ProgramDatawtaClientExe directory, which is writable by "Everyone". The executable...

5.6AI score0.00104EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by