CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2026/02/20 1:27 p.m.•2 views

CVE-2025-15561

An attacker can exploit the update behavior of the WorkTime monitoring daemon to elevate privileges on the local system to NT Authority\SYSTEM. A malicious executable must be named WTWatch.exe and dropped in the C:\ProgramData\wta\ClientExe directory, which is writable by "Everyone". The executab...

7.8CVSS5.6AI score0.00018EPSS

Exploits0References1

NVD•added 2026/02/19 11:15 a.m.•3 views

CVE-2025-15561

7.8CVSS0.00018EPSS

Exploits0References1

OSV•added 2026/02/19 11:15 a.m.•1 views

CVE-2025-15561

7.8CVSS5.8AI score0.00018EPSS

Exploits0References1

Cvelist•added 2026/02/19 10:53 a.m.•25 views

CVE-2025-15561 Local Privilege Escalation in NesterSoft WorkTime

0.00018EPSS

Exploits0References1

Vulnrichment•added 2026/02/19 10:53 a.m.•5 views

CVE-2025-15561 Local Privilege Escalation in NesterSoft WorkTime

5.4AI score0.00018EPSS

Exploits0References1

CVE•added 2026/02/19 10:53 a.m.•10 views

CVE-2025-15561

CVE-2025-15561 describes a local privilege escalation in NesterSoft WorkTime. An attacker can exploit the update behavior of the WorkTime monitoring daemon to elevate privileges to NT AUTHORITY\SYSTEM. The attack requires a malicious executable named WTWatch.exe to be dropped in the writable dire...

7.8CVSS5.6AI score0.00018EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/02/19 12:0 a.m.•4 views

PT-2026-20800

An attacker can exploit the update behavior of the WorkTime monitoring daemon to elevate privileges on the local system to NT AuthoritySYSTEM. A malicious executable must be named WTWatch.exe and dropped in the C:ProgramDatawtaClientExe directory, which is writable by "Everyone". The executable...

5.6AI score0.00018EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by