Lucene search
K

882 matches found

CNNVD
CNNVD
added 2026/01/13 12:0 a.m.4 views

Microsoft Desktop Windows Manager 安全漏洞

Microsoft Desktop Windows Manager is a desktop window manager from Microsoft Corporation USA. A security vulnerability exists in Microsoft Desktop Windows Manager. An attacker exploiting this vulnerability could gain access to sensitive information. The following products and versions are...

5.5CVSS6AI score0.05028EPSS
Exploits5References2
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.8 views

PT-2026-2689

Name of the Vulnerable Software and Affected Versions Windows Client-Side Caching CSC Service affected versions not specified Description An issue with access control in the Windows Client-Side Caching CSC Service can allow an attacker to disclose information locally. The vulnerability allows...

5.5CVSS6.1AI score0.00463EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

Microsoft Windows Routing and Remote Access Service 安全漏洞

Microsoft Windows Routing and Remote Access Service is a network service from Microsoft Corporation USA that is used to perform functions such as network routing, virtual private networks VPNs, and dial-up connections. A security vulnerability exists in Microsoft Windows Routing and Remote Access...

8.8CVSS5.9AI score0.01338EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2026/01/13 12:0 a.m.176 views

.NET 8.0 Update - January 13, 2026

.NET 8.0 Update - January 13, 2026 .NET 8.0 has been refreshed with the latest update as of January 13, 2026. This update contains non-security fixes. See the release notes for details about updated packages..NET 8.0 servicing updates are upgrades. The latest servicing update for 8.0 will remove...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.4 views

Microsoft Windows 缓冲区错误漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. Microsoft Windows suffers from a buffer error vulnerability. An attacker could exploit this vulnerability to gain elevated privileges. The following products and editions are...

4.6CVSS6AI score0.0062EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:49 a.m.6 views

CVE-2020-24160

Shenzhen Tencent TIM Windows client 3.0.0.21315 has a DLL hijacking vulnerability, which can be exploited by attackers to execute malicious code...

7.8CVSS7.2AI score0.00476EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.6 views

CVE-2024-41139

Incorrect privilege assignment vulnerability exists in SKYSEA Client View Ver.6.010.06 to Ver.19.210.04e. If a user who can log in to the PC where the product's Windows client is installed places a specially crafted DLL file in a specific folder, arbitrary code may be executed with SYSTEM privile...

7.8CVSS7.4AI score0.0018EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/05 12:0 a.m.2 views

RHEL 8 : spice-client-win (RHSA-2026:0078)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0078 advisory. Spice client MSI installers for Windows clients Security Fixes: sqlite: Integer Truncation in SQLite CVE-2025-6965 libtiff: LibTIFF...

8.8CVSS6.6AI score0.73495EPSS
Exploits5References10
RedhatCVE
RedhatCVE
added 2025/12/22 7:21 a.m.18 views

CVE-2025-34290

Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating...

8.5CVSS7AI score0.00095EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/20 9:30 p.m.5 views

EUVD-2025-204643

Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating...

8.5CVSS6.5AI score0.00095EPSS
Exploits0References3
NVD
NVD
added 2025/12/20 8:15 p.m.6 views

CVE-2025-34290

Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating...

8.5CVSS0.00095EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/20 8:1 p.m.4 views

CVE-2025-34290 Versa SASE Client for Windows < 7.9.5 Arbitrary Folder Deletion Leading to Local Privilege Escalation

Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating...

8.5CVSS6.6AI score0.00095EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/20 12:0 a.m.7 views

PT-2025-52564

Name of the Vulnerable Software and Affected Versions Versa SASE Client for Windows versions 7.8.7 through 7.9.4 Description The software contains a local privilege escalation issue in the audit log export functionality. The client sends user-controlled file paths to a privileged service, which...

8.5CVSS6.7AI score0.00095EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/12/20 12:0 a.m.5 views

Versa SASE Client for Windows 安全漏洞

Versa SASE Client for Windows is a secure networking client from Versa USA. A security vulnerability exists in Versa SASE Client for Windows versions 7.8.7 through 7.9.4, which stems from a local elevation of privilege vulnerability in the Audit Log Export feature that could lead to arbitrary...

8.5CVSS6.7AI score0.00095EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/10 6:13 p.m.4 views

CVE-2025-62466

Null pointer dereference in Windows Client-Side Caching CSC Service allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00379EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 5:55 p.m.3 views

EUVD-2025-202251

Null pointer dereference in Windows Client-Side Caching CSC Service allows an authorized attacker to elevate privileges locally...

7.8CVSS6.4AI score0.00379EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/12/09 8:0 a.m.4 views

Windows Client-Side Caching Elevation of Privilege Vulnerability

Null pointer dereference in Windows Client-Side Caching CSC Service allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00379EPSS
Exploits0
Kaspersky
Kaspersky
added 2025/12/09 12:0 a.m.10 views

KLA90811 Multiple vulnerabilities in Microsoft Product (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, spoof user interface, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a...

8.8CVSS9.4AI score0.02075EPSS
Exploits5References35
EUVD
EUVD
added 2025/11/28 2:26 p.m.7 views

EUVD-2025-199877

Netskope was notified about a potential gap in its agent NS Client on Windows systems. If this gap is successfully exploited, a local, authenticated user with Administrator privileges can improperly load the driver as a generic kernel service. This triggers the flaw, causing a system crash...

5.9CVSS6.1AI score0.0011EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/27 12:58 a.m.17 views

CVE-2025-26155

NCP Secure Enterprise Client 13.18 and NCP Secure Entry Windows Client 13.19 have an Untrusted Search Path vulnerability...

9.8CVSS6.9AI score0.00498EPSS
Exploits1References1
Rows per page
Query Builder