23 matches found
BeyondTrust Privilege Management for Windows <= 25.7 Anti-Tamper Bypass (BT26-01)
The version of BeyondTrust Privilege Management for Windows installed on the remote host is prior to 25.8. It is, therefore, affected by a vulnerability as referenced in the BT26-01 advisory. - Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the...
CVE-2026-1232
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
CVE-2026-1232
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
EUVD-2026-5113
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
CVE-2026-1232 Anti-Tamper Bypass in BeyondTrust Privilege Management for Windows
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
CVE-2026-1232
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
CVE-2026-1232
CVE-2026-1232 affects BeyondTrust Privilege Management for Windows, versions ≤ 25.7. The vulnerability is an anti-tamper bypass that can occur under certain conditions, allowing a local authenticated user with elevated privileges to access protected application components and modify product confi...
CVE-2026-1232 Anti-Tamper Bypass in BeyondTrust Privilege Management for Windows
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
PT-2026-5680
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
EUVD-2025-22928
Malicious code in bioql PyPI...
BeyondTrust Privilege Management for Windows < 25.4.270.0 Multiple Vulnerabilities (BT25-05) (BTS25-06)
The version of BeyondTrust Privilege Management for Windows installed on the remote host is prior to 25.4.270.0. It is, therefore, affected by multiple vulnerabilities as referenced in the BT25-05 and BT25-06 advisories: - Prior to version 25.4.270.0, a local authenticated attacker can manipulate...
CVE-2025-6250
Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...
CVE-2025-6250
Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...
CVE-2025-6250 Privilege Management for Windows - Elevation of Privilege
Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...
CVE-2025-6250
CVE-2025-6250 — Normal mode : Multiple sources describe a privilege escalation in BeyondTrust Privilege Management for Windows prior to 25.4.270.0 via wmic.exe. When a user runs wmic.exe with a full admin token, they can stop the Defendpoint service, bypass anti-tamper protections, and add themse...
PT-2025-31115 · Crowdstrike · Defendpoint
Name of the Vulnerable Software and Affected Versions: Symantec Defendpoint versions prior to 25.4.270.0 Description: Prior to version 25.4.270.0, when wmic.exe is elevated with a full admin token, a user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is...
BeyondTrust Privilege Management for Windows 安全漏洞
BeyondTrust Privilege Management for Windows is a software for restricting user privileges by BeyondTrust USA. A security vulnerability exists in BeyondTrust Privilege Management for Windows prior to version 25.4.270.0, which originates in wmic.exe could lead to an anti-tamper protection bypass...
PT-2024-12178 · Zscaler · Zscaler Client Connector
Name of the Vulnerable Software and Affected Versions: Zscaler Client Connector on Windows versions prior to 4.2.0.190 Description: The issue is related to an improper validation of signature, allowing an authenticated user to disable anti-tampering. Recommendations: For versions prior to...
CVE-2022-1716
Keep My Notes v1.80.147 allows an attacker with physical access to the victim's device to bypass the application's password/pin lock to access user data. This is possible due to lack of adequate security controls to prevent dynamic code manipulation...
CVE-2022-27608
Forcepoint One Endpoint prior to version 22.01 installed on Microsoft Windows is vulnerable to registry key tampering by users with Administrator privileges. This could result in a user disabling anti-tampering mechanisms which would then allow the user to disable Forcepoint One Endpoint and the...