13 matches found
CVE-2026-45487
Time-of-check time-of-use TOCTOU race condition in Program Compatibility Assistant Service allows an authorized attacker to elevate privileges locally...
CVE-2026-45487 Windows Program Compatibility Assistant Service Elevation of Privilege Vulnerability
...
CVE-2026-45487
CVE-2026-45487 is a Windows vulnerability in the Program Compatibility Assistant Service where a TOCTOU race condition enables a local, authorized user to elevate privileges. Affected component: Program Compatibility Assistant Service on Windows. Root cause: TOCTOU race condition allowing privile...
Windows Program Compatibility Assistant Service Elevation of Privilege Vulnerability
Time-of-check time-of-use TOCTOU race condition in Program Compatibility Assistant Service allows an authorized attacker to elevate privileges locally...
Microsoft Windows Program Compatibility Assistant Service 竞争条件问题漏洞
Microsoft Windows is an operating system used on personal devices by the American company Microsoft. The Microsoft Windows Program Compatibility Assistant Service has a security vulnerability. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions...
GHSA-78PR-C5X5-JGGC FlowiseAI: Assistant create+update mass-assignment allows cross-workspace assistant takeover
Summary Type: Mass assignment via Object.assignentity, body - client-controlled workspaceId and on create, id overwritten on the Assistant entity - cross-workspace data takeover and IDOR. File: packages/server/src/services/assistants/index.ts Root cause: The Assistant controller/service construct...
CVE-2020-10262
An issue was discovered on XIAOMI XIAOAI speaker Pro LX06 1.58.10. Attackers can activate the failsafe mode during the boot process, and use the miconsole command cascaded by the SN code shown on the product to get the root shell password, and then the attacker can i read Wi-Fi SSID or password, ...
CVE-2023-50197
Intel Driver & Support Assistant Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Intel Driver & Support Assistant. An attacker must first obtain the ability to execute low-privileged code on the...
The vulnerability of the Windows Network Connectivity Assistant service allows a malicious actor to escalate their privileges and execute arbitrary code.
The vulnerability of the Windows Network Connectivity Assistant service in Windows operating systems is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code using a specially created application...
Shimo VPN elevation of privilege vulnerability (CNVD-2019-22623)
Shimo VPN is a VPN virtual private network software for macOS platforms An elevation of privilege vulnerability vulnerability exists in the 'configureRoutingWithCommand' function of the Assistant service in Shimo VPN version 4.1.5.1. The vulnerability stems from a network system or product that...
Shimo VPN Denial of Service Vulnerability
Shimo VPN is a VPN Virtual Private Network software based on macOS platform. A denial of service vulnerability exists in the deleteConfig function of the Assistant service in Shimo VPN version 4.1.5.1. The vulnerability stems from a network system or product that does not properly validate incomi...
Shimo VPN Elevation of Privilege Vulnerability
Shimo VPN is a VPN Virtual Private Network software based on macOS platform. An elevation of privilege vulnerability exists in the writeConfig function of the Assistant service in Shimo VPN version 4.1.5.1. The vulnerability stems from a network system or product that does not properly validate...
Hewlett Packard TouchSmart Calendar Service 4.1.4245 Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits + Credits: John Page aka hyp3rlinx Vendor: ========== www.hp.com Product: =========================================== Hewlett Packard TouchSmart Calendar Service File version : 4.1.4245 HP TouchSmart Calendar is a shared calendar where you c...