Lucene search
K

550 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:49 a.m.16 views

CVE-2023-3267

When adding a remote backup location, an authenticated user can pass arbitrary OS commands through the username field. The username is passed without sanitization into CMD running as NT/Authority System. An authenticated attacker can leverage this vulnerability to execute arbitrary code with...

9.1CVSS7.8AI score0.01683EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:20 a.m.21 views

CVE-2023-38817

An issue in Inspect Element Ltd Echo.ac v.5.2.1.0 allows a local attacker to gain privileges via a crafted command to the echodriver.sys component. NOTE: the vendor's position is that the reported ability for user-mode applications to execute code as NT AUTHORITY\SYSTEM was "deactivated by...

7.8CVSS7.3AI score0.00456EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:18 a.m.10 views

CVE-2023-51772

One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a Chromium based browser in Kiosk mode to provide the reset functionality. The escape sequence is: wait for a...

8.8CVSS6.8AI score0.00515EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:56 a.m.9 views

CVE-2023-24491

A vulnerability has been discovered in the Citrix Secure Access client for Windows which, if exploited, could allow an attacker with access to an endpoint with Standard User Account that has the vulnerable client installed to escalate their local privileges to that of NT AUTHORITY\SYSTEM...

7.8CVSS6.8AI score0.00202EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:46 a.m.10 views

CVE-2023-20036

A vulnerability in the web UI of Cisco IND could allow an authenticated, remote attacker to execute arbitrary commands with administrative privileges on the underlying operating system of an affected device. This vulnerability is due to improper input validation when uploading a Device Pack. An...

9.9CVSS7.7AI score0.1272EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:23 a.m.8 views

CVE-2022-34006

An issue was discovered in TitanFTP aka Titan FTP NextGen before 1.2.1050. When installing, Microsoft SQL Express 2019 installs by default with an SQL instance running as SYSTEM with BUILTIN\Users as sysadmin, thus enabling unprivileged Windows users to execute commands locally as NT...

7.8CVSS7.8AI score0.00259EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:7 p.m.10 views

CVE-2021-33436

NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately execute code as ...

7.3CVSS7.5AI score0.0027EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:38 p.m.8 views

CVE-2020-14021

An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The ASP.net SMS module can be used to read and validate the source code of ASP files. By altering the path, it can be made to read any file on the Operating System, usually with NT AUTHORITY\SYSTEM privileges...

4.9CVSS7AI score0.01145EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 10:21 a.m.6 views

CVE-2019-15720

CloudBerry Backup v6.1.2.34 allows local privilege escalation via a Pre or Post backup action. With only user-level access, a user can modify the backup plan and add a Pre backup action script that executes on behalf of NT AUTHORITY\SYSTEM...

7.8CVSS7.1AI score0.00415EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:10 a.m.7 views

CVE-2019-15315

Valve Steam Client for Windows through 2019-08-16 allows privilege escalation to NT AUTHORITY\SYSTEM because local users can replace the current versions of SteamService.exe and SteamService.dll with older versions that lack the CVE-2019-14743 patch...

7.8CVSS6.6AI score0.00616EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/20 11:19 p.m.16 views

CVE-2023-38951

ZKTeco BioTime 8.5.5 through 9.x before 9.0.1 20240617.19506 allows authenticated attackers to create or overwrite arbitrary files on the server via crafted requests to /base/sftpsetting/ endpoints that abuse a path traversal issue in the Username field and a lack of input sanitization on the SSH...

9.8CVSS9.6AI score0.03258EPSS
Exploits2
NVD
NVD
added 2025/04/08 4:15 p.m.29 views

CVE-2025-1095

IBM Personal Communications v14 and v15 include a Windows service that is vulnerable to local privilege escalation LPE. The vulnerability allows any interactively logged in users on the target computer to run commands with full privileges in the context of NT AUTHORITY\SYSTEM. This allows for a l...

8.8CVSS0.00138EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/08 3:11 p.m.12 views

CVE-2025-1095 IBM Personal Communications command execution

IBM Personal Communications v14 and v15 include a Windows service that is vulnerable to local privilege escalation LPE. The vulnerability allows any interactively logged in users on the target computer to run commands with full privileges in the context of NT AUTHORITY\SYSTEM. This allows for a l...

8.8CVSS7.4AI score0.00138EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/08 3:11 p.m.46 views

CVE-2025-1095 IBM Personal Communications command execution

IBM Personal Communications v14 and v15 include a Windows service that is vulnerable to local privilege escalation LPE. The vulnerability allows any interactively logged in users on the target computer to run commands with full privileges in the context of NT AUTHORITY\SYSTEM. This allows for a l...

8.8CVSS0.00138EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/12 6:35 p.m.46 views

CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability

A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices potentially enables a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. GlobalProtect App on macOS, Linux, iOS, Android, Chrome OS and...

7.1CVSS6.7AI score0.0015EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2025/03/12 4:0 p.m.20 views

GlobalProtect App: Local Privilege Escalation (PE) Vulnerability

A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices potentially enables a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. GlobalProtect App on macOS, Linux, iOS, Android, Chrome OS and...

7.1CVSS7.3AI score0.0015EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:11 p.m.11 views

CVE-2019-19893

In IXP EasyInstall 6.2.13723, there is Directory Traversal on TCP port 8000 via the Engine Service by an unauthenticated attacker, who can access the server's filesystem with the access rights of NT AUTHORITY\SYSTEM...

7.8CVSS7AI score0.02546EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/03 9:35 p.m.35 views

CVE-2024-35177 Improper Access Control in wazuh-agent

Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments. The wazuh-agent for Windows is vulnerable to a Local Privilege Escalation vulnerability...

7.8CVSS0.00263EPSS
Exploits1References1
NVD
NVD
added 2025/01/09 10:15 p.m.13 views

CVE-2023-28354

An issue was discovered in Opsview Monitor Agent 6.8. An unauthenticated remote attacker can call checknrpe against affected targets, specifying known NRPE plugins, which in default installations are configured to accept command control characters and pass them to command-line interpreters for NR...

9.8CVSS0.0118EPSS
Exploits0References1
OSV
OSV
added 2024/12/16 1:59 p.m.11 views

BIT-NODE-MIN-2023-30585

A vulnerability has been identified in the Node.js .msi version installation process, specifically affecting Windows users who install Node.js using the .msi installer. This vulnerability emerges during the repair operation, where the "msiexec.exe" process, running under the NT AUTHORITY\SYSTEM...

7.5CVSS7.4AI score0.01467EPSS
Exploits0References3
Rows per page
Query Builder