Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-4812

Malicious code in bioql PyPI...

8.5CVSS6.6AI score0.00019EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/02/20 8:28 a.m.4 views

CVE-2025-0425

Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...

8.5CVSS7AI score0.00019EPSS
Exploits1References1
NVD
NVDadded 2025/02/18 8:15 a.m.9 views

CVE-2025-0425

Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...

8.5CVSS0.00019EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/02/18 7:57 a.m.11 views

CVE-2025-0425 Local Privilege Escalation via Config Manipulation

Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...

8.5CVSS0.00019EPSS
Exploits1References1
CVE
CVEadded 2025/02/18 7:57 a.m.56 views

CVE-2025-0425

Cordaware bestinformed Infoclient is vulnerable to local privilege escalation: a low-privileged user can change the server address to a malicious or spoofed server, enabling elevation to nt authority\system on Windows. This relies on default GUI permissions and can be mitigated by deploying a cus...

8.5CVSS7.1AI score0.00019EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/02/18 7:57 a.m.4 views

CVE-2025-0425 Local Privilege Escalation via Config Manipulation

Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. This is dangerous as the "bestinformed Infoclient" runs with elevated permissions "nt authority\system". By changing the...

8.5CVSS7AI score0.00019EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/02/18 12:0 a.m.2 views

PT-2025-6786 · Bestinformed +1 · Bestinformed Infoclient +1

Name of the Vulnerable Software and Affected Versions: bestinformed Infoclient affected versions not specified Description: A low-privileged user can change the server address of the bestinformed Server to which the bestinformed Infoclient connects, allowing them to escalate their privileges by...

8.5CVSS7.2AI score0.00019EPSS
Exploits1References7
Rows per page
Query Builder