PT-2024-16343 · Rapid7 · Rapid7 Velociraptor Msi Installer

Name of the Vulnerable Software and Affected Versions: Rapid7 Velociraptor MSI Installer versions prior to 0.73.3 Description: The issue arises from the Rapid7 Velociraptor MSI Installer creating the installation directory with WRITE DACL permission to the BUILTINUsers group. This allows local...

CVE-2018-18519

BestXsoftware Best Free Keylogger before 6.0.0 allows local users to gain privileges via a Trojan horse "%PROGRAMFILES%\BFK 5.2.9\syscrb.exe" file because of insecure permissions for the BUILTIN\Users group...