240 matches found
OESA-2025-1853 gdb security update
GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the functi...
CVE-2024-22752
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain escalated privileges via use of crafted executable launched from the application installation directory...
CVE-2022-37771
IObit Malware Fighter v9.2 for Microsoft Windows lacks tamper protection, allowing authenticated attackers with Administrator privileges to modify processes within the application and escalate privileges to SYSTEM via a crafted executable...
CVE-2025-27998
An issue in Valvesoftware Steam Client Steam Client 1738026274 allows attackers to escalate privileges via a crafted executable or DLL...
CVE-2022-36670
PCProtect Endpoint prior to v5.17.470 for Microsoft Windows lacks tamper protection, allowing authenticated attackers with Administrator privileges to modify processes within the application and escalate privileges to SYSTEM via a crafted executable...
CVE-2022-28067
An incorrect access control issue in Sandboxie Classic v5.55.13 allows attackers to cause a Denial of Service DoS in the Sandbox via a crafted executable...
CVE-2020-24307
An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable file. NOTE: third parties were unable to reproduce any scenario in which the claimed access of BUILTIN\Users:M is present...
CVE-2025-27998
An issue in Valvesoftware Steam Client Steam Client 1738026274 allows attackers to escalate privileges via a crafted executable or DLL...
Valve Steam Client 安全漏洞
Valve Steam Client is a digital game distribution client from Valve Corporation, USA. A security vulnerability exists in Valve Steam Client version 1738026274, which originates from a specially crafted executable or DLL, and may result in elevated privileges...
CVE-2025-27998
An issue in Valvesoftware Steam Client Steam Client 1738026274 allows attackers to escalate privileges via a crafted executable or DLL...
CVE-2025-27998
An issue in Valvesoftware Steam Client Steam Client 1738026274 allows attackers to escalate privileges via a crafted executable or DLL...
CVE-2025-27998
CVE-2025-27998 affects Valve’s Steam Client (version 1738026274). The issue allows local privilege escalation via a crafted executable or DLL, with a CVSSv3.1 base score of 8.4 (HIGH) and impact on confidentiality, integrity, and availability. Affected component: Steam Client; root cause and exac...
CVE-2025-25598
Incorrect access control in the scheduled tasks console of Inova Logic CUSTOMER MONITOR CM v3.1.757.1 allows attackers to escalate privileges via placing a crafted executable into a scheduled task...
CVE-2024-55511
A null pointer dereference vulnerability in Macrium Reflect prior to 8.1.8017 allows a local attacker to cause a system crash or potentially elevate their privileges via executing a specially crafted executable...
Macrium Reflect 安全漏洞
Macrium Reflect is a backup utility for Microsoft Windows from Macrium. A security vulnerability exists in Macrium Reflect versions prior to 8.1.8017, which stems from the presence of a null pointer dereference that allows an attacker to elevate its privileges by executing a specially crafted...
CVE-2024-22752
CVE-2024-22752 concerns an insecure permissions issue in EaseUS MobiMover version 6.0.5 Build 21620. Multiple sources (NVD, Red Hat, CNNVD, CVE listing) describe that an attacker can escalate privileges by exploiting a crafted executable launched from the application installation directory. The r...
CVE-2024-22752
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain escalated privileges via use of crafted executable launched from the application installation directory...
CVE-2024-22752
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain escalated privileges via use of crafted executable launched from the application installation directory...
Design/Logic Flaw
Insecure Permissions issue in Raiden Professional Server RaidenFTPD v.2.4 build 4005 allows a local attacker to gain privileges and execute arbitrary code via crafted executable running from the installation directory...
SUSE CVE-2022-48063
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function loadseparatedebugfiles at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack...