EUVD-2019-2797

Malware in sbrugna...

EUVD-2019-5766

Malware in sbrugna...

Design/Logic Flaw

The Device42 Main Appliance before 17.05.01 does not sanitize user input in its Nmap Discovery utility. An attacker with permissions to add or edit jobs run by this utility can inject an extra argument to overwrite arbitrary files as the root user on the Remote Collector...

CVE-2019-14605

The CVE-2019-14605 affects Intel's SCS Platform Discovery Utility (all versions). The root cause is improper permissions in the installer, enabling an authenticated local user to potentially escalate privileges (local, low complexity, privilege requirement). Impact includes potentially elevated p...

Intel SCS Platform Discovery Utility CVE-2019-14605 Local Privilege Escalation Vulnerability

Description Intel SCS Platform Discovery Utility is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Technologies Affected Intel SCS Platform Discovery Utility Recommendations Permit local access for trusted individuals only...

Intel Releases Security Updates

Intel has released security updates to address vulnerabilities in multiple products. An authenticated attacker with local access could exploit some of these vulnerabilities to gain escalation of privileges. The Cybersecurity and Infrastructure Security Agency CISA encourages users and...

Intel® SCS Platform Discovery Utility Advisory

Summary: A potential security vulnerability in the Intel® Setup and Configuration Software SCS Platform Discovery Utility may allow escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for the Intel® SCS...

Intel SCS Discovery Utility Privilege Permission and Access Control Issues Vulnerability

Intel SCS Discovery Utility is a utility program from Intel Corporation USA for obtaining detailed data about Intel AMT. The Intel SCS Discovery Utility is vulnerable to a privilege permission and access control issue. The vulnerability stems from a lack of effective privilege permission and acce...

CVE-2019-11093

Unquoted service path in the installer for the IntelR SCS Discovery Utility version 12.0.0.129 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2019-11093

Unquoted service path in the installer for the IntelR SCS Discovery Utility version 12.0.0.129 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access...

Privilege escalation

Unquoted service path in the installer for the IntelR SCS Discovery Utility version 12.0.0.129 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2019-11093

CVE-2019-11093 affects Intel SCS Discovery Utility and Intel ACU Wizard. Unquoted service path in the installers for version 12.0.0.129 and earlier may allow an authenticated local user to escalate privileges. Root cause: unquoted service path in installer services. Affected products: Intel SCS D...

CVE-2019-11093

Unquoted service path in the installer for the IntelR SCS Discovery Utility version 12.0.0.129 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel® SCS Discovery Utility and Intel® ACU Wizard Advisory

Summary: A potential security vulnerability in Intel® Setup and Configuration Software Intel® SCS Discovery Utility and Intel® AMT Configuration Utility Wizard Intel® ACU Wizard may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities...

CVE-2017-12314

Cisco FindIT Network Discovery Utility is affected by a DLL preloading vulnerability. An authenticated, local attacker could place a malicious DLL in the host’s search path, causing the utility to load the attacker’s DLL and partially compromise confidentiality, integrity, and availability on the...

Cisco FindIT Discovery Utility Insecure Library Loading Vulnerability

A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to the device availability, confidentiality, and integrity. The vulnerability is due to the application loading a...

CVE-2017-12252

A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to device availability, confidentiality, and integrity. The vulnerability is due to the application loading a malicio...

CVE-2017-12252

The CVE-2017-12252 issue affects Cisco FindIT Network Discovery Utility. It enables a local, authenticated attacker to perform a DLL preloading attack by placing a malicious DLL in the host’s search path, causing the system to load the attacker’s DLL and partially compromise confidentiality, inte...

Cisco FindIT DLL Preloading Vulnerability

A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to device availability, confidentiality, and integrity. The vulnerability is due to the application loading a malicio...