CVE-2021-0121

Improper access control in the installer for some IntelR IrisR Xe MAX Dedicated Graphics Drivers for Windows 10 before version 27.20.100.9466 may allow authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-30211

Improper access control in some IntelR ME driver pack installer engines before version 2422.6.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-33874

Uncontrolled search path in some IntelR NUC 12 Pro Kits & Mini PCs - NUC12WS IntelR HID Event Filter Driver installation software before version 2.2.2.1 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel® NUC Kit Wireless Adapter Advisory

Summary: Potential security vulnerabilities in some Intel® NUC Kit Wireless Adapter driver installer software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2022-36400 Description: Path traversa...

Razer Synapse 代码问题漏洞

Razer Synapse is an application from Razer, Inc. designed to configure and customize Razer's line of hardware. A security vulnerability exists in versions prior to Razer Synapse 3.7.0830.081906 that stems from its insecure installation path, improper privilege management, and improper certificate...

CVE-2022-47632

Razer Synapse before 3.7.0830.081906 allows privilege escalation due to an unsafe installation path, improper privilege management, and improper certificate validation. Attackers can place malicious DLLs into %PROGRAMDATA%\Razer\Synapse3\Service\bin if they do so before the service is installed a...

Intel NUC 访问控制错误漏洞

The Intel NUC is a small minicomputer from Intel USA. An Access Control Error vulnerability exists in the Intel NUC M15 Laptop Kit HID Event Filter driver pack, which stems from a default privilege management error in the product's installer. An attacker could use this vulnerability to cause a...

CVE-2020-27992

Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILESX86%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users...

HPSBHF03633 rev.1 - Intel Rapid Storage Technology (RSTe) Driver Installer Vulnerability

Potential Security Impact Escalation of privilege VULNERABILITY SUMMARY HP has been notified of a security vulnerability with the driver pack installers for IntelR RSTe package versions before version 4.7.0.2083 that may allow an authenticated user to escalate privilege via local access. RESOLUTI...

Design/Logic Flaw

Untrusted search path vulnerability in RW-4040 driver installer for Windows 7 version 2.27 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-2189

CVE-2017-2189 affects Sharp RW-4040 driver installer for Windows 7 (version 2.27). The issue is an insecure DLL search path (CWE-427) that may allow arbitrary code execution when a Trojan horse DLL is loaded during installation, granting the attacker the privilege level of the user running the in...

Sharp RW-4040 driver installer for Windows untrusted search path vulnerability

Sharp RW-4040 driver installer for Windows is a Windows-based driver installer for IC card readers from Sharp Japan. An untrusted search path vulnerability exists in Sharp RW-4040 driver installer for Windows 7 version 2.27. An attacker can exploit this vulnerability to gain privileges with a...

RW-5100 driver installer may insecurely load Dynamic Link Libraries

Overview RW-5100 driver installer for IC Card Reader/Writer devices provided by Sharp Corporation contains an issue with the DLL search path, which may lead to insecurely load Dynamic Link Libraries CWE-427. Yuji Tounai of NTT Communications Corporation and BlackWingCat of PinkFlyingWhale reporte...