Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:33 a.m.7 views

CVE-2024-50592

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a race condition in the Elefant Update Service during the repair or update process. When using the repair function, the service queries the server for a lis...

7CVSS7.4AI score0.00176EPSS
Exploits0References1
NVD
NVD
added 2024/11/08 1:15 p.m.18 views

CVE-2024-50592

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a race condition in the Elefant Update Service during the repair or update process. When using the repair function, the service queries the server for a lis...

7CVSS0.00176EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/11/08 12:15 p.m.15 views

CVE-2024-50592 Local Privilege Escalation via Race Condition

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a race condition in the Elefant Update Service during the repair or update process. When using the repair function, the service queries the server for a lis...

7.1AI score0.00176EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/08 12:15 p.m.23 views

CVE-2024-50592 Local Privilege Escalation via Race Condition

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a race condition in the Elefant Update Service during the repair or update process. When using the repair function, the service queries the server for a lis...

0.00176EPSS
Exploits0References2
CVE
CVE
added 2024/11/08 12:15 p.m.50 views

CVE-2024-50592

CVE-2024-50592 describes a local privilege escalation in HASOMED Elefant software, via a race condition in the Elefant Update Service during repair/update. An attacker with local access can exploit the window between copying vulnerable executables to a user-writable folder (C:\Elefant1) and the f...

7CVSS7AI score0.00176EPSS
Exploits0References3
NVD
NVD
added 2024/11/08 12:15 p.m.10 views

CVE-2024-50591

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. The command injection can be exploited by communicating with the Elefant Update Service whi...

7.8CVSS0.02005EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/11/08 12:1 p.m.8 views

CVE-2024-50591 Local Privilege Escalation via Command Injection

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. The command injection can be exploited by communicating with the Elefant Update Service whi...

7.3AI score0.02005EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/08 12:1 p.m.18 views

CVE-2024-50591 Local Privilege Escalation via Command Injection

An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. The command injection can be exploited by communicating with the Elefant Update Service whi...

0.02005EPSS
Exploits0References2
CVE
CVE
added 2024/11/08 12:1 p.m.49 views

CVE-2024-50591

CVE-2024-50591 affects the Elefant Software Updater (ESU) on Windows. The vulnerability is a local privilege escalation via a command-injection flaw in the ESU service (running as NT AUTHORITY\SYSTEM) that can be triggered by sending a crafted MessageType.SupportServiceInfos message to the local ...

7.8CVSS7.7AI score0.02005EPSS
Exploits0References3
Rows per page
Query Builder