3 matches found
PT-2026-4506
Name of the Vulnerable Software and Affected Versions LogonExpert version 8.1 Description LogonExpert 8.1 has an unquoted service path issue within the LogonExpertSvc service, which operates with LocalSystem privileges. This allows attackers to potentially place malicious executables in...
CVE-2022-31590
SAP PowerDesigner Proxy - version 16.7, allows an attacker with low privileges and has local access, with the ability to work around system’s root disk access restrictions to Write/Create a program file on system disk root path, which could then be executed with elevated privileges of the...
CVE-2019-17066
In Ivanti WorkSpace Control before 10.4.40.0, a user can elevate rights on the system by hijacking certain user registries. This is possible because pwrgrid.exe first checks the Current User registry hives HKCU when starting an application with elevated rights...