Lucene search
+L

14 matches found

NVD
NVD
added 2026/05/05 12:16 p.m.30 views

CVE-2026-43535

OpenClaw before 2026.4.14 contains an authorization context reuse vulnerability in collect-mode queue batches that allows messages from different senders to inherit the final sender's authorization context. Attackers can exploit this by sending multiple queued messages to drain batches using a mo...

8.1CVSS0.0022EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 6:21 p.m.15 views

CVE-2021-22425

A component of the HarmonyOS has a Double Free vulnerability. Local attackers may exploit this vulnerability to cause Root Elevating Privileges...

7.8CVSS6.8AI score0.00177EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/08/28 12:0 a.m.4 views

Portábilis i-Educar 安全漏洞

Portábilis i-Educar is an application from Portábilis. It can easily help you with basic and technical education. Portábilis i-Educar has a security vulnerability that stems from the ability to change its user type to administrator...

8.1CVSS8AI score0.01365EPSS
Exploits2References3
MSRC
MSRC
added 2023/10/05 7:0 a.m.14 views

Cybersecurity Awareness Month 2023: Elevating Security Together

As the 20th anniversary of Cybersecurity Awareness Month begins, I find myself reflecting on the strides made since its inception. The journey to enhance and improve cybersecurity is ongoing and extends beyond October. It’s not merely a technological challenge; it is fundamentally about people...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2021/10/22 12:0 a.m.6 views

Kaspersky Password Manager 安全漏洞

Kaspersky Password Manager is an application from the Russian company Kaspersky. It provides a function to manage passwords. A security vulnerability exists in Kaspersky Password Manager that allows an attacker to increase the process integrity level from medium to high...

7.8CVSS7.6AI score0.00328EPSS
Exploits0References6
Cvelist
Cvelist
added 2021/08/03 5:20 p.m.30 views

CVE-2021-22425

A component of the HarmonyOS has a Double Free vulnerability. Local attackers may exploit this vulnerability to cause Root Elevating Privileges...

7.7AI score0.00177EPSS
Exploits0References1
Gitee
Gitee
added 2021/05/30 10:2 a.m.7 views

PowerShell-Suite

This repository is an offensive tool for Windows UAC User Account Control bypass. It provides a framework to perform UAC bypasses based on auto-elevating IFileOperation COM object method calls. The tool is written in C and uses the .NET framework. The tool supports several methods for UAC bypass,...

8AI score
Exploits0
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2016:3217-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00437EPSS
Exploits0References5
Prion
Prion
added 2021/02/09 5:15 a.m.22 views

Cross site scripting

Tufin SecureTrack R20-2 GA contains reflected + stored XSS as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or also later by different users. Both stored, and reflected payloads are triggerable by admin, so...

2.3CVSS5.4AI score0.00439EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/24 12:0 a.m.8 views

The vulnerability of the Intel High Definition Audio technology lies in privilege management errors, which allow attackers to elevate their privileges.

The vulnerability of the Intel High Definition Audio technology is related to privilege management errors. Exploiting this vulnerability can allow an attacker to enhance their privileges...

6.7CVSS7.2AI score0.00311EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2020/10/15 4:15 p.m.25 views

CVE-2020-25859

The QCMAPCLI utility in the Qualcomm QCMAP software suite prior to versions released in October 2020 uses a system call without validating the input, while handling a SetGatewayUrl request. A local attacker with shell access can pass shell metacharacters and run arbitrary commands. If QCMAPCLI ca...

7.2CVSS0.00271EPSS
Exploits1References1
Apple
Apple
added 2020/07/27 8:18 a.m.57 views

About the security content of iOS 12.2 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS0.7AI score0.18108EPSS
Exploits10Affected Software1
Gitee
Gitee
added 2020/03/08 1:25 p.m.5 views

PowerShell-Suite

This is a PowerShell script called Bypass-UAC, which is designed to bypass User Account Control UAC on Windows systems. The script uses a technique called "auto-elevating IFileOperation COM object method calls" to achieve this. The script supports several methods for bypassing UAC, including:...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Solaris 8 libsldap Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/2931/info Solaris 8 ships with a shared library that implements LDAP functionality called 'libsldap'. This library is linked to by a number of system utilities, many of them installed setuid or setgid. Libsldap contains a...

7.1AI score
Exploits0
Rows per page
Query Builder