Lucene search
K

27 matches found

Vulnrichment
Vulnrichment
added 2026/06/08 6:0 a.m.8 views

CVE-2026-11494 TOTOLINK AC1200 T8 vsftpd vsftpd.conf least privilege violation

A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...

5.3CVSS5.1AI score0.00215EPSS
Exploits0References6
Zero Day Initiative
Zero Day Initiative
added 2026/05/28 12:0 a.m.13 views

TrendAI Vision One Security Agent Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of TrendAI Vision One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within th...

7.8CVSS7AI score0.003EPSS
Exploits0References1
CVE
CVE
added 2026/05/21 1:4 p.m.22 views

CVE-2026-45208

Technical details (affected product versions, root cause, exploit paths, and mitigations) are not publicly available in the provided documents. Monitor for updates from official advisories.

7.8CVSS6AI score0.003EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/02/02 8:18 p.m.19 views

CVE-2026-0924

CVE-2026-0924 affects BuhoCleaner 1.15.2. The Red Hat/NVD notes describe an insecure XPC service that allows local, unprivileged users to escalate privileges to root via insecure functions. The provided documents identify the affected component as the BuhoCleaner XPC service and indicate local pr...

7.3CVSS5.3AI score0.00162EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/23 12:0 a.m.3 views

PT-2025-43539

Name of the Vulnerable Software and Affected Versions NVIDIA Project G-Assist affected versions not specified Description NVIDIA Project G-Assist contains a flaw that could allow an attacker to escalate permissions. Exploitation of this issue may result in code execution, privilege escalation, da...

7.8CVSS6.7AI score0.0015EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-18358

Malware in sbrugna...

7CVSS6.7AI score0.00326EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-4896

Malware in sbrugna...

9CVSS7AI score0.01492EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-15819

Malware in sbrugna...

7.1CVSS6.3AI score0.00309EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-34821

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00769EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-3946

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.016EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-40319

Malicious code in bioql PyPI...

6.7CVSS6.8AI score0.01246EPSS
Exploits2References13
The Hacker News
The Hacker News
added 2025/04/09 7:6 a.m.39 views

Microsoft Patches 126 Flaws Including Actively Exploited Windows CLFS Vulnerability

Microsoft has released security fixes to address a massive set of 126 flaws affecting its software products, including one vulnerability that it said has been actively exploited in the wild. Of the 126 vulnerabilities, 11 are rated Critical, 112 are rated Important, and two are rated Low in...

8.1CVSS8.5AI score0.48973EPSS
Exploits23
The Hacker News
The Hacker News
added 2025/03/04 4:7 a.m.33 views

Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities

Google has released its monthly Android Security Bulletin for March 2025 to address a total of 44 vulnerabilities, including two that it said have come under active exploitation in the wild. The two high-severity vulnerabilities are listed below - CVE-2024-43093 - A privilege escalation flaw in...

7.8CVSS7.1AI score0.03558EPSS
Exploits1
OSV
OSV
added 2024/11/22 10:15 p.m.2 views

CVE-2024-6871

G DATA Total Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the targ...

7.8CVSS7.4AI score0.00224EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/05/03 12:0 a.m.4 views

MediaTek 芯片安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company MediaTek. The MediaTek chips are affected by a security vulnerability that stems from a lack of privilege checking, which can be exploited by an attacker to cause a local privilege escalation. The following products and versio...

7.8CVSS7.3AI score0.00098EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/05/02 12:0 a.m.4 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android, which originates in onEntryUpdated in OngoingCallController.kt, and due to intent redirection, can initiate non- exported activity, an attacker can use...

7.8CVSS7.4AI score0.00113EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/02/10 12:0 a.m.6 views

The vulnerability of the Hyper-V hardware virtualization system in the Windows operating system allows a hacker to gain increased privileges.

The vulnerability of the Hyper-V hardware virtualization technology in the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to increase their privileges...

9CVSS7.6AI score0.00928EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/08/11 12:0 a.m.6 views

PT-2020-6995

Name of the Vulnerable Software and Affected Versions EVGA Precision X1 versions through 1.0.6 winring0 project winring0 version 1.2.0 Description The WinRing0.sys and WinRing0x64.sys drivers versions 1.2.0 in EVGA Precision X1 through 1.0.6 contain a flaw that allows local users, including those...

7.8CVSS7.3AI score0.00605EPSS
Exploits1References18
OSV
OSV
added 2020/04/15 2:15 p.m.23 views

CVE-2020-10699

A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root...

7.8CVSS6.4AI score0.00348EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/06/25 2:17 p.m.155 views

Important: Red Hat Security Advisory: Red Hat CloudForms security, bug fix, and enhancement update

An update is now available for CloudForms Management Engine 5.8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.6AI score0.27065EPSS
Exploits10References130
Rows per page
Query Builder