15 matches found
CVE-2026-57091
Stack-based buffer overflow in Windows File History Service allows an authorized attacker to elevate privileges locally...
CVE-2026-57091
CVE-2026-57091 affects Windows File History Service. A stack-based buffer overflow in the service allows an authorized attacker to elevate privileges locally. Evidence from multiple sources confirms affected component and local privilege escalation impact; Microsoft has released updates to addres...
EUVD-2021-21110
Malware in sbrugna...
CVE-2025-5962
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
CVE-2025-5962
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
CVE-2025-5962 Rhel-lightspeed: improper access control in lightspeed history management allows local privilege manipulation
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
CVE-2025-5962
CVE-2025-5962 affects Lightspeed history service. A local, unprivileged user can abuse inter-process communication with the history service to view, delete, or inject history entries, potentially manipulating another user’s chat history and enabling privilege misuse or unauthorized command execut...
CVE-2025-5962 Rhel-lightspeed: improper access control in lightspeed history management allows local privilege manipulation
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
PT-2025-38699
Name of the Vulnerable Software and Affected Versions Lightspeed affected versions not specified Description A flaw exists in the Lightspeed history service due to insufficient access controls. A local, unprivileged user can access and manipulate the chat history of another user on the same syste...
PT-2023-4366 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Kernel, which is associated with insufficient access control. This vulnerability can be exploited by an attack...
OESA-2021-1415 storm security update
Apache Storm realtime computation system Security Fixes: An Unsafe Deserialization vulnerability exists in the worker services of the Apache Storm supervisor server allowing pre-auth Remote Code Execution RCE. Apache Storm 2.2.x users should upgrade to version 2.2.1 or 2.3.0. Apache Storm 2.1.x...
CVE-2021-34455
Windows File History Service Elevation of Privilege Vulnerability...
Privilege escalation
Windows File History Service Elevation of Privilege Vulnerability...
CVE-2021-34455 Windows File History Service Elevation of Privilege Vulnerability
...
CVE-2020-8489
ABB System 800xA Information Management is affected by CVE-2020-8489 due to insufficient protection of inter-process communication functions. The vulnerability allows an attacker authenticated on the local system to inject data, potentially altering runtime values stored in the archive or making ...