Lucene search
+L

15 matches found

NVD
NVD
added 5 days ago4 views

CVE-2026-57091

Stack-based buffer overflow in Windows File History Service allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00361EPSS
Exploits0References1
CVE
CVE
added 5 days ago7 views

CVE-2026-57091

CVE-2026-57091 affects Windows File History Service. A stack-based buffer overflow in the service allows an authorized attacker to elevate privileges locally. Evidence from multiple sources confirms affected component and local privilege escalation impact; Microsoft has released updates to addres...

7.8CVSS6.1AI score0.00361EPSS
Exploits0References1Affected Software11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-21110

Malware in sbrugna...

7.8CVSS7.7AI score0.00457EPSS
Exploits0References2
NVD
NVD
added 2025/09/22 8:15 a.m.44 views

CVE-2025-5962

A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...

7.7CVSS0.00215EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2025/09/22 8:4 a.m.2 views

CVE-2025-5962

A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...

7.7CVSS6.1AI score0.00215EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/09/22 8:4 a.m.2 views

CVE-2025-5962 Rhel-lightspeed: improper access control in lightspeed history management allows local privilege manipulation

A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...

7.7CVSS6.9AI score0.00215EPSS
Exploits0References4
CVE
CVE
added 2025/09/22 8:4 a.m.38 views

CVE-2025-5962

CVE-2025-5962 affects Lightspeed history service. A local, unprivileged user can abuse inter-process communication with the history service to view, delete, or inject history entries, potentially manipulating another user’s chat history and enabling privilege misuse or unauthorized command execut...

7.7CVSS6.9AI score0.00215EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/22 8:4 a.m.51 views

CVE-2025-5962 Rhel-lightspeed: improper access control in lightspeed history management allows local privilege manipulation

A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...

7.7CVSS0.00215EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.15 views

PT-2025-38699

Name of the Vulnerable Software and Affected Versions Lightspeed affected versions not specified Description A flaw exists in the Lightspeed history service due to insufficient access controls. A local, unprivileged user can access and manipulate the chat history of another user on the same syste...

7.7CVSS6.1AI score0.00215EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2023/08/08 12:0 a.m.5 views

PT-2023-4366 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Kernel, which is associated with insufficient access control. This vulnerability can be exploited by an attack...

7.8CVSS8.9AI score0.10996EPSS
Exploits0References15
OSV
OSV
added 2021/11/04 11:3 a.m.4 views

OESA-2021-1415 storm security update

Apache Storm realtime computation system Security Fixes: An Unsafe Deserialization vulnerability exists in the worker services of the Apache Storm supervisor server allowing pre-auth Remote Code Execution RCE. Apache Storm 2.2.x users should upgrade to version 2.2.1 or 2.3.0. Apache Storm 2.1.x...

9.8CVSS7.7AI score0.84489EPSS
Exploits5References2
OSV
OSV
added 2021/07/16 9:15 p.m.2 views

CVE-2021-34455

Windows File History Service Elevation of Privilege Vulnerability...

7.8CVSS7.3AI score0.00457EPSS
Exploits0References1
Prion
Prion
added 2021/07/16 9:15 p.m.17 views

Privilege escalation

Windows File History Service Elevation of Privilege Vulnerability...

4.6CVSS7.6AI score0.00457EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2021/07/16 8:19 p.m.29 views

CVE-2021-34455 Windows File History Service Elevation of Privilege Vulnerability

...

7.8CVSS8.3AI score0.00457EPSS
Exploits0References1
CVE
CVE
added 2020/04/29 1:59 a.m.92 views

CVE-2020-8489

ABB System 800xA Information Management is affected by CVE-2020-8489 due to insufficient protection of inter-process communication functions. The vulnerability allows an attacker authenticated on the local system to inject data, potentially altering runtime values stored in the archive or making ...

7.8CVSS7.4AI score0.00326EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder