18 matches found
CVE-2025-13154
An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges...
EUVD-2025-206290
An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges...
CVE-2025-13154
An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges...
CVE-2025-13154
An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges...
CVE-2025-13154
An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantage that could allow an authenticated local user to perform an arbitrary file deletion with elevated privileges...
CVE-2025-13154
CVE-2025-13154 affects Lenovo Vantage SmartPerformanceAddin. Root cause: improper link following enabling an authenticated local user to delete arbitrary files with elevated privileges. Impact: local privilege escalation with high availability impact; base metrics: CVSS v3.1 (AV:L/AC:L/PR:L/UI:N/...
PT-2026-2958
Name of the Vulnerable Software and Affected Versions Lenovo Vantage SmartPerformanceAddin versions prior to 1.1.0.1111 Description An improper link following issue exists in the SmartPerformanceAddin for Lenovo Vantage. This allows an authenticated local user to perform arbitrary file deletion...
ASUS Armoury Crate 安全漏洞
ASUS Armoury Crate is a utility software developed by ASUS to centrally control and manage ROG Gamerland and some ASUS gaming products. ASUS Armoury Crate suffers from a link following improper vulnerability that can be exploited by an attacker to cause a local elevation of privilege...
EUVD-2016-10406
Malware in sbrugna...
Trend Micro Security 安全漏洞
Trend Micro Security is an antivirus software from Trend Micro. A security vulnerability exists in Trend Micro Security version 17.8, which stems from improper link following and could lead to local elevation of privilege...
Trend Micro Security 安全漏洞
Trend Micro Security is an antivirus software from Trend Micro. A security vulnerability exists in Trend Micro Security version 17.8, which stems from improper link following and could lead to local elevation of privilege...
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1321)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization for ARM 64 3.0.1.0 : qemu-kvm (EulerOS-SA-2019-1405)
According to the versions of the qemu-kvm packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An integer overflow issue was found in the NE200 NIC emulation. It could occur while receiving packets from the...
EulerOS Virtualization 2.5.1 : qemu-kvm (EulerOS-SA-2018-1321)
According to the version of the qemu-kvm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest cou...
Input validation
Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host...
CVE-2016-9602
CVE-2016-9602 is tied to QEMU (qemu-kvm) built with VirtFS where, before version 2.9, a privileged guest user can trigger an improper link following to access the host filesystem outside the shared folder, potentially escalating privileges on the host. The connected EulerOS advisory confirms this...
Debian: Security Advisory (DLA-1035-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2016-9602
Qemu before version 2.9 is vulnerable to an improper link following when built with the VirtFS. A privileged user inside guest could use this flaw to access host file system beyond the shared folder and potentially escalating their privileges on a host...