Lucene search
K

10 matches found

Vulnrichment
Vulnrichment
added 2025/12/22 12:0 a.m.3 views

CVE-2025-67826

An issue was discovered in K7 Ultimate Security 17.0.2045. A Local Privilege Escalation LPE vulnerability in the K7 Ultimate Security antivirus can be exploited by a local unprivileged user on default installations of the product. Insecure access to a named pipe allows unprivileged users to edit...

6.2AI score0.0013EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:12 p.m.10 views

CVE-2020-13173

Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...

7.8CVSS6.9AI score0.00232EPSS
Exploits0
Cvelist
Cvelist
added 2025/05/13 5:34 p.m.31 views

CVE-2025-4660 Remote Code Execution in Windows Secure Connector/ HPS Inspection Engine via Insecure Named Pipe Access

A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible to the Everyone group and does not restrict remote connections, allowing any network-based attacker to connect without...

8.7CVSS0.00957EPSS
Exploits1References1
CVE
CVE
added 2025/05/13 5:34 p.m.96 views

CVE-2025-4660

CVE-2025-4660 affects Forescout SecureConnector Windows agent. The issue arises from improper access controls on a named pipe (the FS SC UNINSTALL PIPE), which is accessible to Everyone and does not restrict remote connections, enabling network-based redirects of the SecureConnector agent to a ro...

9.8CVSS7.6AI score0.00957EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/03/10 5:46 p.m.8 views

CVE-2022-24285

Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority called ACCsvc through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general user. In addition,...

7.8CVSS7.1AI score0.00222EPSS
Exploits0References2
OSV
OSV
added 2020/05/28 10:15 p.m.3 views

CVE-2020-13173

Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...

7.8CVSS7.1AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2018/03/12 9:29 p.m.3 views

CVE-2018-6322

Panda Global Protection 17.0.1 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of .\pipe\PSANMSrvcPpal -- an "insecurely created named pipe." Ensures full access to Everyone users group...

7.8CVSS5.8AI score0.00299EPSS
Exploits1References1
OSV
OSV
added 2018/03/12 9:29 p.m.4 views

CVE-2018-6183

BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". Ensures full access to Everyone users group...

7.8CVSS5.8AI score0.00305EPSS
Exploits0References1
CVE
CVE
added 2018/03/12 9:0 p.m.42 views

CVE-2018-6183

BitDefender Total Security 2018 is affected by CVE-2018-6183. The issue allows local users to gain privileges or cause a denial of service by impersonating all channels through an insecurely created named pipe, granting full access to the Everyone group. The root cause centers on insecure named p...

7.8CVSS7.5AI score0.00305EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2018/03/12 12:0 a.m.9 views

PT-2018-17534

Name of the Vulnerable Software and Affected Versions Kingsoft WPS Office Free version 10.2.0.5978 Description The issue allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of .pipeWPSCloudSvrWpsCloudSvr, which is described as an...

7.8CVSS7.1AI score0.00333EPSS
Exploits2References6
Rows per page
Query Builder