10 matches found
CVE-2025-67826
An issue was discovered in K7 Ultimate Security 17.0.2045. A Local Privilege Escalation LPE vulnerability in the K7 Ultimate Security antivirus can be exploited by a local unprivileged user on default installations of the product. Insecure access to a named pipe allows unprivileged users to edit...
CVE-2020-13173
Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...
CVE-2025-4660 Remote Code Execution in Windows Secure Connector/ HPS Inspection Engine via Insecure Named Pipe Access
A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible to the Everyone group and does not restrict remote connections, allowing any network-based attacker to connect without...
CVE-2025-4660
CVE-2025-4660 affects Forescout SecureConnector Windows agent. The issue arises from improper access controls on a named pipe (the FS SC UNINSTALL PIPE), which is accessible to Everyone and does not restrict remote connections, enabling network-based redirects of the SecureConnector agent to a ro...
CVE-2022-24285
Acer Care Center 4.00.30xx before 4.00.3042 contains a local privilege escalation vulnerability. The user process communicates with a service of system authority called ACCsvc through a named pipe. In this case, the Named Pipe is also given Read and Write rights to the general user. In addition,...
CVE-2020-13173
Initialization of the pcoipcredentialprovider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installin...
CVE-2018-6322
Panda Global Protection 17.0.1 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of .\pipe\PSANMSrvcPpal -- an "insecurely created named pipe." Ensures full access to Everyone users group...
CVE-2018-6183
BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". Ensures full access to Everyone users group...
CVE-2018-6183
BitDefender Total Security 2018 is affected by CVE-2018-6183. The issue allows local users to gain privileges or cause a denial of service by impersonating all channels through an insecurely created named pipe, granting full access to the Everyone group. The root cause centers on insecure named p...
PT-2018-17534
Name of the Vulnerable Software and Affected Versions Kingsoft WPS Office Free version 10.2.0.5978 Description The issue allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of .pipeWPSCloudSvrWpsCloudSvr, which is described as an...