3 matches found
CVE-2023-1412 Local Privilege Escalation Vulnerability in WARP's MSI Installer
An unprivileged non-admin user can exploit an Improper Access Control vulnerability in the Cloudflare WARP Client for Windows = 2022.12.582.0 to perform privileged operations with SYSTEM context by working with a combination of opportunistic locks oplock and symbolic links which can both be creat...
CVE-2022-26319
An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and 2.0 could allow a local attacker to place an arbitrarily generated DLL file in an installer folder to elevate local privileges. Please note: an attacker must first obtain the ability to execute...
DLL Search Path and Symbolic Link Vulnerabilities - Lenovo Support US
Lenovo Security Advisory: LEN-27431 Potential Impact: Privilege escalation Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2019-6173, CVE-2019-6196 Summary Description: DLL search path and symbolic link vulnerabilities could allow privilege escalation in some Lenovo...