7320 matches found
CVE-2026-40952
The CVE-2026-40952 entry describes a privilege misconfiguration in the Windows Secure Access installer for the client and server prior to version 14.55. Local attackers with access to the affected system can elevate privileges to Administrator when Secure Access is installed in a non-default loca...
CVE-2026-40952
CVE-2026-40952 is a privilege misconfiguration in the Secure Access installer for the Windows client and server prior to version 14.55. Attackers with local access to the client or server can use it to elevate privileges to Administrator when Secure Access is installed in a non-default location...
CVE-2026-61449
Grav 2.0.1 contains a decompression-bomb size-cap bypass in ZipArchiver and GPM\Installer. The size bound introduced in 2.0.1 sums the uncompressed size declared in each entry's ZIP central-directory header ZipArchive::statIndex'size' and rejects archives exceeding...
CVE-2026-61449 Grav before 2.0.2 Decompression Bomb via Forged ZIP Size
Grav 2.0.1 contains a decompression-bomb size-cap bypass in ZipArchiver and GPM\Installer. The size bound introduced in 2.0.1 sums the uncompressed size declared in each entry's ZIP central-directory header ZipArchive::statIndex'size' and rejects archives exceeding...
EUVD-2026-44647
Grav 2.0.1 contains a decompression-bomb size-cap bypass in ZipArchiver and GPM\Installer. The size bound introduced in 2.0.1 sums the uncompressed size declared in each entry's ZIP central-directory header ZipArchive::statIndex'size' and rejects archives exceeding...
EUVD-2026-44591
The installer of HYPER SBI 2 insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...
CVE-2026-42936
The installer of HYPER SBI 2 insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...
osCommerce 2.3.4.1 - Remote Code Execution
osCommerce Online Merchant 2.3.4.1 contains a remote code execution caused by insecure default configuration and missing authentication in the installer workflow, letting unauthenticated attackers execute arbitrary PHP code via install4.php, exploit requires accessible /install/ directory after...
ShokoServer System - Local File Inclusion (LFI)
ShokoServer is a media server which specializes in organizing anime. In affected versions the /api/Image/WithPath endpoint is accessible without authentication and is supposed to return default server images. The endpoint accepts the parameter serverImagePath, which is not sanitized in any way...
CVE-2026-58540
Improper authorization in Windows Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-50490
Use after free in Windows Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-50400
Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-48572
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-48571
Use after free in Windows App Installer allows an authorized attacker to elevate privileges locally...
CVE-2026-58540 Windows Installer Elevation of Privilege Vulnerability
...
CVE-2026-58540
CVE-2026-58540 is a Windows Installer elevation-of-privilege vulnerability. The issue arises from improper authorization in Windows Installer, enabling a locally authenticated attacker to gain elevated privileges. CVSSv3.1 metrics (Microsoft-supplied) indicate a local attack vector, low attack co...
CVE-2026-50490 Windows Installer Elevation of Privilege Vulnerability
...
CVE-2026-50490
CVE-2026-50490 describes a use-after-free vulnerability in Windows Installer that could allow an authenticated, locally located attacker to elevate privileges. The initial description confirms local privilege escalation with high impact (CVE ID: 2026-50490; vulnerable component: Windows Installer...
CVE-2026-50400 Windows App Package Installer Elevation of Privilege Vulnerability
...
CVE-2026-50400
CVE-2026-50400 is a Windows App Installer elevation-of-privilege vulnerability caused by a stack-based buffer overflow. An attacker with local, low-privilege access could exploit this to gain higher privileges on the system. Public sources confirm a local-execution path via Windows App Installer ...