16 matches found
CVE-2025-63945
A privilege escalation PE vulnerability in the Tencent iOA app thru 210.9.28693.621001 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition...
CVE-2025-63945
A privilege escalation PE vulnerability in the Tencent iOA app thru 210.9.28693.621001 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition...
CVE-2025-63945
A privilege escalation PE vulnerability in the Tencent iOA app thru 210.9.28693.621001 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition...
CVE-2025-63945
A privilege escalation PE vulnerability in the Tencent iOA app thru 210.9.28693.621001 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition...
PT-2026-21541
Name of the Vulnerable Software and Affected Versions Tencent iOA versions through 210.9.28693.621001 Description A privilege escalation issue exists in the Tencent iOA app on Windows devices. A local user can execute programs with elevated privileges by exploiting a race condition. Recommendatio...
Tencent iOA 安全漏洞
Tencent iOA is a zero-trust, borderless office and terminal security management platform developed by Tencent Corporation in China. Versions of Tencent iOA starting from 210.9.28693.621001 and earlier contain security vulnerabilities. These vulnerabilities stem from local users being able to...
CVE-2025-63945
CVE-2025-63945 is a privilege-escalation vulnerability in the Tencent iOA app for Windows up to version 210.9.28693.621001. The issue is a race-condition at local privilege escalation time, allowing a non-privileged user to execute programs with SYSTEM-like privileges under certain conditions. Pu...
CVE-2025-63945
A privilege escalation PE vulnerability in the Tencent iOA app thru 210.9.28693.621001 on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition...
EUVD-2025-5316
Malicious code in bioql PyPI...
CVE-2025-1091
A Broken Authorization schema exists where any authenticated user could download IOA script and configuration files if the URL is known...
CVE-2025-1091 Broken Authorization Schema
A Broken Authorization schema exists where any authenticated user could download IOA script and configuration files if the URL is known...
CVE-2025-1091
CVE-2025-1091 is tied to Tenable Identity Exposure before version 3.77.9, where a Broken Authorization issue allowed any authenticated user to download IOA scripts and configuration files if the URL is known. Publicly available documents indicate the vulnerability is addressed in Tenable’s adviso...
The Future of Network Security: Predictive Analytics and ML-Driven Solutions
As the digital age evolves and continues to shape the business landscape, corporate networks have become increasingly complex and distributed. The amount of data a company collects to detect malicious behaviour constantly increases, making it challenging to detect deceptive and unknown attack...
Msticpy - Microsoft Threat Intelligence Security Tools
Microsoft Threat Intelligence Python Security Tools. msticpy is a library for InfoSec investigation and hunting in Jupyter Notebooks. It includes functionality to: query log data from multiple sources enrich the data with Threat Intelligence, geolocations and Azure resource data extract Indicator...
ioa.or.kr Cross Site Scripting vulnerability OBB-1320727
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Managed Detection and Response analytics report, H1 2019
Download full report PDF Introduction This report contains the results of the Managed Detection and Response MDR service brand name - Kaspersky Managed Protection. The MDR service provides managed threat hunting and initial incident response. Threat hunting is the practice of iteratively searchin...