4316 matches found
CVE-2025-24327
Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...
CVE-2025-20050
Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-30506
Uncontrolled search path for some Intel Driver and Support Assistant before version 25.2 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-30506
Summary of CVE-2025-30506 (Intel DSA) : Affected product is Intel Driver and Support Assistant (DSA) software prior to version 25.2. The issue is an uncontrolled search path that can enable privilege escalation. An unprivileged, authenticated user with high attack complexity and active user inter...
CVE-2025-30506
Uncontrolled search path for some Intel Driver and Support Assistant before version 25.2 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-27246
Incorrect default permissions for the IntelR Processor Identification Utility before version 8.0.43 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable local code execution...
CVE-2025-24842
Uncontrolled search path for the IntelR System Support Utility before version 4.1.0 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable local code execution. This result may...
CVE-2025-24842
Intel System Support Utility for Windows before 4.1.0 is affected by an uncontrolled search path vulnerability in Ring 3 (user applications). A local, unprivileged attacker could potentially escalate to privilege or execute code with local access, given high complexity and passive user interactio...
CVE-2025-24327
Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...
CVE-2025-24327
Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...
CVE-2025-20050
Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-20050
Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...
CVE-2025-20050
Intel CIP software prior to WIN_DCA_2.4.0.11001 is affected by an Uncontrolled search path issue in Ring 3 User Applications that can lead to privilege escalation and local code execution. The vulnerability arises from improper/unsafe path handling, enabling an unprivileged, authenticated user wi...
EUVD-2025-84342
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2024-57695
An issue in Agnitum Outpost Security Suite 7.5.3 3942.608.1810 and 7.6 3984.693.1842 allows a local attacker to execute arbitrary code via the lock function. The manufacturer fixed the vulnerability in version 8.0 4164.652.1856 from December 17, 2012...
CVE-2024-57695
An issue in Agnitum Outpost Security Suite 7.5.3 3942.608.1810 and 7.6 3984.693.1842 allows a local attacker to execute arbitrary code via the lock function. The manufacturer fixed the vulnerability in version 8.0 4164.652.1856 from December 17, 2012...
CVE-2025-11697
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2025-11697 Studio 5000 ® Simulation Interface Local Code Execution
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...
CVE-2025-11697
The CVE-2025-11697 entry describes a local code-execution vulnerability in Rockwell Automation’s Studio 5000 Simulation Interface exposed via the API. The issue allows a Windows user on the system to perform path-traversal file access, leading to execution of scripts with Administrator privileges...
CVE-2025-11697 Studio 5000 ® Simulation Interface Local Code Execution
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...