CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2025-0886 concerns an incorrect permissions vulnerability in Lenovo/ Elliptic Labs Virtual Lock Sensor that could allow a local, authenticated user to escalate privileges. The available documents identify the affected component as the Elliptic Labs Virtual Lock Sensor and describe the root ca...

8.5CVSS6.8AI score0.00067EPSS

Exploits0References1

Vulnrichment•added 2025/01/22 12:0 a.m.•7 views

CVE-2024-42012

GRAU DATA Blocky before 3.1 stores passwords encrypted rather than hashed. At the login screen, the user's password is compared to the user's decrypted cleartext password. An attacker with Windows admin or debugging rights can therefore steal the user's Blocky password and from there impersonate...

6.9AI score0.00044EPSS

Exploits0References2

UbuntuCve•added 2005/01/10 5:0 a.m.•34 views

CVE-2004-1270

lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers...

2.1CVSS5.9AI score0.00107EPSS

Exploits1References2

NVD•added 2003/12/31 5:0 a.m.•14 views

CVE-2003-1167

misc.cpp in KPopup 0.9.1 trusts the PATH variable when executing killall, which allows local users to elevate their privileges by modifying the PATH variable to reference a malicious killall program...

7.2CVSS6.2AI score0.00205EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by