4832 matches found
Windows WalletService Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows WalletService allows an unauthorized attacker to elevate privileges locally...
Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
Heap-based buffer overflow in Connected Devices Platform Service Cdpsvc allows an authorized attacker to elevate privileges locally...
Windows Management Services Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Management Services allows an authorized attacker to elevate privileges locally...
Windows Hello Tampering Vulnerability
Incorrect privilege assignment in Windows Hello allows an unauthorized attacker to perform tampering locally...
Remote Procedure Call Information Disclosure Vulnerability
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an unauthorized attacker to disclose information locally...
Windows Management Services Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Management Services allows an authorized attacker to elevate privileges locally...
Desktop Window Manager Elevation of Privilege Vulnerability
Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
TPM Trustlet Information Disclosure Vulnerability
Out-of-bounds read in Windows TPM allows an authorized attacker to disclose information locally...
Windows Kernel Memory Elevation of Privilege Vulnerability
Time-of-check time-of-use toctou race condition in Windows Kernel Memory allows an authorized attacker to elevate privileges locally...
PT-2026-2702
Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description An issue exists in the Windows Cloud Files Mini Filter Driver where an untrusted pointer dereference can occur. This can allow a locally authorized attacker to gain elevated privileges. The...
PT-2026-2662
Name of the Vulnerable Software and Affected Versions Windows versions prior to the patchday containing the fix. Description A type confusion issue exists within the Windows Win32K ICOMP component. This allows a locally authorized attacker to gain elevated privileges. The issue involves accessing...
PT-2026-2672
Name of the Vulnerable Software and Affected Versions Microsoft Graphics Component affected versions not specified Description A flaw exists in the Microsoft Graphics Component that could allow a local attacker to gain elevated privileges. The issue is a use-after-free condition. Recommendations ...
PT-2026-2710
Name of the Vulnerable Software and Affected Versions Windows Management Services affected versions not specified Description A use-after-free condition exists in Windows Management Services that could allow a locally authenticated attacker to gain elevated privileges. The issue involves improper...
PT-2026-2725
Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description A flaw exists within the Windows Win32K component, specifically in the ICOMP area. This issue allows a locally authorized attacker to gain elevated privileges. The issue is an instance of a...
PT-2026-2691
Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description A flaw exists in the Desktop Window Manager DWM component of Windows that could allow a local attacker to gain elevated privileges. The issue involves a use-after-free condition...
GHSA-M86R-WR74-693H AcademySoftwareFoundation OpenColorIO has an out-of-bounds vulnerability
A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue affects the function ConvertToRegularExpression of the file src/OpenColorIO/FileRules.cpp. Performing a manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has...
Linux Distros Unpatched Vulnerability : CVE-2025-15506
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue affects the function ConvertToRegularExpression of the file...
CVE-2025-15504 lief-project LIEF ELF Binary Parser.tcc parse_binary null pointer dereference
A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...
CVE-2009-4330
Unspecified vulnerability in db2licm in the Engine Utilities component in IBM DB2 9.5 before FP5 has unknown impact and local attack vectors...