PT-2024-19147 · Google · Android

Name of the Vulnerable Software and Affected Versions: TBD affected versions not specified Description: The issue is related to an Authentication Bypass due to improperly used crypto, which could lead to local escalation of privilege with no additional execution privileges needed. User interactio...

CVE-2024-20023

CVE-2024-20023 concerns the MediaTek/flashc component, where an out-of-bounds write can occur due to lack of validation. This could permit local escalation to SYSTEM privileges without user interaction. The issue is documented across several sources (e.g., NVD/Red Hat/NCSC etc.) and is associated...

CVE-2024-2007

CVE-2024-2007 concerns OpenBMB XAgent 1.0.0, specifically a vulnerability in the Privileged Mode component that enables sandbox issues. The root cause is described as a sandboxing failure allowing local exploitation, with the attack vector labeled as LOCAL and user interaction not required. The e...

PT-2024-6049 · Unknown +5 · Performance Co-Pilot +5

Name of the Vulnerable Software and Affected Versions: Performance Co-Pilot PCP affected versions not specified Description: A vulnerability has been identified in the Performance Co-Pilot PCP package, stemming from the mixed privilege levels utilized by systemd services associated with PCP. This...

CVE-2024-0019

The CVE-2024-0019 issue affects Android’s AppOpsControllerImpl.setListening in the Framework. A missing check for active recordings can allow hiding the microphone privacy indicator when SystemUI restarts, enabling local denial of service without extra privileges. Impact is limited to DoS on the ...

Design/Logic Flaw

In startNextMatchingActivity of ActivityTaskManagerService.java, there is a possible way to bypass the restrictions on starting activities from the background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User...

Schneider Electric Easergy Studio InitializeChannel Deserialization of Untrusted Data Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Schneider Electric Easergy Studio. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within th...

Design/Logic Flaw

DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service...

CVE-2023-32474

Dell Display Manager application, version 2.1.1.17 and prior, contain an insecure operation on windows junction/mount point. A local malicious user could potentially exploit this vulnerability during installation leading to arbitrary folder or file deletion...

runc (docker) File Descriptor Leak Privilege Escalation

All versions of runc use exploit/linux/local/runccwdprivesc msf exploitrunccwdprivesc show targets ...targets... msf exploitrunccwdprivesc set TARGET msf exploitrunccwdprivesc show options ...show and set options... msf exploitrunccwdprivesc exploit This module requires Metasploit:...

CVE-2024-1193

A vulnerability was found in Navicat 12.0.29. It has been rated as problematic. This issue affects some unknown processing of the component MySQL Conecction Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and m...

CVE-2024-1185

CVE-2024-1185 affects Nsasoft NBMonitor Network Bandwidth Monitor 1.6.5.0, specifically the Registration Handler. The issue allows a locally approached denial of service due to a vulnerability in that component. Public exploit information is indicated, and the vendor reportedly did not respond to...

CVE-2024-23746

Miro Desktop 0.8.18 on macOS allows local Electron code injection via a complex series of steps that might be usable in some environments bypass a kTCCServiceSystemPolicyAppBundles requirement via a file copy, an app.app/Contents rename, an asar modification, and a rename back to app.app/Contents...

PT-2024-17299 · Munsoft · Munsoft Easy Archive Recovery

Name of the Vulnerable Software and Affected Versions: Munsoft Easy Archive Recovery version 2.0 Description: A problematic vulnerability was found in the Registration Key Handler component, leading to denial of service. The attack must be approached locally. The exploit has been disclosed to the...

CVE-2024-22430

Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions vulnerability. A local low privileges malicious user could potentially exploit this vulnerability, leading to denial of service...

kernel: i2c: out-of-bounds write in xgene_slimpro_i2c_xfer()

An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data-block0" variable was not limited to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dmabuffer. This issue could allow a local...

CVE-2024-0771

A vulnerability has been found in Nsasoft Product Key Explorer 4.0.9 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Registration Handler. The manipulation of the argument Name/Key leads to memory corruption. An attack has to be approache...

CVE-2023-48344

In video decoder, there is a possible out of bounds read due to improper input validation. This could lead to local denial of service with no additional execution privileges needed...

CVE-2023-32878

In battery, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308070; Issue ID: ALPS08307992...

PT-2023-32868 · Kylinsoft · Kylin-System-Updater

Name of the Vulnerable Software and Affected Versions: KylinSoft kylin-system-updater versions up to 2.0.5.16-0k2.33 Description: A critical vulnerability has been found in the KylinSoft kylin-system-updater. The issue is related to the manipulation of the SetDownloadspeedMax argument, which lead...