Lucene search
K

791 matches found

Zero Day Initiative
Zero Day Initiative
added 2020/12/09 12:0 a.m.42 views

X.Org Server XkbSetDeviceInfo Heap-based Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.8CVSS5.4AI score0.00336EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/12/09 12:0 a.m.63 views

X.Org Server XkbSetMap Out-Of-Bounds Access Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of XkbSetM...

7.8CVSS3.7AI score0.00393EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/12/08 12:0 a.m.36 views

Apple macOS Kernel Command 0x10007 Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the AppleIntelKBLGraphic...

7.8CVSS4.5AI score0.00578EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2020/12/04 12:0 a.m.34 views

Apple macOS powerd Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the powerd...

5.5CVSS5.8AI score0.00387EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/12/01 12:0 a.m.29 views

McAfee Total Protection Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of McAfee Total Protection. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

7CVSS4.2AI score0.00432EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/11/11 12:0 a.m.43 views

Microsoft Windows bindflt Driver Missing Authentication Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the bindflt.sys...

7.8CVSS5.4AI score0.00772EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/11/11 12:0 a.m.39 views

Microsoft Windows DirectComposition Uninitialized Pointer Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementation...

8.8CVSS6.4AI score0.01867EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2020/10/19 12:0 a.m.39 views

Microsoft Windows User Profile Service Arbitrary File Deletion Vulnerability

This vulnerability allows local attackers to delete arbitrary files on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within handling of the...

5.5CVSS4.5AI score0.01527EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/10/19 12:0 a.m.67 views

Microsoft Windows Group Policy Client Service Link Resolution Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Group Policy...

7.3CVSS5.6AI score0.02417EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/02 10:0 p.m.24 views

CVE-2020-25776

Trend Micro Antivirus for Mac 2020 Consumer is vulnerable to a symbolic link privilege escalation attack where an attacker could exploit a critical file on the system to escalate their privileges. An attacker must first obtain the ability to execute low-privileged code on the target system in ord...

8.1AI score0.00621EPSS
Exploits0References2
NVD
NVD
added 2020/09/29 12:15 a.m.20 views

CVE-2020-25772

An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the...

5.5CVSS0.01346EPSS
Exploits0References2
Prion
Prion
added 2020/09/29 12:15 a.m.21 views

Information disclosure

An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the...

2.1CVSS5.4AI score0.01346EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/09/29 12:15 a.m.17 views

Information disclosure

An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the...

2.1CVSS5.4AI score0.01346EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/09/29 12:15 a.m.13 views

Information disclosure

An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the...

2.1CVSS5.4AI score0.01346EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2020/09/29 12:0 a.m.39 views

Foxit PhantomPDF Update Service Incorrect Permission Assignment Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PhantomPDF. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...

7.8CVSS3.8AI score0.01973EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/28 11:30 p.m.19 views

CVE-2020-25770

An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the...

5.5AI score0.01346EPSS
Exploits0References2
CVE
CVE
added 2020/09/28 11:30 p.m.72 views

CVE-2020-24564

CVE-2020-24564 is an out-of-bounds read information disclosure affecting Trend Micro Apex One. The connected Red Hat CVEs and NVD entry describe a local, low-privilege path to read memory and reveal sensitive information on vulnerable installations. The vulnerability requires the attacker to exec...

5.5CVSS5.3AI score0.01346EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/28 11:30 p.m.31 views

CVE-2020-24564

An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the...

5.5AI score0.01346EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2020/09/28 12:0 a.m.41 views

Trend Micro Maximum Security Race Condition Arbitrary File Deletion Vulnerability

This vulnerability allows local attackers to delete arbitrary files on affected installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.3CVSS3.7AI score0.00298EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/09/25 12:0 a.m.23 views

Trend Micro Apex One scanServer64 Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Trend Micro Apex One. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS3.2AI score0.01346EPSS
Exploits0References1
Rows per page
Query Builder