2 matches found
Memory corruption
In lwistransactionclientcleanup of lwistransaction.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-35660
Summary: CVE-2023-35660 describes a use-after-free in lwis_transaction_client_cleanup (lwis_transaction.c) that can corrupt memory and enable local privilege escalation with SYSTEM privileges; exploitation does not require user interaction. The vulnerability is reported across multiple feeds (NVD...