Lucene search
K

75 matches found

CNVD
CNVD
added 2025/10/17 12:0 a.m.6 views

Rockwell Automation FactoryTalk Linx Elevation of Privilege Vulnerability

Rockwell Automation FactoryTalk Linx is a set of industrial communication solutions from Rockwell Rockwell Automation. It is used to communicate between small applications and large automation systems. An elevation of privilege vulnerability exists in Rockwell Automation FactoryTalk Linx due to a...

8.5CVSS5.8AI score0.00176EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/17 12:0 a.m.5 views

Rockwell Automation FactoryTalk Linx Elevation of Privilege Vulnerability (CNVD-2026-10857)

Rockwell Automation FactoryTalk Linx is a set of industrial communication solutions from Rockwell Rockwell Automation. The product is primarily used for small applications to communicate with large automation systems and more. An elevation of privilege vulnerability exists in Rockwell Automation...

8.5CVSS5.7AI score0.0017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/15 12:42 p.m.8 views

CVE-2025-9067

A security issue exists within the x86 Microsoft Installer File MSI, installed with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting console window. This allows the launching of a command prompt running with SYSTEM-level privileges...

8.5CVSS6.7AI score0.00176EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 1:15 p.m.5 views

CVE-2025-9068

A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File MSI repair functionality, installed with FTLinx. Authenticated attackers with valid Windows Users credentials can initiate a repair and hijack the resulting console window for vbpinstall.exe. This...

8.5CVSS0.0017EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 12:24 p.m.5 views

EUVD-2025-34181

A security issue exists within the x86 Microsoft Installer File MSI, installed with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting console window. This allows the launching of a command prompt running with SYSTEM-level privileges...

8.5CVSS6.2AI score0.00176EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/14 12:24 p.m.4 views

CVE-2025-9067 Rockwell Automation FactoryTalk® Linx Privilege Escalation Vulnerabilities

A security issue exists within the x86 Microsoft Installer File MSI, installed with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting console window. This allows the launching of a command prompt running with SYSTEM-level privileges...

8.5CVSS6.4AI score0.00176EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 12:23 p.m.11 views

CVE-2025-9068 Rockwell Automation FactoryTalk® Linx Privilege Escalation Vulnerabilities

A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File MSI repair functionality, installed with FTLinx. Authenticated attackers with valid Windows Users credentials can initiate a repair and hijack the resulting console window for vbpinstall.exe. This...

8.5CVSS0.0017EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.9 views

PT-2025-41916

Name of the Vulnerable Software and Affected Versions FTLinx versions affected versions not specified Description A security issue exists in the x86 Microsoft Installer MSI used with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting...

8.5CVSS6.2AI score0.00176EPSS
Exploits0References5
MongoDB
MongoDB
added 2025/10/08 9:26 p.m.10 views

MongoDB Connector for BI installation MSI leave ACLs unset on custom installation directories

MongoDB Connector for BI installation via MSI on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24...

8.8CVSS7AI score0.00114EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-5435

Malware in sbrugna...

7CVSS6.7AI score0.00793EPSS
Exploits3References12
Vulnrichment
Vulnrichment
added 2025/08/14 1:52 p.m.4 views

CVE-2025-7973 Rockwell Automation FactoryTalk® ViewPoint Privilege Escalation Vulnerability

A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs with SYSTEM privileges. This can be exploited to spawn an elevated command prompt, enabling fu...

8.5CVSS7.3AI score0.00129EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 1:52 p.m.22 views

CVE-2025-7973

CVE-2025-7973 affects FactoryTalk ViewPoint 14.0 and earlier. The root cause is improper handling of MSI repair operations, allowing an attacker with local access to hijack the cscript.exe console window (which runs with SYSTEM privileges) and spawn an elevated command prompt, enabling full privi...

8.5CVSS7.3AI score0.00129EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2025/08/12 7:0 a.m.9 views

Description of the security update for PowerPoint 2016: August 12, 2025 (KB5002765)

None None...

7.8CVSS7AI score0.0052EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2025/08/12 7:0 a.m.13 views

End of support for Office 2016 and Office 2019

None None...

8.4CVSS5.2AI score0.0052EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2025/04/08 7:0 a.m.20 views

Description of the security update for OneNote 2016: April 8, 2025 (KB5002622)

None None...

7.8CVSS7AI score0.00783EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2025/02/11 8:0 a.m.61 views

Description of the security update for Excel 2016: February 11, 2025 (KB5002687)

None None...

7.8CVSS7AI score0.01113EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2025/01/07 12:0 a.m.5 views

January 7, 2025, update for PowerPoint 2016 (KB5002632)

None None...

6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2024/08/06 12:0 a.m.7 views

August 6, 2024, update for Access 2016 (KB5002589)

None None...

6.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/07/31 12:0 a.m.7 views

The vulnerability of the MSI-Installer component of the Baramundi Management Agent makes it possible for attackers to increase their privileges.

The vulnerability of the MSI-installer component of the Baramundi Management Agent involves the use of dangerous methods or functions. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.5AI score0.00197EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/01/07 12:0 a.m.5 views

IBM Db2 安全漏洞

IBM DB2 is a relational database management system from International Business Machines IBM. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. An elevation of privilege vulnerability exists in IBM DB2, which can be exploited by an attacker t...

8.4CVSS7.2AI score0.0018EPSS
Exploits0References4
Rows per page
Query Builder