Lucene search
K

48 matches found

Microsoft CVE
Microsoft CVE
added 2025/10/23 2:0 p.m.9 views

Azure Event Grid System Elevation of Privilege Vulnerability

Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network...

9.8CVSS6.8AI score0.00346EPSS
Exploits0
NVD
NVD
added 2025/10/14 5:15 p.m.5 views

CVE-2025-49708

Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges over a network...

9.9CVSS0.01148EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24285

Malicious code in bioql PyPI...

8.8CVSS6.2AI score0.36074EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24368

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.01516EPSS
Exploits2References1
Microsoft CVE
Microsoft CVE
added 2025/09/09 7:0 a.m.5 views

Windows NTLM Elevation of Privilege Vulnerability

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.1AI score0.18706EPSS
Exploits1
CVE
CVE
added 2025/08/21 7:49 p.m.32 views

CVE-2025-53795

CVE-2025-53795 : Microsoft PC Manager has an improper authorization weakness that could let an unauthenticated attacker elevate privileges over the network. The CVE is documented across multiple feeds (NVD, Microsoft MSRC, Red Hat, CNNVD, PT- Security) with high-severity ratings (CVSS v3.1 base s...

9.8CVSS7AI score0.00551EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/21 12:0 a.m.4 views

PT-2025-34293 · Microsoft · Pcmanager

Name of the Vulnerable Software and Affected Versions: Microsoft PC Manager affected versions not specified Description: Improper authorization in Microsoft PC Manager can allow an unauthorized attacker to elevate privileges over a network. Recommendations: At the moment, there is no information...

9.1CVSS6.8AI score0.00551EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/08/14 6:23 p.m.1 views

CVE-2025-53779

Relative path traversal in Windows Kerberos allows an authorized attacker to elevate privileges over a network...

7.2CVSS7.1AI score0.02593EPSS
Exploits1References1
CVE
CVE
added 2025/08/12 5:10 p.m.130 views

CVE-2025-53779

CVE-2025-53779 is a Windows Kerberos Elevation of Privilege vulnerability. The flaw is described as a relative path traversal in Windows Kerberos that can allow an authorized attacker to elevate privileges over the network, potentially achieving domain administrator rights via the delegated Manag...

7.2CVSS7.1AI score0.02593EPSS
Exploits1References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2025/08/12 7:0 a.m.6 views

Microsoft SQL Server Elevation of Privilege Vulnerability

Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.9AI score0.00865EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.6 views

PT-2025-32739 · Microsoft · Sql Server

Name of the Vulnerable Software and Affected Versions: SQL Server affected versions not specified Description: Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network. Recommendations: At the moment, there is no information about a newer version th...

9CVSS7.5AI score0.01516EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.5 views

PT-2025-32832

Name of the Vulnerable Software and Affected Versions: SQL Server affected versions not specified Description: The software contains an improper neutralization of special elements used in an SQL command, leading to a potential SQL injection issue. This allows an authorized attacker to elevate...

9CVSS6.9AI score0.01017EPSS
Exploits0References7
OSV
OSV
added 2025/06/10 5:22 p.m.1 views

CVE-2025-33070

Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network...

8.1CVSS5.8AI score0.06116EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/30 6:15 p.m.5 views

CVE-2025-30390

Improper authorization in Azure allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.5AI score0.00776EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2023-52880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tty: ngsm: require CAPNETADMIN to attach NGSM0710 ldisc Any unprivileged user can attach...

5.5CVSS6.4AI score0.00236EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2024/07/23 7:0 a.m.22 views

GroupMe Elevation of Privilege Vulnerability

An improper restriction of excessive authentication attempts in GroupMe allows a unauthenticated attacker to elevate privileges over a network...

8.1CVSS8.3AI score0.00925EPSS
Exploits0
Debian CVE
Debian CVE
added 2024/01/10 9:28 p.m.37 views

CVE-2024-0333

Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.1AI score0.00429EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/02/16 12:0 a.m.7 views

PT-2023-13576 · Intel · Intel Ema

Name of the Vulnerable Software and Affected Versions: IntelR EMA software versions prior to 1.8.1.0 Description: The issue is related to improper neutralization in the IntelR EMA software, which may allow a privileged user to potentially enable escalation of privilege via network access...

5.3CVSS5.5AI score0.00147EPSS
Exploits0References3
Prion
Prion
added 2021/09/08 3:15 p.m.15 views

Memory corruption

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged network position may be able to execute arbitrary code...

6.8CVSS8.1AI score0.0202EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2021/01/20 3:15 p.m.10 views

CVE-2020-4983

IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who has privileges to submit LSF jobs to execute arbitrary commands. IBM X-Force ID: 192586...

7.8CVSS7.5AI score0.00437EPSS
Exploits1References3
Rows per page
Query Builder