Lucene search
+L

6 matches found

vulnrichment
vulnrichment
added 2026/02/17 12:0 a.m.5 views

CVE-2025-67905

Malwarebytes AdwCleaner before v.8.7.0 runs as Administrator and performs an insecure log file delete operation in which the target location is user-controllable, allowing a non-admin user to escalate privileges to SYSTEM via a symbolic link, a related issue to CVE-2023-28892. To exploit this, an...

7.4AI score0.00136EPSS
Exploits0References2
osv
osv
added 2024/10/16 12:17 p.m.5 views

CVE-2023-32191 rke's credentials are stored in the RKE1 Cluster state ConfigMap

When RKE provisions a cluster, it stores the cluster state in a configmap called full-cluster-state inside the kube-system namespace of the cluster itself. The information available in there allows non-admin users to escalate to admin...

9.9CVSS7.2AI score0.00641EPSS
Exploits0References4
osv
osv
added 2024/09/11 3:15 p.m.6 views

CVE-2024-8306

CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access, loss of confidentiality, integrity and availability of the workstation when non-admin authenticated user tries to perform privilege escalation by tampering with the binaries...

7.8CVSS5.8AI score0.00209EPSS
Exploits0References1
osv
osv
added 2023/05/30 4:15 p.m.4 views

CVE-2023-28079

PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains Insecure File and Folder Permissions vulnerability. A regular user non-admin can exploit the weak folder and file permissions to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM...

7.8CVSS6AI score0.00147EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2022/04/12 12:0 a.m.9 views

PT-2022-16916 · Minio +1 · Minio +1

Name of the Vulnerable Software and Affected Versions: MinIO versions prior to RELEASE.2022-04-12T06-55-35Z Description: A security issue was found in MinIO where a non-admin user can create service accounts for root or other admin users and then assume their access policies via the generated...

9CVSS6.9AI score0.83957EPSS
Exploits25References46
osv
osv
added 2018/07/15 1:29 a.m.4 views

DEBIAN-CVE-2018-14055

ZNC before 1.7.1-rc1 does not properly validate untrusted lines coming from the network, allowing a non-admin user to escalate his privilege and inject rogue values into znc.conf...

6.5CVSS7.2AI score0.01463EPSS
Exploits0References1
Rows per page
Query Builder