8 matches found
CVE-2026-40952
The CVE-2026-40952 entry describes a privilege misconfiguration in the Windows Secure Access installer for the client and server prior to version 14.55. Local attackers with access to the affected system can elevate privileges to Administrator when Secure Access is installed in a non-default loca...
EUVD-2023-32672
Malicious code in bioql PyPI...
CVE-2025-24916
When installing Tenable Network Monitor to a non-default location on a Windows host, Tenable Network Monitor versions prior to 6.5.1 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default...
CVE-2025-24915
When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to 10.8.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location...
CVE-2025-24915
When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions prior to 10.8.3 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location...
CVE-2025-24915
CVE-2025-24915 concerns Tenable Nessus Agent on Windows. Affected: Nessus Agent installed to a non-default location. Root cause: older Agent versions (pre-10.8.3) did not enforce secure permissions for sub-directories in non-default install paths, enabling potential local privilege escalation. Im...
CVE-2023-29069
A maliciously crafted DLL file can be forced to install onto a non-default location, and attacker can overwrite parts of the product with malicious DLLs. These files may then have elevated privileges leading to a Privilege Escalation vulnerability...
Autodesk Desktop Connector Code Issue Vulnerability
Autodesk Desktop Connector is a desktop connection software from Autodesk, Inc. A security vulnerability exists in Autodesk Desktop Connector 16.2.1 and earlier versions, which stems from a maliciously crafted DLL file that could be forced to install to a non-default location and could be used by...