Lucene search
+L

10 matches found

ATTACKERKB
ATTACKERKB
added 4 days ago4 views

CVE-2026-40952

CVE-2026-40952 is a privilege misconfiguration in the Secure Access installer for the Windows client and server prior to version 14.55. Attackers with local access to the client or server can use it to elevate privileges to Administrator when Secure Access is installed in a non-default location...

8.5CVSS6.1AI score0.00094EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/04/18 7:15 p.m.1 views

CVE-2025-24914

When installing Nessus to a non-default location on a Windows host, Nessus versions prior to 10.8.4 did not enforce secure permissions for sub-directories. This could allow for local privilege escalation if users had not secured the directories in the non-default installation location. -...

7.8CVSS5.8AI score0.00136EPSS
Exploits0References2
OSV
OSV
added 2023/11/22 7:15 a.m.4 views

CVE-2023-29069

A maliciously crafted DLL file can be forced to install onto a non-default location, and attacker can overwrite parts of the product with malicious DLLs. These files may then have elevated privileges leading to a Privilege Escalation vulnerability...

7.8CVSS5.8AI score0.00258EPSS
Exploits0References1
OSV
OSV
added 2023/06/13 9:15 a.m.6 views

CVE-2023-30897

A vulnerability has been identified in SIMATIC WinCC All versions V7.5.2.13. Affected applications fail to set proper access rights for their installation folder if a non-default installation path was chosen during installation. This could allow an authenticated local attacker to inject arbitrary...

7.8CVSS6.7AI score0.00212EPSS
Exploits0References1
OSV
OSV
added 2023/05/05 7:15 a.m.4 views

CVE-2023-28068

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

7.8CVSS5.8AI score0.00156EPSS
Exploits0References1
NVD
NVD
added 2023/05/05 7:15 a.m.11 views

CVE-2023-28068

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

7.8CVSS7.4AI score0.00156EPSS
Exploits0References1
Prion
Prion
added 2023/05/05 7:15 a.m.14 views

Design/Logic Flaw

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

4.3CVSS7.7AI score0.00156EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/05 12:0 a.m.5 views

PT-2023-21529 · Dell · Dell Command | Monitor

Name of the Vulnerable Software and Affected Versions: Dell Command Monitor versions 10.9 and prior Description: The issue is related to improper folder permissions, allowing a local authenticated malicious user to potentially exploit this vulnerability, leading to privilege escalation by writing...

7.8CVSS7.7AI score0.00156EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/01/18 11:38 a.m.30 views

CVE-2022-34457

Dell command configuration, version 4.8 and prior, contains improper folder permission when installed not to default path but to non-secured path which leads to privilege escalation. This is critical severity vulnerability as it allows non-admin to modify the files inside installed directory and...

7.3CVSS8AI score0.00205EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/06/23 12:0 a.m.9 views

PT-2022-6316 · Dell · Dell Command Configure

Name of the Vulnerable Software and Affected Versions: Dell Command Configure versions 4.8 and prior Description: The issue is related to improper folder permission handling when Dell Command Configure is installed to a non-default, non-secured path. This can lead to privilege escalation, allowin...

7.8CVSS7.5AI score0.00205EPSS
Exploits0References7
Rows per page
Query Builder