CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2083 matches found

Prion•added 2023/07/14 5:15 a.m.•19 views

Design/Logic Flaw

Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral =7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and calling "AddModule" or "UninstallModules" command to...

4.3CVSS8AI score0.00093EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/07/14 4:53 a.m.•7 views

CVE-2023-3514 RazerCentralSerivce Unsafe Named Pipe Permission Escalation of Privilege Vulnerability

7.8CVSS7.8AI score0.00093EPSS

Exploits1References1

Positive Technologies•added 2023/07/14 12:0 a.m.•3 views

PT-2023-25155 · Razer · Razercentral

Name of the Vulnerable Software and Affected Versions: RazerCentral versions prior to 7.11.0.558 Description: The issue is related to improper privilege control in the RazerCentralSerivce Named Pipe, allowing a malicious actor with local access to gain SYSTEM privilege. This can be achieved by...

7.8CVSS7.7AI score0.00092EPSS

Exploits1References2

CNNVD•added 2023/07/14 12:0 a.m.•2 views

Razer Central 安全漏洞

Razer Central is the peripheral control center for Razer Corporation USA. A security vulnerability exists in Razer Central 7.11.0.558 and prior versions, which stems from improper privilege control in the named pipe and allows a malicious attacker with local access to gain system privileges and...

7.8CVSS7.7AI score0.00093EPSS

Exploits1References2

Positive Technologies•added 2023/07/14 12:0 a.m.•3 views

PT-2023-25160 · Razer · Razercentral

Name of the Vulnerable Software and Affected Versions: RazerCentral versions prior to 7.11.0.558 Description: The issue is related to improper privilege control in the RazerCentralService Named Pipe, allowing a malicious actor with local access to gain SYSTEM privilege. This can be achieved by...

7.8CVSS7.8AI score0.00093EPSS

Exploits1References2

CNNVD•added 2023/07/14 12:0 a.m.•2 views

Razer Central 安全漏洞

Razer Central is the peripheral control center for Razer Corporation USA. A security vulnerability exists in Razer Central version 7.11.0.558 and earlier, which stems from improper privilege control in the named pipe and allows a malicious attacker with local access to gain system privileges by...

7.8CVSS7.5AI score0.00092EPSS

Exploits1References2

OSV•added 2023/07/10 1:6 p.m.•0 views

USN-6213-1 ghostscript vulnerability

It was discovered that Ghostscript incorrectly handled pipe devices. If a user or automated system were tricked into opening a specially crafted PDF file, a remote attacker could use this issue to execute arbitrary code...

7.8CVSS7.3AI score0.06431EPSS

Exploits3References2

Ubuntu•added 2023/07/10 1:6 p.m.•73 views

USN-6213-1: Ghostscript vulnerability

7.8CVSS8.1AI score0.06431EPSS

Exploits3

Tenable Nessus•added 2023/07/04 12:0 a.m.•37 views

Debian DSA-5446-1 : ghostscript - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5446 advisory. - Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices with the %pipe% prefix or the | pipe character prefix. CVE-2023-36664 Note tha...

7.8CVSS7.8AI score0.06431EPSS

Exploits3References6

RedhatCVE•added 2023/06/27 6:47 a.m.•109 views

CVE-2023-36664

A vulnerability was found in Ghostscript. This flaw occurs due to a mishandled permission validation for pipe devices with the %pipe% prefix or the | pipe character prefix...

8.4CVSS6.7AI score0.06431EPSS

Exploits3References3