18 matches found
PT-2025-31961 · Undefined · Undefined
@Lemondator Can you provide the provenance for CVE-2025-22987 please?...
KB5062592: Windows Server 2012 Security Update (July 2025)
The remote Windows host is missing security update 5062592. It is, therefore, affected by multiple vulnerabilities - Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally. CVE-2025-49659 - Untrusted pointer dereference in Windows Event Tracing allows an...
GLSA-202507-01 : sudo: Privilege escalation
The remote host is affected by the vulnerability described in GLSA-202507-01 sudo: Privilege escalation Multiple vulnerabilities have been discovered in sudo. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from the...
CVE-2023-24526
SAP NetWeaver Application Server Java for Classload Service - version 7.50, does not perform any authentication checks for functionalities that require user identity, resulting in escalation of privileges. This failure has a low impact on confidentiality of the data such that an unassigned user c...
CVE-2024-53348
LoxiLB v.0.9.7 and before is vulnerable to Incorrect Access Control which allows attackers to obtain sensitive information and escalate privileges...
Microsoft: Happy 2025. Here’s 161 Security Updates
Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three "zero-day" weaknesses that are already under active attack. Redmond's inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since...
About Elevation of Privilege – needrestart (CVE-2024-48990) vulnerability
About Elevation of Privilege - needrestart CVE-2024-48990 vulnerability. On November 19, Qualys released a security bulletin about five privilege escalation vulnerabilities in the needrestart utility CVE-2024-48990, CVE-2024-48991, CVE-2024-48992, CVE-2024-10224, and CVE-2024-11003 used in Ubuntu...
VMSA-2024-0012:VMware vCenter Server updates address heap-overflow and privilege escalation vulnerabilities (CVE-2024-37079, CVE-2024-37080, CVE-2024-37081)
Advisory ID: | VMSA-2024-0012.1 ---|--- Severity: | Critical CVSSv3 Range: | 7.8-9.8 Synopsis: | VMware vCenter Server updates address heap-overflow and privilege escalation vulnerabilities CVE-2024-37079, CVE-2024-37080, CVE-2024-37081 Issue date: | 2024-06-17 Updated on: | 2026-01-23 CVEs |...
OPENSUSE-SU-2023:0069-1 Security update for amanda
This update for amanda fixes the following issues: - CVE-2022-37704: fix privilege escalation via rundump boo1208033, ghzmanda/amanda195 - CVE-2022-37705: fix privilege escalation via runtar suid binary boo1208032, ghzmanda/amanda194...
CVE-2022-2249 Avaya Aura Communication Manager Privilege Escalation Vulnerabilities
Privilege escalation related vulnerabilities were discovered in Avaya Aura Communication Manager that may allow local administrative users to escalate their privileges. This issue affects Communication Manager versions 8.0.0.0 through 8.1.3.3 and 10.1.0.0...
Over 85% Of Smart TVs Can Be Hacked Remotely Using Broadcasting Signals
The Internet-connected devices are growing at an exponential rate, and so are threats to them. Due to the insecure implementation, a majority of Internet-connected embedded devices, including Smart TVs, Refrigerators, Microwaves, Security Cameras, and printers, are routinely being hacked and used...
Privilege Acquisition Vulnerabilities in Multiple Products from Deepsix
Shenzhen SHENZHEN SHENZHEN Electronic Technology Co., Ltd. is an IT solution service provider. Multiple products AC\AF\SSLVPN, etc. of FCS have privilege acquisition vulnerabilities, which can be exploited by attackers to obtain sensitive information...
Map Coordinates - Base64 encoded String, Dangerous filesystem permissions, Runtime privilege escalation vulnerabilities
HackApp vulnerability scanner discovered that application Map Coordinates published at the 'play' market has multiple vulnerabilities...
Wifi Password(ROOT) - Dynamic Code Loading, External URLs, Possible privilege escalation vulnerabilities
HackApp vulnerability scanner discovered that application Wifi PasswordROOT published at the 'play' market has multiple vulnerabilities...
SUSE-SU-2015:1449-1 Security update for MozillaFirefox, mozilla-nss
Mozilla Firefox is being updated to the current Firefox 38ESR branch specifically the 38.2.0ESR release. Security issues fixed: - MFSA 2015-78 / CVE-2015-4495: Same origin violation and local file stealing via PDF reader - MFSA 2015-79 / CVE-2015-4473/CVE-2015-4474: Miscellaneous memory safety...
Microsoft Windows Kernel Privilege Escalation Vulnerabilities (2930275)
This host is missing an important security update according to Microsoft Bulletin MS14-015 OpenVAS Vulnerability Test $Id: gbms14-015.nasl 6724 2017-07-14 09:57:17Z teissa $ Microsoft Windows Kernel Privilege Escalation Vulnerabilities 2930275 Authors: Antu Sanadi Copyright: Copyright C 2014...
Microsoft SQL Server Elevation of Privilege Vulnerabilities (941203)
This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
FreeBSD-SA-01:38.sudo
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:38 Security Advisory FreeBSD, Inc. Topic: sudo contains local buffer overflow Category: ports Module: sudo Announced: 2001-04-23 Credits: Chris Wilson Affects: Ports...