Exagrid EX10 安全漏洞

Exagrid EX10 is a backup storage server from Exagrid Corporation, USA. A security vulnerability exists in Exagrid EX10 version 7.0.1p02, which originates from the presence of XML external entity injection in the /init API endpoint, which could lead to information disclosure and elevation of...

CVE-2025-6181

The StrongDM Windows service incorrectly handled input validation. Authenticated attackers could potentially exploit this leading to privilege escalation...

Intel Distribution for Python Improper Privileges Vulnerability

Intel Distribution for Python is the official Python distribution from Intel, designed to improve the performance of Python code by optimizing high-performance mathematical and scientific computing libraries, with support for multi-core CPUs and the latest instruction set acceleration. Intel...

WordPress plugin JobZilla - Job Board WordPress Theme 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

AOMEI Backupper Workstation 后置链接漏洞

AOMEI Backupper Workstation is a system backup and restore software from China's AOMEI Technology AOMEI. AOMEI Backupper Workstation suffers from a backlink vulnerability that stems from improper link following and could lead to local elevation of privilege...

Intel 800 Series Ethernet Integer Overflow Vulnerability (CNVD-2025-19829)

Intel 800 Series Ethernet is a new generation of high-speed Ethernet technology from Intel that supports 25GbE and 100GbE speeds and is backward compatible with 10GbE. Intel 800 Series Ethernet suffers from an integer overflow vulnerability that originates from an integer overflow or wrap-around...

Intel 800 Series Ethernet Input Validation Improperity Vulnerability (CNVD-2025-19828)

Intel 800 Series Ethernet is a new generation of high-speed Ethernet technology from Intel that supports 25GbE and 100GbE speeds and is backward compatible with 10GbE. Intel 800 Series Ethernet suffers from an improper input validation vulnerability that can be exploited by an attacker to cause a...

Intel 800 Series Ethernet Elevation of Privilege Vulnerability

Intel 800 Series Ethernet is a new generation of high-speed Ethernet technology from Intel that supports 25GbE and 100GbE speeds and is backward compatible with 10GbE. An elevation of privilege vulnerability exists in Intel 800 Series Ethernet, which stems from insufficient control flow managemen...

wordpress plugin FunnelKit – Funnel Builder for WooCommerce Checkout和wordpress plugin FunnelKit Automations 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... An information disclosur...

Capsule 安全漏洞

Capsule is a multi-tenant and policy-based framework for Kubernetes open-sourced by Project Capsule. A security vulnerability exists in Capsule 0.10.3 and earlier versions that stems from a namespace label injection vulnerability that could lead to elevation of privilege and cross-tenant resource...

Schneider Electric SESU 后置链接漏洞

Schneider Electric SESU is a module for optimizing the efficiency of energy usage from Schneider Electric France. A backlink vulnerability exists in Schneider Electric SESU that stems from improper link resolution and could result in elevation of privilege or denial of service...

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from improper input validation and could result in local elevation of privilege...

WordPress plugin Taxi Booking Manager for Woocommerce | E-cab 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

HP Hotkey Support 安全漏洞

HP Hotkey Support is an application from Hewlett-Packard HP USA. A security vulnerability exists in HP Hotkey Support, which originates from the HPAudioAnalytics service and may allow elevation of privilege...

OpenBao has an unspecified vulnerability (CNVD-2025-18597)

OpenBao is OpenBao open source a sensitive data management software . A security vulnerability exists in OpenBao 2.3.1 and earlier versions that can be exploited by attackers to cause elevation of privilege...

CVE-2025-50168

Access of resource using incompatible type 'type confusion' in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...

CVE-2025-50173

Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally...

CVE-2025-50159

Use after free in Remote Access Point-to-Point Protocol PPP EAP-TLS allows an authorized attacker to elevate privileges locally...

CVE-2025-36612

SupportAssist for Business PCs, versions 4.5.3 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

CVE-2025-0309

CVE-2025-0309 describes a local privilege escalation in Netskope Client for Windows due to insufficient validation on the server connection endpoint. An attacker-controlled server using publicly signed TLS certificates can cause the client to send specially crafted responses, enabling privilege e...