5025 matches found
DirectX Graphics Kernel Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Graphics Kernel allows an authorized attacker to elevate privileges locally...
Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability
Untrusted pointer dereference in Windows Virtualization-Based Security VBS Enclave allows an authorized attacker to elevate privileges locally...
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...
Windows File Explorer Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Printer Association Object allows an authorized attacker to elevate privileges locally...
MiracleLinux 8 : dotnet9.0-9.0.102-1.el8_10 (AXSA:2025-9578:04)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9578:04 advisory. dotnet: .NET Remote Code Execution Vulnerability CVE-2025-21171 dotnet: .NET and Visual Studio Remote Code Execution Vulnerability CVE-2025-21172...
PT-2026-2764
CVE-2026-21224 Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. https://t.co/nj6zlxVciK...
PT-2026-2664
Name of the Vulnerable Software and Affected Versions Versions prior to the fixed version affected versions not specified Description A flaw exists due to concurrent execution using a shared resource with improper synchronization, creating a race condition in the Graphics Kernel. This allows a...
PT-2026-2667
Name of the Vulnerable Software and Affected Versions Windows Error Reporting versions prior to January 2026 Description Improper handling of permissions in the Windows Error Reporting WER service allows an authorized local attacker to elevate privileges to NT AUTHORITYSYSTEM. The issue exists in...
Microsoft Windows 资源管理错误漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. Microsoft Windows suffers from a resource management error vulnerability. An attacker could exploit this vulnerability to gain elevated privileges. The following products and editions are...
Microsoft Windows Cloud Files Mini Filter Driver 安全漏洞
Microsoft Windows Cloud Files Mini Filter Driver is a cloud file filter driver from Microsoft USA. An elevation of privilege vulnerability exists in Microsoft Windows Cloud Files Mini Filter Driver due to an untrusted pointer dereference flaw in the Cloud Files Mini-Filter Driver component. An...
Microsoft Windows 竞争条件问题漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. Microsoft Windows suffers from a Competitive Conditions Issue vulnerability. An attacker could exploit this vulnerability to gain elevated privileges. The following...
Microsoft Graphics Component 资源管理错误漏洞
Microsoft Graphics Component is a graphics driver component of Microsoft Corporation USA. A security vulnerability exists in Microsoft Graphics Component. An attacker could exploit this vulnerability to gain elevated privileges...
Microsoft Graphics Kernel 竞争条件问题漏洞
Microsoft Graphics Kernel is a kernel-mode graphics driver subsystem from Microsoft. A security vulnerability exists in Microsoft Graphics Kernel. An attacker could exploit the vulnerability to gain elevated privileges...
Microsoft Windows 竞争条件问题漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. Microsoft Windows suffers from a Competitive Conditions Issue vulnerability. An attacker could exploit this vulnerability to gain elevated privileges. The following...
Microsoft Windows Admin Center 数据伪造问题漏洞
Microsoft Windows Admin Center is a locally deployed browser-based application from Microsoft USA. The program is primarily used to manage servers, clusters, and more. Microsoft Windows Admin Center is vulnerable to a data forgery issue. An attacker can exploit this vulnerability to elevate...
Cyclades Serial Console Server 安全漏洞
Cyclades Serial Console Server is a serial console server appliance from Cyclades USA. A security vulnerability exists in Cyclades Serial Console Server version 3.3.0, which stems from overly lax sudo privileges that could lead to local elevation of privilege...
CVE-2022-42849
An access issue existed with privileged API calls. This issue was addressed with additional restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2, watchOS 9.2. A user may be able to elevate privileges...
CVE-2020-12639
phpList before 3.5.3 allows XSS, with resultant privilege elevation, via lists/admin/template.php...
CVE-2020-12083
An elevated privileges issue related to Spring MVC calls impacts Code Insight v7.x releases up to and including 2020 R1 7.11.0-64...
CVE-2020-10010
A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A local attacker may be able to elevate their privileges...