CVE-2025-43512

A logic issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.2, macOS Sonoma 14.8.3, macOS Sequoia 15.7.3, iOS 18.7.3 and iPadOS 18.7.3. An app may be able to elevate privileges...

CVE-2025-43512

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2. An app may be able to elevate privileges...

Parse Server 安全漏洞

Parse Server is an open source backend from Parse Platform Open Source that can be deployed to any infrastructure that can run Node.js. A security vulnerability exists in Parse Server versions prior to 8.6.0-alpha.2, which stems from a GitHub CI workflow elevation of privilege that could lead to...

AMI AptioV 安全漏洞

AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV that stems from improper handling of BIOS permissions, which could lead to elevated privileges...

CVE-2025-64669

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges locally...

QualitySoft QND 安全漏洞

QualitySoft QND is a comprehensive IT operations management tool from QualitySoft Japan. A security vulnerability exists in QualitySoft QND version 11.0.9i and prior versions, which stems from improper privilege management and may result in elevated privileges...

Microsoft Windows Admin Center 安全漏洞

Microsoft Windows Admin Center is a locally deployed browser-based application from Microsoft USA. The program is primarily used to manage servers, clusters, and more. A security vulnerability exists in Microsoft Windows Admin Center that stems from improper access control and could lead to local...

Google Pixel 安全漏洞

Google Pixel is a smartphone from Google, an American company. Google Pixel suffers from a security vulnerability that stems from the presence of post-release reuse of bigomap in bigoiommu.c, which could lead to local elevation of privilege...

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel has a security vulnerability that can be exploited by an attacker to cause local elevation of privilege...

Google Pixel 安全漏洞

Google Pixel is a smartphone from Google USA. A security vulnerability exists in Google Pixel that stems from improper validation of the tracepointmsghandler input in tracepointipc.c, which could lead to local elevation of privilege...

altera Quartus Prime Standard Edition Design Software 安全漏洞

altera Quartus Prime Standard Edition Design Software is an FPGA design and development software suite from altera, Inc. A security vulnerability exists in altera Quartus Prime Standard Edition Design Software, which originated from a vulnerability that could cause an unauthorized user to elevate...

Google Pixel 安全漏洞

Google Pixel is a smartphone from Google, an American company. A security vulnerability exists in Google Pixel, which stems from a heap buffer overflow in NrmmDecoder::DecodeSORTransparentContext in cnNrmmDecoder.cpp, which could lead to remote elevation of privilege...

CVE-2025-62221

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

CVE-2025-62458

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

CVE-2025-62466

Null pointer dereference in Windows Client-Side Caching CSC Service allows an authorized attacker to elevate privileges locally...

CVE-2025-62472

Use of uninitialized resource in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally...

CVE-2025-62461

Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally...

Eibiz i-Media Server Digital Signage 访问控制错误漏洞

Eibiz i-Media Server Digital Signage is a digital signage server from Eibiz Thailand. An access control error vulnerability exists in Eibiz i-Media Server Digital Signage version 3.8.0, which stems from the existence of elevation of privilege in the updateUser object, which could lead to account...

UBICOD Medivision Digital Signage 安全漏洞

UBICOD Medivision Digital Signage is a digital signage software for healthcare environments from UBICOD Medivision, a South Korean company. A security vulnerability exists in UBICOD Medivision Digital Signage version 1.5.1, which stems from an authorization bypass in the ftgrp parameter, which ma...

Zoom Rooms for Windows 安全漏洞

Zoom Rooms for Windows is a conference room software from Zoom USA. A security vulnerability exists in Zoom Rooms for Windows prior to version 6.6.0, which stems from a failure in the software's downgrade protection mechanism and could lead to elevation of privilege via local access by an...