PT-2025-46483

Name of the Vulnerable Software and Affected Versions OneDrive for Android affected versions not specified Description An improper limitation of a pathname to a restricted directory, known as a 'path traversal', exists in OneDrive for Android. This allows an authorized attacker to potentially...

PT-2025-46457

Name of the Vulnerable Software and Affected Versions Windows Speech affected versions not specified Description A race condition exists due to concurrent execution using a shared resource with improper synchronization in Windows Speech. This allows an authorized attacker to elevate privileges...

AXIS OS 安全漏洞

AXIS OS is an edge device operating system from Axis Sweden. AXIS OS has a security vulnerability that stems from insufficient validation of ACAP configuration file inputs, which could lead to path traversal attacks and elevation of privilege...

AXIS OS 安全漏洞

AXIS OS is an edge device operating system from Axis Sweden. AXIS OS has a security vulnerability that stems from improper ACAP input validation, which could lead to elevation of privilege...

Intel CIP 代码问题漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an elevation of privilege vulnerability that stems from an uncontrolled search path, which can be exploited by an attacker to cause elevation of...

Intel System Support Utility for Windows 代码问题漏洞

Intel System Support Utility for Windows is a Windows platform-based system support utility from Intel Corporation USA. The program is mainly used to identify the hardware model, operating system version, and software installed on the computer. A code issue vulnerability exists in Intel System...

Intel OFU 代码问题漏洞

Intel OFU is a flash update application from Intel Corporation USA. A code issue vulnerability exists in Intel OFU versions prior to 14.1.31, which stems from an uncontrolled search path that could lead to elevation of privilege...

Intel Distribution for Python 代码问题漏洞

Intel Distribution for Python is a Python distribution optimized for Intel hardware from Intel Corporation USA. A code issue vulnerability exists in Intel Distribution for Python versions prior to 2025.2.0, which stems from an uncontrolled search path that could lead to elevation of privilege...

Intel Processor Identification Utility 代码问题漏洞

Intel Processor Identification Utility is a processor identification utility from Intel Corporation USA. The program supports the display of graphics information, chipset information, processor supported technologies, and other information. A code issue vulnerability exists in Intel Processor...

Intel oneAPI DPC++/C++ Compiler 代码问题漏洞

Intel oneAPI DPC++/C++ Compiler is a compiler from Intel Corporation USA. A code issue vulnerability exists in Intel oneAPI DPC++/C++ Compiler versions prior to 2025.0.1, which stems from an uncontrolled search path that could lead to elevation of privilege...

Intel QuickAssist Technology 安全漏洞

Intel QuickAssist Technology is an Intel technology that improves server utilization. It improves server efficiency by sharing the stress of compute-intensive tasks to equalize server pressure. A security vulnerability exists in Intel QuickAssist Technology prior to version 2.6.0, which is caused...

Siemens Spectrum Power 安全漏洞

Siemens Spectrum Power is an energy management system from Siemens Germany. A security vulnerability exists in Siemens Spectrum Power 4 versions prior to V4.70 SP12 Update 2, which originates from an exposed debugging interface on the local host and may result in local elevation of privilege...

KB5068787: Windows Server 2022 / Azure Stack HCI 22H2 Security Update (November 2025)

The remote Windows host is missing security update 5068787. It is, therefore, affected by multiple vulnerabilities - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-60724, CVE-2025-60714,...

Intel PresentMon 安全漏洞

Intel PresentMon is a tool from Intel Corporation USA. It is used to capture and analyze ETW events related to exchange chain presentations on Windows. A security vulnerability exists in Intel PresentMon versions prior to 2.3.1 that stems from improperly set default permissions, which could lead ...

KB5068865: Windows 11 version 22H2 / Windows 11 version 23H2 Security Update (November 2025)

The remote Windows host is missing security update 5068865. It is, therefore, affected by multiple vulnerabilities - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-60724, CVE-2025-60715,...

KB5068908: Windows Server 2008 R2 Security Update (November 2025)

The remote Windows host is missing security update 5068908. It is, therefore, affected by multiple vulnerabilities - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-60724, CVE-2025-60714,...

KB5068907: Windows Server 2012 Security Update (November 2025)

The remote Windows host is missing security update 5068907. It is, therefore, affected by multiple vulnerabilities - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-60724, CVE-2025-60714,...

KB5068905: Windows Server 2012 R2 Security Update (November 2025)

The remote Windows host is missing security update 5068905. It is, therefore, affected by multiple vulnerabilities - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-60724, CVE-2025-60714,...

KB5068791: Windows 10 version 1809 / Windows Server 2019 Security Update (November 2025)

The remote Windows host is missing security update 5068791. It is, therefore, affected by multiple vulnerabilities - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-60724, CVE-2025-60714,...

Microsoft Windows Bluetooth Service Resource Management Error Vulnerability

Microsoft Windows Bluetooth Service is a Bluetooth driver from Microsoft Microsoft Corporation, USA. A resource management error vulnerability exists in Microsoft Windows Bluetooth Service that stems from a contention condition due to improper synchronization of shared resources, which can be...