5025 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-43591
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Azure Command Line Integration CLI Elevation of Privilege Vulnerability CVE-2024-43591 Note that Nessus relies on the presence of the package as reported by the...
CVE-2025-55316
External control of file name or path in Azure Arc allows an authorized attacker to elevate privileges locally...
CVE-2025-55245
Improper link resolution before file access 'link following' in Xbox allows an authorized attacker to elevate privileges locally...
CVE-2025-55245
Improper link resolution before file access 'link following' in Xbox allows an authorized attacker to elevate privileges locally...
CVE-2025-54912
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally...
CVE-2025-54895
Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally...
CVE-2025-54109
Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...
CVE-2025-54110
Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally...
CVE-2025-54111
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally...
CVE-2025-54105
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...
CVE-2025-54104
Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...
CVE-2025-54104
Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...
CVE-2025-54094
Access of resource using incompatible type 'type confusion' in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally...
CVE-2025-53807
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...
CVE-2025-53802
Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally...
CVE-2025-49734
Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate privileges locally...
CVE-2025-49734
Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate privileges locally...
CVE-2025-54093 Windows TCP/IP Driver Elevation of Privilege Vulnerability
...
Microsoft Brokering File System Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...
Xbox Gaming Services Elevation of Privilege Vulnerability
Improper link resolution before file access 'link following' in Xbox allows an authorized attacker to elevate privileges locally...