Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Stack-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

Windows Connected Devices Platform Service Elevation of Privilege Vulnerability

Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally...

SAP HCM My Timesheet Fiori 安全漏洞

SAP HCM My Timesheet Fiori is a timesheet application from SAP, Germany. A security vulnerability exists in SAP HCM My Timesheet Fiori 2.0 that stems from a lack of authorization checking and could lead to elevated privileges...

Microsoft Windows Defender 安全漏洞

Microsoft Windows Defender is a suite of antivirus software that comes with Windows systems from Microsoft USA. A security vulnerability exists in Microsoft Windows Defender. An attacker could exploit the vulnerability to elevate privileges. The following products and versions are affected: Windo...

PT-2025-36842

Name of the Vulnerable Software and Affected Versions: Windows Ancillary Function Driver for WinSock affected versions not specified Description: A stack-based buffer overflow exists in the Windows Ancillary Function Driver for WinSock. This issue allows a locally authorized attacker to elevate...

PT-2025-36817

Name of the Vulnerable Software and Affected Versions: Azure Windows Virtual Machine Agent affected versions not specified Description: An improper access control issue exists in the Azure Windows Virtual Machine Agent. This allows an authorized attacker to elevate privileges locally...

PT-2025-36824

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: An untrusted pointer dereference in Windows Desktop Window Manager DWM can allow a locally authenticated attacker to gain elevated privileges. This issue allows attackers to affect the...

PT-2025-36879

Name of the Vulnerable Software and Affected Versions: Windows Defender Firewall Service affected versions not specified Description: A type confusion issue exists within the Windows Defender Firewall Service. This flaw enables a locally authenticated attacker to gain elevated privileges on the...

CVE-2025-43722

CVE-2025-43722 affects Dell PowerScale OneFS versions prior to 9.12.0.0 and is due to improper privilege management. A high-privilege attacker with local access could potentially escalate privileges. The issue is documented across multiple sources: affected product is Dell PowerScale OneFS; root ...

Google Android Obfuscated Proxy Vulnerability

Google Android is a free and open source mobile operating system based on the Linux kernel, developed by Google Inc. and the Open Handset Alliance, and is mainly used for smartphones, tablets and other devices. Google Android suffers from an obfuscated proxy vulnerability that originates from an...

Google Android Logic Error Vulnerability

Google Android is a free and open source mobile operating system based on the Linux kernel, developed by Google Inc. and the Open Handset Alliance, and is mainly used for smartphones, tablets and other devices. Google Android suffers from a logic error vulnerability that can be exploited by...

Google Android Logic Error Vulnerability (CNVD-2025-26798)

Google Android is a free and open source mobile operating system based on the Linux kernel, developed by Google Inc. and the Open Handset Alliance, and is mainly used for smartphones, tablets and other devices. Google Android suffers from a logic error vulnerability that can be exploited by...

Dell PowerScale OneFS 安全漏洞

Dell PowerScale OneFS is an enterprise-class distributed file system from Dell. A privilege mismanagement vulnerability exists in Dell PowerScale OneFS versions prior to 9.12.0.0, which stems from the system failing to properly implement a privilege control mechanism. An attacker could exploit th...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unrestricted id mapping change that could lead to elevation of privilege...

CVE-2025-43726

Dell Alienware Command Center 5.x AWCC, versions prior to 5.10.2.0, contains an Improper Link Resolution Before File Access 'Link Following'" vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges...

CVE-2025-32325

In appendFrom of Parcel.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-36896

WLAN in Android before 2025-09-05 on Google Pixel devices allows elevation of privilege, aka A-394765106...

CVE-2025-36896

WLAN in Android before 2025-09-05 on Google Pixel devices allows elevation of privilege, aka A-394765106...

Google Android 安全漏洞

Google Android is a free and open source mobile operating system based on the Linux kernel, developed by Google Inc. and the Open Handset Alliance, and is mainly used for smartphones, tablets and other devices. Google Android suffers from a post-release reuse vulnerability, which can be exploited...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that can be exploited by an attacker to cause a local elevation of privilege...