Lucene search
+L

122 matches found

Cvelist
Cvelist
added 2026/01/27 11:35 a.m.33 views

CVE-2025-41726 Beckhoff: Arbitrary code execution within privileged processes

A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to the web service of the Device Manager or locally via an API and can cause integer overflows which then may lead to arbitrary code execution within privileged processes...

8.8CVSS0.00414EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.12 views

PT-2026-4909

A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to the web service of the Device Manager or locally via an API and can cause integer overflows which then may lead to arbitrary code execution within privileged processes...

8.8CVSS6.4AI score0.00414EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001460)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001460 advisory. A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while...

4.5CVSS6.5AI score0.00225EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004464)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004464 advisory. A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while...

4.5CVSS6.5AI score0.00225EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 8:35 a.m.14 views

CVE-2020-10140

Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. Because some privileged processes are executed from the C:\ProgramData\Acronis, an unprivileged user can achieve arbitrary code execution with SYSTEM privileges by placing a DLL in one of several paths...

7.8CVSS7.5AI score0.00381EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/18 6:43 a.m.10 views

CVE-2025-67781

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Local unprivileged users can manipulate privileged processes to gain more privileges on Windows computers...

9.9CVSS7.1AI score0.00241EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/17 12:0 a.m.30 views

CVE-2025-67781

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Local unprivileged users can manipulate privileged processes to gain more privileges on Windows computers...

0.00241EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.6 views

TencentOS Server 4: screen (TSSA-2025:0404)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0404 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

6CVSS6.1AI score0.00213EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-2106

Malware in sbrugna...

2.1CVSS6.4AI score0.00347EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28070

Malicious code in bioql PyPI...

5.7CVSS5.5AI score0.00167EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lack of access control checks in Instrumentation in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to...

6.5CVSS7.4AI score0.01373EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-46805

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed...

5.7CVSS5.7AI score0.00167EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.6 views

EulerOS 2.0 SP11 : screen (EulerOS-SA-2025-1942)

According to the versions of the screen package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : For a short time they PTY is set to mode 666, allowing any user on the system to connect to the screen session.CVE-2025-46802 A minor information...

6CVSS6.1AI score0.00213EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/21 12:0 a.m.8 views

EulerOS 2.0 SP12 : screen (EulerOS-SA-2025-1841)

According to the versions of the screen package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when...

5.7CVSS5.8AI score0.00167EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/21 12:0 a.m.6 views

EulerOS 2.0 SP12 : screen (EulerOS-SA-2025-1840)

According to the versions of the screen package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when...

5.7CVSS5.8AI score0.00167EPSS
Exploits0References2
OSV
OSV
added 2025/05/26 2:15 p.m.5 views

CVE-2025-46805

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...

5.7CVSS7AI score0.00167EPSS
Exploits0References2
OSV
OSV
added 2025/05/26 2:15 p.m.1 views

DEBIAN-CVE-2025-46805

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...

5.7CVSS5.7AI score0.00167EPSS
Exploits0References1
CVE
CVE
added 2025/05/26 1:16 p.m.83 views

CVE-2025-46805

CVE-2025-46805 is disclosed in multiple advisories tied to GNU Screen. The available documents confirm that: the affected component is the Screen package, with versions 5.0.0 and older version 4 releases. The root cause is a TOCTOU race condition that permits sending SIGHUP and SIGCONT to privile...

5.7CVSS5.3AI score0.00167EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/26 1:16 p.m.6 views

CVE-2025-46805 Screen has a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...

5.7CVSS6.7AI score0.00167EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/26 1:16 p.m.30 views

CVE-2025-46805 Screen has a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...

5.7CVSS0.00167EPSS
Exploits0References2
Rows per page
Query Builder