22 matches found
CVE-2023-29187
A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup Software Installation Program - version 9.0, resulting in a privilege escalation running code as administrator of the very same Windows PC. A successful attack depends on various preconditions beyond the...
CVE-2021-27608
An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during the installation process that is performed when an executable file is registered. This could further lead to complete compromise of confidentiality, Integrity and Availability...
EUVD-2021-14355
Malware in sbrugna...
EUVD-2025-1498
Malicious code in bioql PyPI...
EUVD-2023-32788
Malicious code in bioql PyPI...
CVE-2025-0069
Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or with access to a compromised corporate user�s Windows account could gain higher privileges. With this, he could move laterally within the network and further compromise the active directory of a...
CVE-2025-0069
Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or with access to a compromised corporate user�s Windows account could gain higher privileges. With this, he could move laterally within the network and further compromise the active directory of a...
CVE-2025-0069 DLL Hijacking vulnerability in SAPSetup
Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or with access to a compromised corporate user�s Windows account could gain higher privileges. With this, he could move laterally within the network and further compromise the active directory of a...
CVE-2025-0069
CVE-2025-0069 describes a DLL-injection vulnerability in SAPSetup. The affected component is SAPSetup, where an attacker with local user privileges or access to a compromised Windows account can gain higher privileges, enabling lateral movement and further compromise of the Active Directory, with...
CVE-2025-0069 DLL Hijacking vulnerability in SAPSetup
Due to DLL injection vulnerability in SAPSetup, an attacker with either local user privileges or with access to a compromised corporate user�s Windows account could gain higher privileges. With this, he could move laterally within the network and further compromise the active directory of a...
SAP SapSetup 代码问题漏洞
SAP SapSetup is an application from SAP, Germany. A suite of tools for installing, updating, maintaining, and distributing software on Windows. A code issue vulnerability exists in SAP SapSetup that stems from the presence of a DLL injection vulnerability, where an attacker with local user rights...
CVE-2023-29187
A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup Software Installation Program - version 9.0, resulting in a privilege escalation running code as administrator of the very same Windows PC. A successful attack depends on various preconditions beyond the...
Privilege escalation
A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup Software Installation Program - version 9.0, resulting in a privilege escalation running code as administrator of the very same Windows PC. A successful attack depends on various preconditions beyond the...
CVE-2023-29187 DLL Hijacking vulnerability in SapSetup (Software Installation Program)
A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup Software Installation Program - version 9.0, resulting in a privilege escalation running code as administrator of the very same Windows PC. A successful attack depends on various preconditions beyond the...
CVE-2023-29187
Summary: CVE-2023-29187 is a DLL hijacking vulnerability in SAP SapSetup (Software Installation Program) 9.0 on Windows. The issue allows a user with basic privileges to escalate to administrator by exploiting a DLL load order/targeted DLL hijack, with the attacker needing local access and precon...
CVE-2023-29187 DLL Hijacking vulnerability in SapSetup (Software Installation Program)
A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup Software Installation Program - version 9.0, resulting in a privilege escalation running code as administrator of the very same Windows PC. A successful attack depends on various preconditions beyond the...
PT-2023-22190 · Sap · Sapsetup
Name of the Vulnerable Software and Affected Versions: SapSetup version 9.0 Description: A Windows user with basic user authorization can exploit a DLL hijacking attack in SapSetup, resulting in a privilege escalation running code as administrator of the same Windows PC. A successful attack depen...
CVE-2021-27608
An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during the installation process that is performed when an executable file is registered. This could further lead to complete compromise of confidentiality, Integrity and Availability...
CVE-2021-27608
An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during the installation process that is performed when an executable file is registered. This could further lead to complete compromise of confidentiality, Integrity and Availability...
Privilege escalation
An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during the installation process that is performed when an executable file is registered. This could further lead to complete compromise of confidentiality, Integrity and Availability...