CVE-2021-47869 BRAdmin Professional 3.75 - 'BRA_Scheduler' Unquoted Service Path

Brother BRAdmin Professional 3.75 contains an unquoted service path vulnerability in the BRAScheduler service that allows local users to potentially execute arbitrary code. Attackers can place a malicious executable named 'BRAdmin' in the C:\Program Files x86\Brother\ directory to gain local syst...

CVE-2021-47869

Brother BRAdmin Professional 3.75 contains an unquoted service path vulnerability in the BRAScheduler service that allows local users to potentially execute arbitrary code. Attackers can place a malicious executable named 'BRAdmin' in the C:\Program Files x86\Brother\ directory to gain local syst...

Brother BRAdmin Professional code-related vulnerabilities

Brother BRAdmin Professional is a device management software developed by the American company Brother. Version 3.75 of Brother BRAdmin Professional contains a code vulnerability. This vulnerability stems from the BRAScheduler service having a service path that is not properly quoted, which may...

CVE-2025-60707

Use after free in Multimedia Class Scheduler Service MMCSS allows an authorized attacker to elevate privileges locally...

CVE-2025-60707

Use after free in Multimedia Class Scheduler Service MMCSS allows an authorized attacker to elevate privileges locally...

EUVD-2025-93439

Use after free in Multimedia Class Scheduler Service MMCSS allows an authorized attacker to elevate privileges locally...

CVE-2025-60707

CVE-2025-60707 is described in the connected documents as a use-after-free vulnerability in the Multimedia Class Scheduler Service (MMCSS) that can enable an authorized, local attacker to escalate privileges. The NCSC advisory explicitly associates this CVE with MMCSS and marks the impact as obta...

Multimedia Class Scheduler Service (MMCSS) Driver Elevation of Privilege Vulnerability

Use after free in Multimedia Class Scheduler Service MMCSS allows an authorized attacker to elevate privileges locally...

PT-2025-46470

Name of the Vulnerable Software and Affected Versions Multimedia Class Scheduler Service MMCSS affected versions not specified Description A use after free condition exists in the Multimedia Class Scheduler Service MMCSS. This allows a locally authorized attacker to elevate privileges...

Microsoft Windows 资源管理错误漏洞

Microsoft Windows is a suite of operating systems used by Microsoft Corporation USA for personal devices. A resource management error vulnerability exists in Microsoft Windows Multimedia Class Scheduler Service MMCSS. An attacker could exploit the vulnerability to elevate privileges. The followin...

EUVD-1999-1351

Malware in sbrugna...

EUVD-2021-24933

Malware in sbrugna...

Missing Encryption of Sensitive Data

Overview Affected versions of this package are vulnerable to Missing Encryption of Sensitive Data via the DownloadTinyFile function. An attacker can intercept and modify file downloads by performing a man-in-the-middle attack on network traffic, potentially causing peers to receive malicious file...

CVE-2021-38481

The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the function. An attacker may send a malicious payload that can enable the user to execute another SQL expression by sending a specific string...

CVE-2021-38481

The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the function. An attacker may send a malicious payload that can enable the user to execute another SQL expression by sending a specific string...

CVE-2021-38481

CVE-2021-38481 is an SQL Injection vulnerability in the scheduler service of AUVESY Versiondog. The issue arises from lack of sanitation of the supplied JOB ID, enabling an attacker to send a payload that could cause SQL expressions to be executed. Affected are Versiondog deployments prior to the...

CVE-2021-38481 AUVESY Versiondog

The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the function. An attacker may send a malicious payload that can enable the user to execute another SQL expression by sending a specific string...

Security feature bypass

A security feature bypass vulnerability exists in Microsoft Windows when the Task Scheduler service fails to properly verify client connections over RPC, aka 'Windows Task Scheduler Security Feature Bypass Vulnerability'...

KB4556854: Windows Server 2008 May 2020 Security Update

The remote Windows host is missing security update 4556854 or cumulative update 4556860. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests. An attacker who successfully exploited thi...

Microsoft Windows Multiple Vulnerabilities (KB4503267)

This host is missing a critical security update according to Microsoft KB4503267 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...