29 matches found
CVE-2026-20830
CVE-2026-20830 describes a race condition in the Capability Access Management Service (camsvc) that allows an authorized local attacker to elevate privileges. The issue is tied to concurrent execution on a shared resource and improper synchronization. Public exploit activity is noted in linked ad...
CVE-2026-20864 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
...
EUVD-2025-198124
When the service of ABP and AES is installed in a directory writable by non-administrative users, an attacker can replace or plant a DLL with the same name as one loaded by the service. Upon service restart, the malicious DLL is loaded and executed under the LocalSystem account, resulting in...
CVE-2025-58719
CVE-2025-58719 affects the Connected Devices Platform Service (Cdpsvc) in Windows. The issue is a use-after-free vulnerability that could allow an authorized local attacker to achieve privilege elevation. The connected documents confirm the vulnerability and its local impact, but do not provide e...
CVE-2025-50174 Windows Device Association Broker Service Elevation of Privilege Vulnerability
...
EUVD-2020-12048
Malware in sbrugna...
EUVD-2021-21139
Malware in sbrugna...
EUVD-2020-11959
Malware in sbrugna...
EUVD-2021-7160
Malicious code in bioql PyPI...
EUVD-2025-2441
Malicious code in bioql PyPI...
EUVD-2022-40651
Malicious code in bioql PyPI...
CVE-2025-54094 Windows Defender Firewall Service Elevation of Privilege Vulnerability
...
CVE-2025-53133 Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
...
CVE-2025-47975 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
...
Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability
Access of resource using incompatible type 'type confusion' in Windows SSDP Service allows an authorized attacker to elevate privileges locally...
Microsoft and Adobe Patch Tuesday, June 2025 Security Update Review
Microsoft's June 2025 Patch Tuesday has landed, addressing a new batch of critical and important vulnerabilities across Windows and enterprise products. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for June 2025 In this month's Patch Tuesday, June 2025 edition,...
CVE-2020-1138
An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations, aka 'Windows Storage Service Elevation of Privilege Vulnerability'...
CVE-2019-1341
An elevation of privilege vulnerability exists when umpo.dll of the Power Service, improperly handles a Registry Restore Key function, aka 'Windows Power Service Elevation of Privilege Vulnerability'...
CVE-2025-27490 Windows Bluetooth Service Elevation of Privilege Vulnerability
...
CVE-2025-21182 Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability
...