Lucene search
K

832 matches found

CVE
CVE
added 2025/02/05 12:0 a.m.84 views

CVE-2024-48394

The CVE-2024-48394 entry concerns the NDD Print driver with a TOCTOU vulnerability in versions prior to 5.24.3. An unprivileged user could exploit the flaw to gain SYSTEM-level access on the device. Affected component: NDD Print driver (driver-level TOCTOU). Impact is described as SYSTEM-level co...

7.8CVSS7AI score0.00128EPSS
Exploits0References1
OSV
OSV
added 2025/01/28 5:15 p.m.3 views

UBUNTU-CVE-2025-0781

An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path that the user has permission to modify at the operating-system level...

9.9CVSS5.8AI score0.00342EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.5 views

The vulnerability of the Digital Media component of Windows operating systems, which allows a perpetrator to elevate their privileges to a system-level level

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

6.8CVSS7.7AI score0.00818EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.4 views

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

6.8CVSS7.7AI score0.00818EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.6 views

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

6.8CVSS7.7AI score0.00818EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.5 views

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

6.8CVSS7.7AI score0.00818EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.4 views

The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.

The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...

6.8CVSS7.7AI score0.00818EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/15 12:0 a.m.5 views

The vulnerability of the Windows Installer component on Windows operating systems allows a perpetrator to elevate their privileges to the SYSTEM level.

The vulnerability of the Windows Installer component in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...

7.8CVSS7.7AI score0.00538EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/01/15 12:0 a.m.5 views

The vulnerability of the VSP Elevation function in the hardware virtualization technology of Windows Hyper-V operating systems allows attackers to elevate their privileges to the SYSTEM level.

The vulnerability of the VSP Elevation function in the hardware virtualization layer of Windows Hyper-V operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...

7.8CVSS8.1AI score0.09798EPSS
Exploits5References4
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.2 views

PT-2025-1172 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can...

6.8CVSS9.2AI score0.00744EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.4 views

PT-2025-1103 · Microsoft · Windows App Package Installer +1

Name of the Vulnerable Software and Affected Versions: Windows App Package Installer affected versions not specified Description: The issue is related to weaknesses in the authorization procedure of the Windows App Package Installer, allowing an attacker to elevate their privileges. This can be...

7.8CVSS9.5AI score0.00606EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.2 views

PT-2025-1170 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of Windows Digital Media and involves a memory reading error beyond the allowed range. This can potentially allow an attacker to elevate...

6.8CVSS9.2AI score0.00818EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.2 views

PT-2025-1162 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can...

6.8CVSS9.2AI score0.00818EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-1169 · Microsoft · Windows Digital Media +1

Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can be...

6.8CVSS9.1AI score0.00818EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.6 views

PT-2025-1386 · Opsview · Opsview Monitor Agent

Name of the Vulnerable Software and Affected Versions: Opsview Monitor Agent version 6.8 Description: A problem was discovered in Opsview Monitor Agent where an unauthenticated remote attacker can call check nrpe against affected targets, specifying known NRPE plugins. In default installations,...

9.8CVSS8AI score0.0116EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/01/08 12:0 a.m.12 views

CVE-2024-52869

Certain Teradata account-handling code through 2024-11-04, used with SUSE Enterprise Linux Server, mismanages groups. Specifically, when there is an operating system move from SUSE Enterprise Linux Server SLES 12 Service Pack SP 2 or 3 to SLES 15 SP2 on Teradata Database systems, some...

0.00239EPSS
Exploits0References2
NVD
NVD
added 2024/12/19 4:15 p.m.15 views

CVE-2024-9154

A code injection vulnerability in HMS Networks Ewon Flexy 205 allows executing commands on system level on the device. This issue affects Ewon Flexy 205: through 14.8s0 2633...

8.6CVSS0.00602EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.4 views

The vulnerability of the EVGA Precision X1 system’s software relates to the unsafe use of privileges, allowing a violator to increase their privileges.

The vulnerability of the EVGA Precision X1 system’s software relates to insecure handling of privileges. Exploiting this vulnerability could allow an attacker to elevate their privileges to “NT AUTHORITY\SYSTEM” by associating \Device\PhysicalMemory with the calling process...

7.8CVSS7.5AI score0.00605EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/12/12 1:40 a.m.5 views

CVE-2024-11947

GFI Archiver Core Service Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is required to exploit this vulnerability. The specific flaw exists withi...

8.8CVSS6.3AI score0.00771EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/12/11 12:0 a.m.2 views

The vulnerability of the Windows Common Log File System (CLFS) driver in Windows operating systems allows a hacker to elevate their privileges to the SYSTEM level.

The vulnerability of the Windows Common Log File System CLFS driver in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...

7.8CVSS8.1AI score0.25414EPSS
Exploits4References3
Rows per page
Query Builder