832 matches found
CVE-2024-48394
The CVE-2024-48394 entry concerns the NDD Print driver with a TOCTOU vulnerability in versions prior to 5.24.3. An unprivileged user could exploit the flaw to gain SYSTEM-level access on the device. Affected component: NDD Print driver (driver-level TOCTOU). Impact is described as SYSTEM-level co...
UBUNTU-CVE-2025-0781
An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path that the user has permission to modify at the operating-system level...
The vulnerability of the Digital Media component of Windows operating systems, which allows a perpetrator to elevate their privileges to a system-level level
The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...
The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.
The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...
The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.
The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...
The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.
The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...
The vulnerability of the Digital Media component of Windows operating systems allows attackers to elevate their privileges to a system-level level.
The vulnerability of the Digital Media component of Windows operating systems relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system-level level...
The vulnerability of the Windows Installer component on Windows operating systems allows a perpetrator to elevate their privileges to the SYSTEM level.
The vulnerability of the Windows Installer component in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...
The vulnerability of the VSP Elevation function in the hardware virtualization technology of Windows Hyper-V operating systems allows attackers to elevate their privileges to the SYSTEM level.
The vulnerability of the VSP Elevation function in the hardware virtualization layer of Windows Hyper-V operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...
PT-2025-1172 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can...
PT-2025-1103 · Microsoft · Windows App Package Installer +1
Name of the Vulnerable Software and Affected Versions: Windows App Package Installer affected versions not specified Description: The issue is related to weaknesses in the authorization procedure of the Windows App Package Installer, allowing an attacker to elevate their privileges. This can be...
PT-2025-1170 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of Windows Digital Media and involves a memory reading error beyond the allowed range. This can potentially allow an attacker to elevate...
PT-2025-1162 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can...
PT-2025-1169 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can be...
PT-2025-1386 · Opsview · Opsview Monitor Agent
Name of the Vulnerable Software and Affected Versions: Opsview Monitor Agent version 6.8 Description: A problem was discovered in Opsview Monitor Agent where an unauthenticated remote attacker can call check nrpe against affected targets, specifying known NRPE plugins. In default installations,...
CVE-2024-52869
Certain Teradata account-handling code through 2024-11-04, used with SUSE Enterprise Linux Server, mismanages groups. Specifically, when there is an operating system move from SUSE Enterprise Linux Server SLES 12 Service Pack SP 2 or 3 to SLES 15 SP2 on Teradata Database systems, some...
CVE-2024-9154
A code injection vulnerability in HMS Networks Ewon Flexy 205 allows executing commands on system level on the device. This issue affects Ewon Flexy 205: through 14.8s0 2633...
The vulnerability of the EVGA Precision X1 system’s software relates to the unsafe use of privileges, allowing a violator to increase their privileges.
The vulnerability of the EVGA Precision X1 system’s software relates to insecure handling of privileges. Exploiting this vulnerability could allow an attacker to elevate their privileges to “NT AUTHORITY\SYSTEM” by associating \Device\PhysicalMemory with the calling process...
CVE-2024-11947
GFI Archiver Core Service Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is required to exploit this vulnerability. The specific flaw exists withi...
The vulnerability of the Windows Common Log File System (CLFS) driver in Windows operating systems allows a hacker to elevate their privileges to the SYSTEM level.
The vulnerability of the Windows Common Log File System CLFS driver in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...