Lucene search
K

832 matches found

Prion
Prion
added 2022/05/20 1:15 p.m.11 views

Code injection

Sony PlayMemories Home v6.0 contains an unquoted service path which allows attackers to escalate privileges to the system level...

7.2CVSS6.7AI score0.00414EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/05/20 1:15 p.m.12 views

Code injection

MiniTool Partition Wizard v12.0 contains an unquoted service path which allows attackers to escalate privileges to the system level...

7.2CVSS7.7AI score0.00416EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/05/20 12:48 p.m.19 views

CVE-2022-27094

Sony PlayMemories Home v6.0 contains an unquoted service path which allows attackers to escalate privileges to the system level...

7.6AI score0.00414EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2022/05/17 1:19 p.m.51 views

iPhones Vulnerable to Attack Even When Turned Off

Attackers can target iPhones even when they are turned off due to how Apple implements standalone wireless features Bluetooth, Near Field Communication NFC and Ultra-wideband UWB technologies in the device, researchers have found. These features—which have access to the iPhone’s Secure Element SE...

7.8AI score
Exploits0References3
NVD
NVD
added 2022/04/28 3:15 p.m.21 views

CVE-2022-22782

The Zoom Client for Meetings for Windows prior to version 5.9.7, Zoom Rooms for Conference Room for Windows prior to version 5.10.0, Zoom Plugins for Microsoft Outlook for Windows prior to version 5.10.3, and Zoom VDI Windows Meeting Clients prior to version 5.9.6; was susceptible to a local...

7.9CVSS0.0037EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/21 12:0 a.m.29 views

FANUC ROBOGUIDE elevation of privilege vulnerability

FANUC ROBOGUIDE is a robot simulation software from FANUC, Japan. FANUC ROBOGUIDE v9.40083.00.05 and previous versions have an elevation of privilege vulnerability. The vulnerability stems from the fact that the affected product is vulnerable to misconfigured binaries, and an attacker with...

6CVSS3.5AI score0.00159EPSS
Exploits0References1
Prion
Prion
added 2022/04/20 4:15 p.m.14 views

Privilege escalation

The affected product is vulnerable to misconfigured binaries, allowing users on the target PC with SYSTEM level privileges access to overwrite the binary and modify files to gain privilege escalation...

3.3CVSS6.3AI score0.00159EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/04/20 3:30 p.m.15 views

CVE-2021-38483 ICSA-22-109-03 FANUC ROBOGUIDE Simulation Platform

The affected product is vulnerable to misconfigured binaries, allowing users on the target PC with SYSTEM level privileges access to overwrite the binary and modify files to gain privilege escalation...

6CVSS6.5AI score0.00159EPSS
Exploits0References1
OSV
OSV
added 2022/04/14 4:15 p.m.2 views

CVE-2022-25165

An issue was discovered in Amazon AWS VPN Client 2.0.0. A TOCTOU race condition exists during the validation of VPN configuration files. This allows parameters outside of the AWS VPN Client allow list to be injected into the configuration file prior to the AWS VPN Client service running as SYSTEM...

7CVSS6.7AI score0.00518EPSS
Exploits1References2
OSV
OSV
added 2022/04/11 8:15 p.m.2 views

CVE-2022-20067

In mdp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05836585; Issue ID: ALPS05836585...

6.7CVSS5.9AI score0.00113EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/02 12:0 a.m.16 views

BitComet Service for Windows Elevation of Privilege Vulnerability

BitComet is a BitTorrent client software written in C for the Microsoft Windows platform, which can also be used for HTTP/FTP downloads.An elevation of privilege vulnerability exists in BitComet Service for Windows, which can be exploited by attackers to elevate privileges to the system level...

7.8CVSS5.6AI score0.00344EPSS
Exploits1
CNNVD
CNNVD
added 2022/03/31 12:0 a.m.3 views

BitComet 代码问题漏洞

BitComet is a BitTorrent client software written in C for the Microsoft Windows platform, which can also be used for HTTP/FTP downloads.An elevation of privilege vulnerability exists in BitComet Service for Windows, which can be exploited by attackers to elevate privileges to the system level...

7.8CVSS5.6AI score0.00344EPSS
Exploits1References2
NVD
NVD
added 2022/03/04 5:15 p.m.12 views

CVE-2022-25623

The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations...

7.8CVSS0.0027EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/03/03 3:15 p.m.4 views

CVE-2022-25031

Remote Desktop Commander Suite Agent before v4.8 contains an unquoted service path which allows attackers to escalate privileges to the system level...

7.8CVSS5.8AI score0.00241EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/03/03 12:0 a.m.4 views

Remote Desktop Commander Suite Agent 代码问题漏洞

Remote Desktop Commander Suite Agent is a terminal server and Citrix session management software. Provides comprehensive management and visibility into server-based computing environments. Whether you are running Microsoft RDS, Windows Virtual Desktops/Azure Virtual Desktops, Citrix...

7.8CVSS7.5AI score0.00241EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/02/05 10:0 a.m.5 views

CVE-2021-4199

Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools for Windows allows a remote attacker to escalate local privileges to SYSTEM. This issu...

7.8CVSS6.7AI score0.00758EPSS
Exploits0References3
CISA KEV Catalog
CISA KEV Catalog
added 2022/01/28 12:0 a.m.29 views

Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability

Microsoft Windows BITS is vulnerable to to a privilege elevation vulnerability if it improperly handles symbolic links. An actor can exploit this vulnerability to execute arbitrary code with system-level privileges...

7.8CVSS3.8AI score0.42524EPSS
In wildExploits7
CNNVD
CNNVD
added 2022/01/18 12:0 a.m.8 views

Advantech 安全漏洞

Advantech DeviceOn/iEdge Server is industrial device intelligence software that enables non-intelligent devices to have IoT connectivity management capabilities.Advantech DeviceOn/iEdge Server elevation of privilege vulnerability can be exploited by attackers to gain elevated privileges to NT...

8.8CVSS5.6AI score0.00365EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/01/10 12:0 a.m.6 views

PT-2022-6124 · Microsoft · Windows Backup Service +1

Name of the Vulnerable Software and Affected Versions: Windows Backup Service versions prior to the fixed version Description: The issue is related to errors in privilege management within the Windows Backup Service, allowing an attacker to elevate their privileges to the level of SYSTEM. This ca...

7.1CVSS9.2AI score0.05327EPSS
Exploits2References22
OSV
OSV
added 2021/12/22 7:15 p.m.2 views

CVE-2021-21910

A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.15 30.07.2021. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to trigger...

7.8CVSS7.1AI score0.00314EPSS
Exploits1References1
Rows per page
Query Builder