5 matches found
CVE-2025-15642
Netskope is notified about a potential gap in its Netskoped Client for Windows systems where a malicious insider with admin privileges can lead to bypassing the NSClient Tamper Protections due to weak Discretionary Access Control List DACLs on the service object and related registry keys,. Produc...
PT-2026-5680
A medium-severity vulnerability has been identified in BeyondTrust Privilege Management for Windows versions =25.7. Under certain conditions, a local authenticated user with elevated privileges may be able to bypass the product’s anti-tamper protections, which could allow access to protected...
EUVD-2025-22928
Malicious code in bioql PyPI...
CVE-2025-6250 Privilege Management for Windows - Elevation of Privilege
Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...
CVE-2025-6250
CVE-2025-6250 — Normal mode : Multiple sources describe a privilege escalation in BeyondTrust Privilege Management for Windows prior to 25.4.270.0 via wmic.exe. When a user runs wmic.exe with a full admin token, they can stop the Defendpoint service, bypass anti-tamper protections, and add themse...