CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB Creator 11.1 Feature Pack 2 Service Pack 1 and earlier versions...

7.8CVSS7.2AI score0.00109EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:20 a.m.•12 views

CVE-2013-1063

usb-creator 0.2.47 before 0.2.47.1, 0.2.40 before 0.2.40ubuntu2, and 0.2.38 before 0.2.38.2 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a 1...

7.2CVSS6.4AI score0.00061EPSS

Exploits0References1

OSV•added 2022/09/02 1:15 a.m.•1 views

CVE-2021-25657

7.8CVSS5.8AI score

Exploits0References2

NVD•added 2022/09/02 1:15 a.m.•11 views

CVE-2021-25657

7.8CVSS0.00109EPSS

Exploits1References2

Prion•added 2022/09/02 1:15 a.m.•21 views

Privilege escalation

4.3CVSS7.8AI score0.00109EPSS

Exploits1References2Affected Software1

CVE•added 2022/09/02 1:5 a.m.•62 views

CVE-2021-25657

CVE-2021-25657 describes a local privilege-escalation vulnerability in Avaya IP Office Admin Lite and USB Creator, affecting version 11.1 Feature Pack 2 Service Pack 1 and earlier. The documented impact is that a local user may escalate privileges. The CVSS metrics in the sources flag high impact...

7.8CVSS7.9AI score0.00109EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/09/02 1:5 a.m.•15 views

CVE-2021-25657 Avaya IP Office Privilege Escalation Vulnerability

7.8CVSS8.1AI score0.00109EPSS

Exploits1References2

CNNVD•added 2022/09/02 12:0 a.m.•1 views

Avaya IP Office 安全漏洞

Avaya IP Office is a small business phone system from Avaya, Inc. in the United States. A security vulnerability exists in Avaya IP Office 11.1 FP2 SP1 and prior versions, which stems from Admin Lite and USB Creator allowing local users to elevate privileges...

7.8CVSS7.3AI score0.00109EPSS

Exploits1References3

OpenVAS•added 2022/08/26 12:0 a.m.•8 views

Ubuntu: Security Advisory (USN-2576-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References3

CNVD•added 2019/03/18 12:0 a.m.•2 views

Intel USB 3.0 Creator Utility Privilege License and Access Control Vulnerability

Intel USB 3.0 Creator Utility is a tool for installing USB 3.0 drivers from Intel USA. A privilege-granting and access control vulnerability exists in the Intel USB 3.0 Creator Utility. An attacker could exploit the vulnerability to elevate privileges...

7.8CVSS6.8AI score0.00104EPSS

Exploits0References1

Prion•added 2017/09/28 1:29 a.m.•9 views

Design/Logic Flaw

usb-creator before 0.2.38.3ubuntu0.1 on Ubuntu 12.04 LTS, before 0.2.56.3ubuntu0.1 on Ubuntu 14.04 LTS, before 0.2.62ubuntu0.3 on Ubuntu 14.10, and before 0.2.67ubuntu0.1 on Ubuntu 15.04 allows local users to gain privileges by leveraging a missing call checkpolkit for the KVMTest method...

4.6CVSS7.1AI score0.00083EPSS

Exploits1References7Affected Software1

NVD•added 2017/09/28 1:29 a.m.•8 views

CVE-2015-3643

7.8CVSS7.7AI score0.00083EPSS

Exploits1References7