22 matches found
EUVD-2026-35534
Improper access control in Windows Administrator Protection allows an authorized attacker to bypass a security feature locally...
CVE-2026-42829
Improper access control in Windows Administrator Protection allows an authorized attacker to bypass a security feature locally...
CVE-2026-0232
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection...
CVE-2025-60721
Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...
CVE-2025-60718
Untrusted search path in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...
CVE-2025-60721
Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...
EUVD-2025-93412
Untrusted search path in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...
Windows Administrator Protection Elevation of Privilege Vulnerability
Untrusted search path in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...
Windows Administrator Protection Elevation of Privilege Vulnerability
Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...
PT-2025-46479
Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description An issue exists in Windows Administrator Protection related to an untrusted search path. This allows an authorized attacker to elevate privileges locally. Approximately 1 billion devices...
EUVD-2024-49349
Malicious code in bioql PyPI...
CVE-2024-29863
A race condition in the installer executable in Qlik Qlikview before versions May 2022 SR3 12.70.20300 and May 2023 SR2 12,80.20200 may allow an existing lower privileged user to cause code to be executed in the context of a Windows Administrator...
The vulnerability of the QlikView analytical platform, related to synchronization errors when using a common resource, allows a perpetrator to execute arbitrary code.
The vulnerability of the QlikView analytical platform is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow an attacker to execute arbitrary code within the context of the Windows administrator...
CVE-2024-29863
A race condition in the installer executable in Qlik Qlikview before versions May 2022 SR3 12.70.20300 and May 2023 SR2 12,80.20200 may allow an existing lower privileged user to cause code to be executed in the context of a Windows Administrator...
CVE-2024-29863
Qlikview contains a local privilege escalation in its MSI installer. The Red Team PoC shows a race condition during MSI repair (msiexec /fa) that causes the installer to load a DLL from C:\Users\AppData\Local\Temp, which an unprivileged user can replace in a narrow window to execute code as NT AU...
CVE-2024-29863
A race condition in the installer executable in Qlik Qlikview before versions May 2022 SR3 12.70.20300 and May 2023 SR2 12,80.20200 may allow an existing lower privileged user to cause code to be executed in the context of a Windows Administrator...
CVE-2024-29863
A race condition in the installer executable in Qlik Qlikview before versions May 2022 SR3 12.70.20300 and May 2023 SR2 12,80.20200 may allow an existing lower privileged user to cause code to be executed in the context of a Windows Administrator...
The vulnerability of the administration console of the SIMATIC PCS neo web-based system for managing technological processes allows a hacker to obtain the administrator’s Windows account credentials.
The vulnerability of the administration console of the SIMATIC PCS neo web-based process control system is related to the leakage of information about files and directories. Exploiting this vulnerability can allow an attacker to obtain administrator credentials for Windows...
CVE-2022-4326 Trellix xAgent permission bypass vulnerability
Improper preservation of permissions vulnerability in Trellix Endpoint Agent xAgent prior to V35.31.22 on Windows allows a local user with administrator privileges to bypass the product protection to uninstall the agent via incorrectly applied permissions in the removal protection functionality...
TPM 2.0 Sleep-Wake Error in BIOS Firmware - Lenovo Support US
No description provided...