12 matches found
EUVD-2024-38255
Malicious code in bioql PyPI...
EUVD-2025-17765
Malicious code in bioql PyPI...
Windows SDK < 10.0.26100.4188 Privilege Escalation
The version of Windows SDK installed on the remote host is prior to 10.0.26100.4188. It is, therefore, affected by a privilege escalation vulnerability. Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally. Note that Nessus has not tested for this iss...
CVE-2025-47962
Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally...
CVE-2025-47962
CVE-2025-47962 is an elevation-of-privilege vulnerability in Windows SDK caused by improper access control, allowing an authorized local attacker to gain SYSTEM/privilege-level access. A PoC exploit exists in a GitHub repo (CVE-2025-47962-POC) showing local DLL loading and service manipulation (I...
Windows SDK Elevation of Privilege Vulnerability
Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally...
KLA84761 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in .NET and Visual Studio can be exploited remotely...
PT-2025-24880
Name of the Vulnerable Software and Affected Versions: Windows SDK affected versions not specified Description: The issue is related to improper access control in the Windows SDK, allowing an authorized attacker to elevate privileges locally. There is no information provided about the estimated...
Microsoft Windows 访问控制错误漏洞
Microsoft Windows is a suite of operating systems used by Microsoft Corporation USA for personal devices. An access control error vulnerability exists in the Microsoft Windows SDK. An attacker can exploit the vulnerability to elevate privileges...
Security Flaw in Styra's OPA Exposes NTLM Hashes to Remote Attackers
Details have emerged about a now-patched security flaw in Styra's Open Policy Agent OPA that, if successfully exploited, could have led to leakage of New Technology LAN Manager NTLM hashes. "The vulnerability could have allowed an attacker to leak the NTLM credentials of the OPA server's local us...
WDExtract - Extract Windows Defender Database From Vdm Files And Unpack It
ExtractWindows Defender database from vdm files and unpack it This program distributed as-is, without any warranty; No official support, if you like this tool, feel free to contribute. Features Unpack VDM containers of Windows Defender/Microsoft Security Essentials; Decrypt VDM container embedded...
sRDI - Shellcode Implementation Of Reflective DLL Injection
sRDI allows for the conversion of DLL files to position independent shellcode. Functionality is accomplished via two components: C project which compiles a PE loader implementation RDI to shellcode Conversion code which attaches the DLL, RDI, and user data together with a bootstrap This project i...