Metasploit Wrap-Up 11/07/2025

New module content 3 Centreon authenticated command injection leading to RCE via broker engine "reload" parameter Author: h00die-gr3y [email protected] Type: Exploit Pull request: 20672 contributed by h00die-gr3y Path: linux/http/centreonauthrcecve20255946 AttackerKB reference: CVE-2025-5946...

EUVD-2019-1589

Malware in sbrugna...

EUVD-2024-43935

Malicious code in bioql PyPI...

EUVD-2023-25708

Malicious code in bioql PyPI...

CVE-2025-33067 Windows Task Scheduler Elevation of Privilege Vulnerability

...

CVE-2025-33067

CVE-2025-33067 — Windows Kernel local privilege escalation due to improper privilege management. Affects the Windows Kernel; attacker can gain elevated rights locally with no user interaction. CVSSv3.1 base score 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Connected sources confirm the impact as l...

CVE-2025-33067 Windows Task Scheduler Elevation of Privilege Vulnerability

...

Windows Task Scheduler Elevation of Privilege Vulnerability

Improper privilege management in Windows Kernel allows an unauthorized attacker to elevate privileges locally...

CVE-2019-0838

An information disclosure vulnerability exists when Windows Task Scheduler improperly discloses credentials to Windows Credential Manager, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0839...

CVE-2024-49072

Windows Task Scheduler Elevation of Privilege Vulnerability...

CVE-2024-49072 Windows Task Scheduler Elevation of Privilege Vulnerability

...

CVE-2024-49072

Technical details about CVE-2024-49072 are not publicly available in the provided documents. Monitor for updates from official advisories; no covered exploit specifics, affected products, versions, or mitigations are provided here.

CVE-2024-49072 Windows Task Scheduler Elevation of Privilege Vulnerability

...

Windows Task Scheduler Elevation of Privilege Vulnerability

...

About Elevation of Privilege – Windows Task Scheduler (CVE-2024-49039) vulnerability

About Elevation of Privilege - Windows Task Scheduler CVE-2024-49039 vulnerability. It was released on November Microsoft Patch Tuesday and showed signs of exploitation in the wild right away. To exploit the vulnerability, an authenticated attacker runs a specially crafted application on the targ...

CVE-2024-49039

Windows Task Scheduler Elevation of Privilege Vulnerability...

CVE-2024-49039 Windows Task Scheduler Elevation of Privilege Vulnerability

...

CVE-2024-49039

CVE-2024-49039 is a Windows Task Scheduler privilege-escalation vulnerability. An authenticated local attacker can elevate privileges outside of AppContainer and access privileged RPC functions via the Task Scheduler, enabling local privilege escalation with high impact (CVE-2024-49039). There ar...

Microsoft Windows Task Scheduler 授权问题漏洞

Microsoft Windows Task Scheduler is an automation tool from Microsoft Corporation USA that allows users to automate scheduled tasks when specific conditions are met. An authorization issue vulnerability exists in Microsoft Windows Task Scheduler. An attacker could exploit the vulnerability to...

PT-2024-7873

Name of the Vulnerable Software and Affected Versions Windows Task Scheduler versions prior to the fixed version in November Patch Tuesday Description The vulnerability is an elevation-of-privilege issue in the Windows Task Scheduler, allowing attackers to elevate their privileges to Medium...