CVE-2024-3892

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system...

CVE-2024-3892 Local code execution vulnerability in Telerik UI for WinForms

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system...

CVE-2024-3892 Local code execution vulnerability in Telerik UI for WinForms

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system...

CVE-2024-3892

CVE-2024-3892 affects Telerik UI for WinForms. The vulnerability allows a local code execution through an untrusted theme assembly on Windows, starting from version 2021.1.122 and affecting versions before 2024.2.514. Practical impact is local compromise when processing a theme assembly within th...

PDF-XChange Editor 安全漏洞

PDF-XChange Editor is a PDF file viewing software from PDF-XChange, Inc. that runs on Microsoft Windows systems. A security vulnerability exists in PDF-XChange Editor that stems from a JPG File Parsing heap-based buffer overflow remote code execution vulnerability...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with security features allows a perpetrator to circumvent security restrictions.

The vulnerability of the Secure Boot protocol for Windows operating systems lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to circumvent security restrictions remotely...

Critical Rust Flaw Renders Windows Systems Vulnerable

...

CVE-2024-26179

Windows Routing and Remote Access Service RRAS Remote Code Execution Vulnerability...

Exploit for CVE-2024-2432

CVE-2024-2432 Palo Alto GlobalProtect EoP On Windows system,...

Qognify VMS Client Viewer 7.1 DLL Hijacking

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Local Privilege Escalation via DLL Hijacking product: Qognify VMS Client Viewer vulnerable version: =7.1 fixed version: see solution CVE number: CVE-2023-49114 impact:...

CVE-2023-44283

In Dell SupportAssist for Home PCs between v3.0 and v3.14.1 and SupportAssist for Business PCs between v3.0 and v3.4.1, a security concern has been identified, impacting locally authenticated users on their respective PCs. This issue may potentially enable privilege escalation and the execution o...

Privilege escalation

In Dell SupportAssist for Home PCs between v3.0 and v3.14.1 and SupportAssist for Business PCs between v3.0 and v3.4.1, a security concern has been identified, impacting locally authenticated users on their respective PCs. This issue may potentially enable privilege escalation and the execution o...

CVE-2023-44283

In Dell SupportAssist for Home PCs between v3.0 and v3.14.1 and SupportAssist for Business PCs between v3.0 and v3.4.1, a security concern has been identified, impacting locally authenticated users on their respective PCs. This issue may potentially enable privilege escalation and the execution o...

CVE-2023-44283

In Dell SupportAssist for Home PCs between v3.0 and v3.14.1 and SupportAssist for Business PCs between v3.0 and v3.4.1, a security concern has been identified, impacting locally authenticated users on their respective PCs. This issue may potentially enable privilege escalation and the execution o...

CVE-2023-44283

Dell SupportAssist for Home PCs (versions 3.0–3.14.1) and Dell SupportAssist for Business PCs (versions 3.0–3.4.1) are affected. The vulnerability, affecting locally authenticated users, could allow privilege escalation and arbitrary code execution in the Windows system context on the local PC. T...

Ivanti Endpoint Manager Installed (Windows)

Binary data ivantiendpointmanagerwininstalled.nbin...

CVE-2023-50706

A user without administrator permissions with access to the UC500 windows system could perform a memory dump of the running processes and extract clear credentials or valid session tokens...

Ivanti Secure Access Client < 22.6R1.1 Multiple Vulnerabilities

The Ivanti Secure Access Client installed on the remote Windows system is prior to 22.6R1.1. It is, therefore, affected by multiple vulnerabilities. - A vulnerability exists on all versions of the Ivanti Secure Access Client below 22.6R1.1, which could allow a locally authenticated attacker to...

CVE-2023-50706

CVE-2023-50706 affects EFACEC UC 500E (HMI) with an improper access control vulnerability enabling a non-admin user with physical access to the UC500 Windows system to dump memory from running processes and extract clear credentials or valid session tokens. Red Hat and NVD entries corroborate the...

CVE-2023-50706 Improper Access Control in EFACEC UC 500E

A user without administrator permissions with access to the UC500 windows system could perform a memory dump of the running processes and extract clear credentials or valid session tokens...