Privilege escalation

Windows System Launcher Elevation of Privilege Vulnerability...

Microsoft Windows 权限许可和访问控制问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A vulnerability exists in Microsoft Windows System Launcher with privilege license and access control issues. The following products and editions are affected: Windows Server 2022,Windows...

PT-2022-1501 · Microsoft · Windows System Launcher +1

Name of the Vulnerable Software and Affected Versions: Windows System Launcher affected versions not specified Description: The issue is related to insecure privilege management in the Windows System Launcher component of the Windows operating system. Exploitation of this issue may allow an...

PT-2021-6301 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insecure privilege management in the NTFS file system of the Windows operating system. It allows an attacker to potentially elevate their privileges, affecting the...

CVE-2021-31850

A denial-of-service vulnerability in Database Security DBS prior to 4.8.4 allows a remote authenticated administrator to trigger a denial-of-service attack against the DBS server. The configuration of Archiving through the User interface incorrectly allowed the creation of directories and files i...

CVE-2021-31850 Denial of Service in Database Security on Windows

A denial-of-service vulnerability in Database Security DBS prior to 4.8.4 allows a remote authenticated administrator to trigger a denial-of-service attack against the DBS server. The configuration of Archiving through the User interface incorrectly allowed the creation of directories and files i...

Mcafee Database Security Server 安全漏洞

Mcafee Database Security Server is a database security software from Mcafee USA. The software provides users with a holistic view of their databases and the corresponding security status, protecting business-critical databases from external, internal and insider database threats in real time. A...

The vulnerability of the Cisco Webex Player for Windows and MacOS operating systems stems from insufficient validation of values in Webex recording files, allowing attackers to execute arbitrary code.

The vulnerability of the Cisco Webex Player for Windows and MacOS operating systems is related to insufficient checking of values in Webex recording files. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending specially crafted WRF Webex Recording Format files...

The vulnerability of the command-line utility reg.exe, a tool for development and automatic updates of VMware InstallBuilder installer for Windows operating systems, allows a malicious individual to execute arbitrary commands.

The vulnerability of the command-line utility reg.exe, a tool for development and automatic updates of VMware InstallBuilder installer for Windows operating systems, is related to errors in the mechanism for checking pathfinding for dynamically linked libraries. Exploiting this vulnerability coul...

Acronis: XSS in Acronis Cloud Manager Admin Portal

Hello, Hope you are doing well. I wanted to report the following security vulnerability: The Acronis Cloud Manager Admin Portal default swagger UI is vulnerable to cross site scripting. I have the API running locally on my machine. I have attached screenshots of the XSS The URL is:...

F5 Networks BIG-IP : BIG-IP APM VPN vulnerability (K71891773)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.3.6 / 14.1.4 / 15.1.2.1 / 16.0.1.1 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K71891773 advisory. - When using BIG-IP APM 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before...

The vulnerability of the Rich Text Edit Control text editor in the Windows operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Rich Text Edit Control text editor in the Windows operating system is related to the disclosure of information. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...

McAfee Drive Encryption < 7.3.0 HF1 Privilege Escalation (SB10361)

The remote host is running a version of McAfee Drive Encryption prior to 7.3.0 HF1. It is, therefore, affected by a privilege escalation vulnerability in a Windows system driver that allows a local, non-admin user to gain elevated system privileges via exploiting an unutilized memory buffer. Note...

CVE-2021-23893 Privilege Escalation vulnerability in McAfee Drive Encryption (MDE)

Privilege Escalation vulnerability in a Windows system driver of McAfee Drive Encryption DE prior to 7.3.0 could allow a local non-admin user to gain elevated system privileges via exploiting an unutilized memory buffer...

CVE-2021-37713

The npm package "tar" aka node-tar before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be outside of the extraction target directory is not extracted. This is, ...

Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links

Impact Arbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in...

HiveNightmare

The security account manager SAM file contains the password hashes of the users on a Windows system. Since it is considered a sensitive file SYSTEM… Continue reading - HiveNightmare...

Microsoft Rushes Fix for ‘PetitPotam’ Attack PoC

Microsoft was quick to respond with a fix to an attack dubbed “PetitPotam” that could force remote Windows systems to reveal password hashes that could then be easily cracked. To thwart an attack, Microsoft recommends system administrators stop using the now deprecated Windows NT LAN Manager NTLM...

多款TIBCO Software产品访问控制错误漏洞

Tibco Software TIBCO Spotfire Server and TIBCO Software Enterprise Runtime for R-Server Edition are both products of Tibco Software, Inc. of the U.S.A. TIBCO Spotfire Server is a suite of data analysis and mining tools based on TIBCO Spotfire that provide an integrated platform for organizations ...

Race condition

A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack on an affected device if the VPN Posture HostScan Module is installed on the AnyConnect client. This vulnerability is...