Lucene search
K
AkeoRufus

4 matches found

CVE
CVE
added 2019/07/19 3:37 p.m.139 views

CVE-2019-1010100

CVE-2019-1010100 affects Akeo Consulting Rufus 3.0 and earlier. The vulnerability is DLL search order hijacking in executable installers/portable executables on the site. Root cause: DLL search order issue leading to Arbitrary code execution with escalation of privilege. Documented attack referen...

7.8CVSS8AI score0.01331EPSS
CVE
CVE
added 2019/07/19 3:38 p.m.98 views

CVE-2019-1010101

CVE-2019-1010101 affects Akeo Consulting Rufus 3.0 and earlier. The vulnerability is described as Insecure Permissions that enable arbitrary code execution with elevation of privilege. Affected component is the Executable installer and portable executable (ALL executables). Attack vectors are CWE...

9.8CVSS9.8AI score0.03424EPSS
CVE
CVE
added 2017/10/18 1:0 p.m.74 views

CVE-2017-13083

CVE-2017-13083 relates to Akeo Consulting Rufus (pre-2.17.1187) failing to securely validate downloads over HTTP, allowing a MITM to cause arbitrary code execution via manipulated updates. Affected: Rufus before 2.17.1187. Root cause: update integrity checked but not validated against a trusted C...

8.1CVSS8.3AI score0.00963EPSS
CVE
CVE
added 2026/01/22 9:52 p.m.23 views

CVE-2026-23988

CVE-2026-23988 affects Rufus 4.11 and earlier. A TOCTOU race in the Fido PowerShell script handling (in src/net.c) occurs while the script is created, validated, and executed. Rufus runs with Administrator privileges but writes the script to %TEMP% (writable by standard users) without proper lock...

7.3CVSS6.2AI score0.00188EPSS