CVSS: 8.6EPSS: 0%CPEs: -EXPL: 0CVE-2024-27453
https://notcve.org/view.php?id=CVE-2024-27453
In Extreme XOS through 22.6.1.4, a read-only user can escalate privileges to root via a crafted HTTP POST request to the python method of the Machine-to-Machine Interface (MMI). • https://extreme-networks.my.site.com/ExtrArticleDetail?an=000118266 https://www.exsiliumsecurity.com/CVE-2024-27453.html • CWE-266: Incorrect Privilege Assignment •
CVSS: 7.9EPSS: 0%CPEs: 1EXPL: 0CVE-2023-7241 – Webroot Antivirus COM-Hijacking LPE
https://notcve.org/view.php?id=CVE-2023-7241
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files. • https://answers.webroot.com/Webroot/ukp.aspx?&app=vw&vw=1&login=1&solutionid=4258 https://www.webroot.com/us/en/business/support/release-notes#heading-endpoint https://www.webroot.com/us/en/support/support-consumer-release-notes • CWE-269: Improper Privilege Management •
CVSS: 6.7EPSS: 0%CPEs: -EXPL: 0CVE-2024-24912 – Local privilege escalation in Harmony Endpoint Security Client for Windows via crafted DLL file
https://notcve.org/view.php?id=CVE-2024-24912
A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client for Windows versions E88.10 and below. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system. Se ha identificado una vulnerabilidad de escalada de privilegios local en Harmony Endpoint Security Client para las versiones E88.10 y anteriores de Windows. Para aprovechar esta vulnerabilidad, un atacante primero debe obtener la capacidad de ejecutar código privilegiado local en el sistema de destino. • https://support.checkpoint.com/results/sk/sk182244 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-22830
https://notcve.org/view.php?id=CVE-2024-22830
This allows a local attacker to escalate privileges from regular user to System or PPL level. ... Esto permite a un atacante local escalar privilegios desde el nivel de usuario normal al nivel de Sistema o PPL. • http://anti-cheat.com https://intl.anticheatexpert.com/#/tool-center https://www.defencetech.it/wp-content/uploads/2024/04/Report-CVE-2024-22830.pdf • CWE-284: Improper Access Control •
CVSS: 9.8EPSS: 0%CPEs: -EXPL: 1CVE-2024-33775
https://notcve.org/view.php?id=CVE-2024-33775
An issue with the Autodiscover component in Nagios XI 2024R1.01 allows a remote attacker to escalate privileges via a crafted Dashlet. • https://github.com/Neo-XeD/CVE-2024-33775 https://www.nagios.com/changelog/#nagios-xi • CWE-269: Improper Privilege Management •