CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-21763 – Microsoft Exchange Server Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21763
10 Jan 2023 — Microsoft Exchange Server Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Microsoft Exchange Server This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Exchange. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21763 • CWE-426: Untrusted Search Path •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-21764 – Microsoft Exchange Server Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21764
10 Jan 2023 — Microsoft Exchange Server Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Microsoft Exchange Server This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Exchange. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21764 • CWE-426: Untrusted Search Path •
CVSS: 8.8EPSS: 0%CPEs: 30EXPL: 0CVE-2023-21532 – Windows GDI Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21532
10 Jan 2023 — Windows GDI Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows GDI This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21532 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2023-21542 – Windows Installer Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21542
10 Jan 2023 — Windows Installer Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del instalador de Windows This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21542 • CWE-59: Improper Link Resolution Before File Access ('Link Following') CWE-269: Improper Privilege Management CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-36926 – Local Privilege Escalation in Zoom Rooms for macOS Clients
https://notcve.org/view.php?id=CVE-2022-36926
09 Jan 2023 — Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-36927 – Local Privilege Escalation in Zoom Rooms for macOS Clients
https://notcve.org/view.php?id=CVE-2022-36927
09 Jan 2023 — Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-36929 – Local Privilege Escalation in Zoom Rooms for Windows Clients
https://notcve.org/view.php?id=CVE-2022-36929
09 Jan 2023 — The Zoom Rooms Installer for Windows prior to 5.12.6 contains a local privilege escalation vulnerability. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-36930 – Local Privilege Escalation in Zoom Rooms for Windows Installers
https://notcve.org/view.php?id=CVE-2022-36930
09 Jan 2023 — Zoom Rooms for Windows installers before version 5.13.0 contain a local privilege escalation vulnerability. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-22736
https://notcve.org/view.php?id=CVE-2022-22736
22 Dec 2022 — If Firefox was installed to a world-writable directory, a local privilege escalation could occur when Firefox searched the current directory for system libraries. • https://bugzilla.mozilla.org/show_bug.cgi?id=1742692 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-46334 – Proofpoint Enterprise Protection Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-46334
21 Dec 2022 — Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability which allows the pps user to escalate to root privileges due to unnecessary permissions. This affects all versions 8.19.0 and below. Proofpoint Enterprise Protection (PPS/PoD) contiene una vulnerabilidad que permite al usuario de pps escalar a privilegios de root debido a permisos innecesarios. Esto afecta a todas las versiones 8.19.0 y anteriores. • https://www.proofpoint.com/security/security-advisories/pfpt-sa-2022-0004 • CWE-269: Improper Privilege Management •