CVSS: 8.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-42586
https://notcve.org/view.php?id=CVE-2024-42586
A Cross-Site Request Forgery (CSRF) in the component categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges. • https://gist.github.com/topsky979/533b962efb1779e397a241bf7a19643c • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-42557
https://notcve.org/view.php?id=CVE-2024-42557
A Cross-Site Request Forgery (CSRF) in the component admin_modify_room.php of Hotel Management System commit 91caab8 allows attackers to escalate privileges. • https://gist.github.com/topsky979/0785597ae7abc8f10cd5c5537f5467b5 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-4763
https://notcve.org/view.php?id=CVE-2024-4763
An insecure driver vulnerability was reported in Lenovo Display Control Center (LDCC) and Lenovo Accessories and Display Manager (LADM) that could allow a local attacker to escalate privileges to kernel. • https://support.lenovo.com/us/en/product_security/LEN-155486 • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-2175
https://notcve.org/view.php?id=CVE-2024-2175
An insecure permissions vulnerability was reported in Lenovo Display Control Center (LDCC) and Lenovo Accessories and Display Manager (LADM) that could allow a local attacker to escalate privileges. • https://support.lenovo.com/us/en/product_security/LEN-155486 • CWE-276: Incorrect Default Permissions •
CVSS: 5.2EPSS: 0%CPEs: 5EXPL: 0CVE-2024-5915 – GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
https://notcve.org/view.php?id=CVE-2024-5915
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges. • https://security.paloaltonetworks.com/CVE-2024-5915 • CWE-732: Incorrect Permission Assignment for Critical Resource •