CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-0046
https://notcve.org/view.php?id=CVE-2024-0046
This could lead to local escalation of privilege with no additional execution privileges needed. ... Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de ejecución adicionales. • https://android.googlesource.com/platform/frameworks/base/+/d68cab5ac1aa294ec4d0419bc0803a5577e4e43c https://source.android.com/security/bulletin/2024-03-01 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 6CVE-2024-0044
https://notcve.org/view.php?id=CVE-2024-0044
This could lead to local escalation of privilege with no additional execution privileges needed. ... Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de ejecución adicionales. • https://github.com/scs-labrat/android_autorooter https://github.com/Re13orn/CVE-2024-0044-EXP https://github.com/007CRIPTOGRAFIA/c-CVE-2024-0044 https://github.com/Kai2er/CVE-2024-0044-EXP https://github.com/nahid0x1/CVE-2024-0044 https://github.com/canyie/CVE-2024-0044 https://android.googlesource.com/platform/frameworks/base/+/65bd134b0a82c51a143b89821d5cdd00ddc31792 https://github.com/metaredteam/external-disclosures/security/advisories/GHSA-m7fh-f3w4-r6v2 https://rtx.meta.security/exploitation& • CWE-75: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-0670 – Privilege escalation in windows agent
https://notcve.org/view.php?id=CVE-2024-0670
Privilege escalation in windows agent plugin in Checkmk before 2.2.0p23, 2.1.0p40 and 2.0.0 (EOL) allows local user to escalate privileges La escalada de privilegios en el complemento del agente de Windows en Checkmk anterior a 2.2.0p23, 2.1.0p40 y 2.0.0 (EOL) permite al usuario local escalar privilegios • http://seclists.org/fulldisclosure/2024/Mar/29 https://checkmk.com/werk/16361 • CWE-427: Uncontrolled Search Path Element •
CVSS: 8.8EPSS: 0%CPEs: -EXPL: 0CVE-2023-50015
https://notcve.org/view.php?id=CVE-2023-50015
An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token. • https://github.com/n0obit4/Vulnerability_Disclosure/tree/main/CVE-2023-50015 • CWE-250: Execution with Unnecessary Privileges •
CVSS: 9.8EPSS: 0%CPEs: -EXPL: 0CVE-2023-49340
https://notcve.org/view.php?id=CVE-2023-49340
An issue was discovered in Newland Nquire 1000 Interactive Kiosk version NQ1000-II_G_V1.00.011, allows remote attackers to escalate privileges and bypass authentication via incorrect access control in the web management portal. • https://github.com/n0obit4/Vulnerability_Disclosure/tree/main/CVE-2023-49340 • CWE-287: Improper Authentication CWE-1390: Weak Authentication •