CVSS: 6.7EPSS: 0%CPEs: 14EXPL: 0CVE-2023-40653
https://notcve.org/view.php?id=CVE-2023-40653
08 Oct 2023 — This could lead to local escalation of privilege with System execution privileges needed En FW-PackageManager, es posible que falte una verificación de permisos. Esto podría llevar a una escalada local de privilegios con permisos de ejecución de System necesarios. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2023-40635
https://notcve.org/view.php?id=CVE-2023-40635
08 Oct 2023 — This could lead to local escalation of privilege with no additional execution privileges needed En linkturbo, es posible que falte una verificación de permiso. Esto podría conducir a una escalada local de privilegios sin necesidad de privilegios de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2023-40634
https://notcve.org/view.php?id=CVE-2023-40634
08 Oct 2023 — This could lead to local escalation of privilege with no additional execution privileges needed En Phasechecksercer, es posible que falte una verificación de permiso. Esto podría conducir a una escalada local de privilegios sin necesidad de privilegios de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-21266
https://notcve.org/view.php?id=CVE-2023-21266
06 Oct 2023 — This could lead to local escalation of privilege with no additional execution privileges needed. ... Esto podría conducir a una escalada local de privilegios sin necesidad de privilegios de ejecución adicionales. • https://android.googlesource.com/platform/frameworks/base/+/fa94ce5c7738e449cb6bd68c77af4858018e49e0 •
CVSS: 6.7EPSS: 0%CPEs: 4EXPL: 0CVE-2023-21244
https://notcve.org/view.php?id=CVE-2023-21244
06 Oct 2023 — This could lead to local escalation of privilege with User execution privileges needed. ... Esto podría llevar a una escalada local de privilegios con privilegios de ejecución del usuario necesarios. • https://android.googlesource.com/platform/frameworks/base/+/20aedba4998373addc2befcc455a118585559fef • CWE-862: Missing Authorization •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-5214 – CVE-2023-5214 - Privilege Escalation in Puppet Bolt
https://notcve.org/view.php?id=CVE-2023-5214
06 Oct 2023 — In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified. • https://www.puppet.com/security/cve/cve-2023-5214-privilege-escalation-puppet-bolt • CWE-269: Improper Privilege Management •
CVSS: 6.7EPSS: 0%CPEs: 3EXPL: 1CVE-2023-42755 – Kernel: rsvp: out-of-bounds read in rsvp_classify()
https://notcve.org/view.php?id=CVE-2023-42755
05 Oct 2023 — This issue may allow a local user to crash the system and cause a denial of service. ... Este problema puede permitir que un usuario local bloquee el sistema y provoque una denegación de servicio. This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel. ... An attacker can leverage this in conjunction with other vulnerabilties to escalate privileges and execute arbitrary code in the context of the ker... • https://access.redhat.com/errata/RHSA-2024:2950 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-32485
https://notcve.org/view.php?id=CVE-2023-32485
05 Oct 2023 — A remote unauthenticated attacker may exploit this vulnerability and escalate privileges up to the highest administration level. • https://www.dell.com/support/kbdoc/en-us/000216587/dsa-2023-283-security-update-for-dell-smartfabric-storage-software-vulnerabilities • CWE-20: Improper Input Validation •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-35645 – edgetpu_pin_user_pages Race Condition
https://notcve.org/view.php?id=CVE-2023-35645
05 Oct 2023 — This could lead to local escalation of privilege with System execution privileges needed. ... Esto podría conducir a una escalada local de privilegios con permisos de ejecución de System necesarios. • https://packetstorm.news/files/id/174948 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-26236
https://notcve.org/view.php?id=CVE-2023-26236
05 Oct 2023 — Due to a weak implementation of message handling between WatchGuard EPDR processes, it is possible to perform a Local Privilege Escalation on Windows by sending a crafted message to a named pipe. • https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2023-00004 • CWE-269: Improper Privilege Management •