CVSS: 8.4EPSS: 0%CPEs: 66EXPL: 0CVE-2023-30691
https://notcve.org/view.php?id=CVE-2023-30691
10 Aug 2023 — Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to privilege escalation. Desajuste en AuthenticationConfig anterior a SMR Aug-2023 Release 1 permite a un atacante local la escalada de privilegios. • https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=08 • CWE-266: Incorrect Privilege Assignment •
CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 1CVE-2023-36900 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36900
08 Aug 2023 — Windows Common Log File System Driver Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the kernel. • https://github.com/RomanRybachek/CVE-2023-36900 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 1CVE-2023-35359 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35359
08 Aug 2023 — Windows Kernel Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of a high-privileged service account. ... This can be abused to trick privilege processes to load configuration files and other resources from untrusted locations leading ... • http://packetstormsecurity.com/files/174528/Microsoft-Windows-Privilege-Escalation.html • CWE-23: Relative Path Traversal •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-27411
https://notcve.org/view.php?id=CVE-2023-27411
08 Aug 2023 — This could allow an authenticated remote attackers to execute arbitrary SQL queries on the server database and escalate privileges. • https://cert-portal.siemens.com/productcert/pdf/ssa-472630.pdf • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39520 – Cryptomator vulnerable to Local Elevation of Privileges
https://notcve.org/view.php?id=CVE-2023-39520
07 Aug 2023 — The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the `repair` function. • https://github.com/cryptomator/cryptomator/commit/727c32ad50c3901a6144a11cf984a3b7ebcf8b2b • CWE-269: Improper Privilege Management •
CVSS: 6.7EPSS: 0%CPEs: 26EXPL: 0CVE-2023-20817
https://notcve.org/view.php?id=CVE-2023-20817
07 Aug 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 26EXPL: 0CVE-2023-20816
https://notcve.org/view.php?id=CVE-2023-20816
07 Aug 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 26EXPL: 0CVE-2023-20815
https://notcve.org/view.php?id=CVE-2023-20815
07 Aug 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 26EXPL: 0CVE-2023-20814
https://notcve.org/view.php?id=CVE-2023-20814
07 Aug 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 55EXPL: 0CVE-2023-20811
https://notcve.org/view.php?id=CVE-2023-20811
07 Aug 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •