CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-20871
https://notcve.org/view.php?id=CVE-2023-20871
VMware Fusion contains a local privilege escalation vulnerability. • https://www.vmware.com/security/advisories/VMSA-2023-0008.html •
CVSS: 8.2EPSS: 0%CPEs: 2EXPL: 0CVE-2023-20869 – VMware Workstation UHCI Component Stack-based Buffer Overflow Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-20869
This vulnerability allows local attackers to escalate privileges on affected installations of VMware Workstation. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the hypervisor. • https://www.vmware.com/security/advisories/VMSA-2023-0008.html • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30759 – Nokia OneNDS 20.9 Insecure Permissions / Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-30759
Nokia OneNDS 20.9 has loose sudo permissions that can allow users to escalate privileges. • https://packetstormsecurity.com/files/171971/Nokia-OneNDS-20.9-Insecure-Permissions-Privilege-Escalation.html https://www.nokia.com/networks/products/one-nds • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-31244 – Nokia OneNDS 17 Insecure Permissions / Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-31244
Nokia OneNDS 17 has loose sudo permissions that can allow users to escalate privileges. • https://packetstormsecurity.com/files/171970/Nokia-OneNDS-17-Insecure-Permissions-Privilege-Escalation.html https://www.nokia.com/networks/products/one-nds • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-47505 – SolarWinds Platform Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2022-47505
The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability. ... This vulnerability allows local attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2023-2_release_notes.htm https://www.solarwinds.com/trust-center/security-advisories/cve-2022-47505 • CWE-269: Improper Privilege Management •