CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-36624
https://notcve.org/view.php?id=CVE-2023-36624
05 Jul 2023 — Loxone Miniserver Go Gen.2 through 14.0.3.28 allows an authenticated operating system user to escalate privileges via the Sudo configuration. • https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2023-004.txt • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-36623
https://notcve.org/view.php?id=CVE-2023-36623
05 Jul 2023 — This allows a local user to calculate the root password and escalate privileges. • https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2023-013.txt • CWE-798: Use of Hard-coded Credentials •
CVSS: 6.7EPSS: 0%CPEs: 39EXPL: 0CVE-2023-20775
https://notcve.org/view.php?id=CVE-2023-20775
04 Jul 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 12EXPL: 0CVE-2023-20774
https://notcve.org/view.php?id=CVE-2023-20774
04 Jul 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 35EXPL: 0CVE-2023-20773
https://notcve.org/view.php?id=CVE-2023-20773
04 Jul 2023 — In vow, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-862: Missing Authorization •
CVSS: 6.7EPSS: 0%CPEs: 35EXPL: 0CVE-2023-20772
https://notcve.org/view.php?id=CVE-2023-20772
04 Jul 2023 — In vow, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-862: Missing Authorization •
CVSS: 6.4EPSS: 0%CPEs: 11EXPL: 0CVE-2023-20771
https://notcve.org/view.php?id=CVE-2023-20771
04 Jul 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 44EXPL: 0CVE-2023-20768
https://notcve.org/view.php?id=CVE-2023-20768
04 Jul 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 6.7EPSS: 0%CPEs: 11EXPL: 0CVE-2023-20767
https://notcve.org/view.php?id=CVE-2023-20767
04 Jul 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 55EXPL: 0CVE-2023-20766
https://notcve.org/view.php?id=CVE-2023-20766
04 Jul 2023 — This could lead to local escalation of privilege with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •