CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-47505 – SolarWinds Platform Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2022-47505
21 Apr 2023 — The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability. This vulnerability allows a local adversary with a valid system user account to escalate local privileges. This vulnerability allows local attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code ... • https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2023-2_release_notes.htm • CWE-269: Improper Privilege Management •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 2CVE-2022-30759 – Nokia OneNDS 20.9 Insecure Permissions / Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-30759
21 Apr 2023 — Nokia OneNDS 20.9 has loose sudo permissions that can allow users to escalate privileges. • https://packetstormsecurity.com/files/171971/Nokia-OneNDS-20.9-Insecure-Permissions-Privilege-Escalation.html • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-31244 – Nokia OneNDS 17 Insecure Permissions / Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-31244
21 Apr 2023 — Nokia OneNDS 17r2 has Insecure Permissions vulnerability that allows for privilege escalation. Nokia OneNDS 17 has loose sudo permissions that can allow users to escalate privileges. • https://packetstormsecurity.com/files/171970/Nokia-OneNDS-17-Insecure-Permissions-Privilege-Escalation.html • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2176 – kernel: Slab-out-of-bound read in compare_netdev_and_ip
https://notcve.org/view.php?id=CVE-2023-2176
20 Apr 2023 — The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege. ... This flaw allows a local user to crash or escalate privileges on the system. ... A local attacker could use this to cause a denial of service. • https://security.netapp.com/advisory/ntap-20230609-0005 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-1900 – Avira Free Antivirus Integer Overflow Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-1900
19 Apr 2023 — A vulnerability within the Avira network protection feature allowed an attacker with local execution rights to cause an overflow. ... Issue was fixed with Endpointprotection.exe version 1.0.2303.633 This vulnerability allows local attackers to escalate privileges on affected installations of Avira Free Antivirus. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://support.norton.com/sp/static/external/tools/security-advisories.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2023-21094
https://notcve.org/view.php?id=CVE-2023-21094
19 Apr 2023 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://github.com/Trinadh465/frameworks_native_AOSP-10_r33_CVE-2023-21094 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-21083
https://notcve.org/view.php?id=CVE-2023-21083
19 Apr 2023 — This could lead to local escalation of privilege with User execution privileges needed. • https://source.android.com/security/bulletin/2023-04-01 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2023-21086
https://notcve.org/view.php?id=CVE-2023-21086
19 Apr 2023 — This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. • https://github.com/Trinadh465/packages_apps_Settings_CVE-2023-21086 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-21099
https://notcve.org/view.php?id=CVE-2023-21099
19 Apr 2023 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://source.android.com/security/bulletin/2023-04-01 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-0875
https://notcve.org/view.php?id=CVE-2021-0875
19 Apr 2023 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://source.android.com/security/bulletin/2023-04-01 • CWE-190: Integer Overflow or Wraparound •