CVSS: 9.3EPSS: 0%CPEs: 18EXPL: 0CVE-2020-27947 – Apple macOS process_token_AVCDecode Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-27947
16 Dec 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. • https://support.apple.com/en-us/HT212011 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 1CVE-2021-1648 – Microsoft splwow64 Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-1648
15 Dec 2020 — An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges from low integrity and execute code in the context of the current user at medium integrity. • https://packetstorm.news/files/id/160698 • CWE-269: Improper Privilege Management •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27865 – D-Link DAP-1860 uhttpd Authentication Bypass Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-27865
15 Dec 2020 — An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the device. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the device. • https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10197 • CWE-287: Improper Authentication CWE-288: Authentication Bypass Using an Alternate Path or Channel •
CVSS: 9.0EPSS: 0%CPEs: 29EXPL: 0CVE-2020-7468 – FreeBSD FTPD Improper Handling of Exceptional Conditions Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-7468
15 Dec 2020 — This vulnerability allows remote attackers to escalate privileges on affected installations of FreeBSD FTPD. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of root. • https://security.FreeBSD.org/advisories/FreeBSD-SA-20:30.ftpd.asc •
CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 1CVE-2020-29668 – Debian Security Advisory 4818-1
https://notcve.org/view.php?id=CVE-2020-29668
10 Dec 2020 — Several vulnerabilities were discovered in Sympa, a mailing list manager, which could result in local privilege escalation, denial of service or unauthorized access via the SOAP API. • https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976020 • CWE-287: Improper Authentication CWE-565: Reliance on Cookies without Validation and Integrity Checking •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2020-2049 – Cortex XDR Agent: Improper control of loaded DLL leads to local privilege escalation
https://notcve.org/view.php?id=CVE-2020-2049
09 Dec 2020 — A local privilege escalation vulnerability exists in Palo Alto Networks Cortex XDR Agent on the Windows platform that allows an authenticated local Windows user to execute programs with SYSTEM privileges. • https://security.paloaltonetworks.com/CVE-2020-2049 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 2CVE-2020-29661 – kernel: locking issue in drivers/tty/tty_jobctrl.c can lead to an use-after-free
https://notcve.org/view.php?id=CVE-2020-29661
09 Dec 2020 — This flaw allows a local attacker to possibly corrupt memory or escalate privileges. • https://packetstorm.news/files/id/160681 • CWE-416: Use After Free CWE-667: Improper Locking •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27614
https://notcve.org/view.php?id=CVE-2020-27614
09 Dec 2020 — AnyDesk for macOS versions 6.0.2 and older have a vulnerability in the XPC interface that does not properly validate client requests and allows local privilege escalation. • https://anydesk.com/cve/2020-27614 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 16EXPL: 0CVE-2020-10015 – Apple macOS process_token_BlitLibSetup3D Out-Of-Bounds Access Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-10015
09 Dec 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. • https://support.apple.com/en-us/HT211931 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27907 – Apple macOS process_token_GenerateMipmaps Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-27907
09 Dec 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. • https://support.apple.com/en-us/HT211931 • CWE-787: Out-of-bounds Write •