CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-25712 – X.Org Server XkbSetDeviceInfo Heap-based Buffer Overflow Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-25712
07 Dec 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of root. • https://bugzilla.redhat.com/show_bug.cgi?id=1887276 • CWE-122: Heap-based Buffer Overflow •
CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0CVE-2020-10007 – Apple macOS powerd Uninitialized Memory Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-10007
04 Dec 2020 — An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges and execute code in the context of root. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2020/Dec/26 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2020-29534 – Ubuntu Security Notice USN-4678-1
https://notcve.org/view.php?id=CVE-2020-29534
03 Dec 2020 — A local attacker could use this to expose sensitive information or possibly escalate privileges. • https://bugs.chromium.org/p/project-zero/issues/detail?id=2089 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-23740
https://notcve.org/view.php?id=CVE-2020-23740
03 Dec 2020 — In DriverGenius 9.61.5480.28 there is a local privilege escalation vulnerability in the driver wizard, attackers can use constructed programs to increase user privileges. • http://www.drivergenius.com • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-28175
https://notcve.org/view.php?id=CVE-2020-28175
03 Dec 2020 — There is a local privilege escalation vulnerability in Alfredo Milani Comparetti SpeedFan 4.52. • http://www.almico.com/speedfan.php •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-23735
https://notcve.org/view.php?id=CVE-2020-23735
03 Dec 2020 — In Saibo Cyber Game Accelerator 3.7.9 there is a local privilege escalation vulnerability. • http://www.saibo.com • CWE-862: Missing Authorization •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 1CVE-2020-13542
https://notcve.org/view.php?id=CVE-2020-13542
03 Dec 2020 — A local privilege elevation vulnerability exists in the file system permissions of LogicalDoc 8.5.1 installation. • https://talosintelligence.com/vulnerability_reports/TALOS-2020-1154 • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-14360 – X.Org Server XkbSetMap Out-Of-Bounds Access Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-14360
01 Dec 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of root. • https://bugzilla.redhat.com/show_bug.cgi?id=1869139 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-7335 – Privilege Escalation vulnerability in McAfee Total Protection (MTP)
https://notcve.org/view.php?id=CVE-2020-7335
01 Dec 2020 —  Esto explota una falta de protección mediante un problema de sincronización y solo es explotable en una pequeña ventana de tiempo This vulnerability allows local attackers to escalate privileges on affected installations of McAfee Total Protection. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM. • http://service.mcafee.com/FAQDocument.aspx?&id=TS103089 • CWE-269: Improper Privilege Management •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2020-28575 – Trend Micro ServerProtect ioctlMod Heap-based Buffer Overflow Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-28575
24 Nov 2020 — A heap-based buffer overflow privilege escalation vulnerability in Trend Micro ServerProtect for Linux 3.0 may allow an attacker to escalate privileges on affected installations. ... Un atacante primero debe obtener la capacidad de ejecutar código muy privilegiado en el objetivo a fin de explotar esta vulnerabilidad This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro ServerProtect. ... An attacker can leverage this vulnerability to