CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-4799 – IBM Informix spatial Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-4799
08 Oct 2020 —  IBM X-Force ID: 189460 This vulnerability allows local attackers to escalate privileges on affected installations of IBM Informix. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the informix user. • https://exchange.xforce.ibmcloud.com/vulnerabilities/189460 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2020-26880
https://notcve.org/view.php?id=CVE-2020-26880
07 Oct 2020 — Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable. • https://github.com/sympa-community/sympa/issues/1009 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-24356 – Local Privilege Escalation in cloudflared
https://notcve.org/view.php?id=CVE-2020-24356
02 Oct 2020 — `cloudflared` versions prior to 2020.8.1 contain a local privilege escalation vulnerability on Windows systems. • https://github.com/cloudflare/cloudflared/security/advisories/GHSA-hgwp-4vp4-qmm2 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-25776 – Trend Micro Antivirus for Mac Symbolic Link Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-25776
01 Oct 2020 —  Un atacante debe primero obtener la capacidad de ejecutar código poco privilegiado en el sistema objetivo para explotar esta vulnerabilidad This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Antivirus for Mac. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of root. • https://helpcenter.trendmicro.com/en-us/article/TMKA-09924 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-15731 – Local Privilege Escalation in Bitdefender Engines (VA-8953)
https://notcve.org/view.php?id=CVE-2020-15731
30 Sep 2020 — An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location hardcoded in a specially-crafted malicious file name. This issue affects: Bitdefender Engines versions prior to 7.85448. Una vulnerabilidad de comprobación de entrada inapropiada en el código que maneja el cambio de nombre y la recuperación de archivos en Bitdefender Engines, permite a un atacante escribir un archivo arbitrario en una u... • https://www.bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-engines-va-8953 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 13%CPEs: 19EXPL: 1CVE-2018-5353
https://notcve.org/view.php?id=CVE-2018-5353
29 Sep 2020 — The custom GINA/CP module in Zoho ManageEngine ADSelfService Plus before 5.5 build 5517 allows remote attackers to execute code and escalate privileges via spoofing. • https://github.com/missing0x00/CVE-2018-5353 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5354
https://notcve.org/view.php?id=CVE-2018-5354
29 Sep 2020 — The custom GINA/CP module in ANIXIS Password Reset Client before version 3.22 allows remote attackers to execute code and escalate privileges via spoofing. • https://github.com/missing0x00/CVE-2018-5354 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-17414 – Foxit Reader Update Service Incorrect Permission Assignment Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-17414
29 Sep 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of Foxit Reader 10.0.0.35798. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM. ...  Fue ZDI-CAN-11229 This vulnerability allows local attackers to escalate privileges on affected installations of Foxit Reader. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM. • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-17415 – Foxit PhantomPDF Update Service Incorrect Permission Assignment Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-17415
29 Sep 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PhantomPDF 10.0.0.35798. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of SYSTEM. ... Fue ZDI-CAN-11308 This vulnerability allows local attackers to escalate privileges on affected installations of Foxit Phantom... • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 8CVE-2020-17382 – MSI Ambient Link Driver 1.0.0.8 - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2020-17382
28 Sep 2020 — El controlador MsIo64 de MSI AmbientLink versión 1.0.0.8, presenta un desbordamiento del búfer (0x80102040, 0x80102044, 0x80102050 y 0x80102054) MSI Ambient Link Driver version 1.0.0.8 suffers from a local privilege escalation vulnerability. • https://packetstorm.news/files/id/159315 • CWE-787: Out-of-bounds Write •