CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-9921 – Apple macOS process_token_BlitFramebuffer Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-9921
21 Sep 2020 —  Una aplicación maliciosa puede ejecutar código arbitrario con privilegios del sistema This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. • https://support.apple.com/kb/HT211289 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 3EXPL: 0CVE-2020-0431 – kernel: possible out of bounds write in kbd_keycode of keyboard.c
https://notcve.org/view.php?id=CVE-2020-0431
17 Sep 2020 — A local user could use this flaw to crash the system or escalate privileges on the system. • http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00001.html • CWE-284: Improper Access Control CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-3989 – VMware Workstation ThinPrint name Table Integer Overflow Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-3989
15 Sep 2020 —  Esta función no está habilitada por defecto en Workstation, pero está habilitada por defecto en Horizon Client This vulnerability allows local attackers to escalate privileges on affected installations of VMware Workstation. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the hypervisor. • https://www.vmware.com/security/advisories/VMSA-2020-0020.html • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-3987 – VMware Workstation ThinPrint EMR_STRETCHDIBITS Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3987
15 Sep 2020 — An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges and execute code in the context of the hypervisor. • https://www.vmware.com/security/advisories/VMSA-2020-0020.html • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-3986 – VMware Workstation ThinPrint EMF Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3986
15 Sep 2020 — An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges and execute code in the context of the hypervisor. • https://www.vmware.com/security/advisories/VMSA-2020-0020.html • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-3988 – VMware Workstation ThinPrint JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3988
15 Sep 2020 — An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges and execute code in the context of the hypervisor. • https://www.vmware.com/security/advisories/VMSA-2020-0020.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-7312 – DLL Search Order Hijacking in MA for Windows
https://notcve.org/view.php?id=CVE-2020-7312
10 Sep 2020 — DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder. • https://kc.mcafee.com/corporate/index?page=content&id=SB10325 • CWE-427: Uncontrolled Search Path Element •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0CVE-2020-0914 – Windows State Repository Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-0914
10 Sep 2020 — An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges and execute code in the context of SYSTEM. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0914 •
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 1CVE-2020-14342 – Ubuntu Security Notice USN-5459-1
https://notcve.org/view.php?id=CVE-2020-14342
09 Sep 2020 — In certain environments, a local attacker could possibly use this issue to escalate privileges. • http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00109.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2020-14345 – X.Org Server XkbSetNames Out-Of-Bounds Access Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-14345
08 Sep 2020 — This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. ... An attacker can leverage this vulnerability to escalate privileges and execute code in the context of root. ... A local attacker could possibly use this issue to escalate privileges. ... A local attacker could possibly use this issue to escalate privileges. ... A local attacker could possibly use this issue to escalate privileges. • http://www.openwall.com/lists/oss-security/2021/01/15/1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •