CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2024-43762
https://notcve.org/view.php?id=CVE-2024-43762
02 Jan 2025 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://github.com/Mahesh-970/CVE-2024-43762 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2024-43097 – Debian Security Advisory 5874-1
https://notcve.org/view.php?id=CVE-2024-43097
02 Jan 2025 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://github.com/Mahesh-970/CVE-2024-43097 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43077
https://notcve.org/view.php?id=CVE-2024-43077
02 Jan 2025 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://source.android.com/security/bulletin/2024-12-01 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-55542
https://notcve.org/view.php?id=CVE-2024-55542
02 Jan 2025 — Local privilege escalation due to excessive permissions assigned to Tray Monitor service. • https://security-advisory.acronis.com/advisories/SEC-5342 • CWE-266: Incorrect Privilege Assignment •
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 0CVE-2024-55540
https://notcve.org/view.php?id=CVE-2024-55540
02 Jan 2025 — Local privilege escalation due to DLL hijacking vulnerability. • https://security-advisory.acronis.com/advisories/SEC-2245 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-55543
https://notcve.org/view.php?id=CVE-2024-55543
02 Jan 2025 — Local privilege escalation due to DLL hijacking vulnerability. • https://security-advisory.acronis.com/advisories/SEC-6418 • CWE-427: Uncontrolled Search Path Element •
CVSS: 4.7EPSS: 0%CPEs: -EXPL: 1CVE-2024-48197
https://notcve.org/view.php?id=CVE-2024-48197
02 Jan 2025 — Cross Site Scripting vulnerability in Audiocodes MP-202b v.4.4.3 allows a remote attacker to escalate privileges via the login page of the web interface. • https://github.com/GCatt-AS/CVE-2024-48197 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-55955 – Trend Micro Deep Security Agent Incorrect Permissions Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2024-55955
31 Dec 2024 — An incorrect permissions assignment vulnerability in Trend Micro Deep Security 20.0 agents between versions 20.0.1-9400 and 20.0.1-23340 could allow a local attacker to escalate privileges on affected installations. ... This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Deep Security Agent. ... An attacker can leverage this vulnerability to escalate privileges and execute arbit... • https://success.trendmicro.com/en-US/solution/KA-0018571 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-55917 – Trend Micro Apex One Origin Validation Error Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2024-55917
31 Dec 2024 — An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. ... This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://success.trendmicro.com/en-US/solution/KA-0018217 • CWE-346: Origin Validation Error •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-55632 – Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2024-55632
31 Dec 2024 — A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. ... This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://success.trendmicro.com/en-US/solution/KA-0018217 • CWE-269: Improper Privilege Management •