CVE-2024-4763
https://notcve.org/view.php?id=CVE-2024-4763
An insecure driver vulnerability was reported in Lenovo Display Control Center (LDCC) and Lenovo Accessories and Display Manager (LADM) that could allow a local attacker to escalate privileges to kernel. • https://support.lenovo.com/us/en/product_security/LEN-155486 • CWE-276: Incorrect Default Permissions •
CVE-2024-2175
https://notcve.org/view.php?id=CVE-2024-2175
An insecure permissions vulnerability was reported in Lenovo Display Control Center (LDCC) and Lenovo Accessories and Display Manager (LADM) that could allow a local attacker to escalate privileges. • https://support.lenovo.com/us/en/product_security/LEN-155486 • CWE-276: Incorrect Default Permissions •
CVE-2024-5915 – GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
https://notcve.org/view.php?id=CVE-2024-5915
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges. • https://security.paloaltonetworks.com/CVE-2024-5915 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVE-2024-6619 – Incorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream Report
https://notcve.org/view.php?id=CVE-2024-6619
In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local unprivileged attacker to escalate their privileges and could cause a denial-of-service. • https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-08 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVE-2024-41977
https://notcve.org/view.php?id=CVE-2024-41977
This could allow an authenticated remote attacker to escalate their privileges on the devices. • https://cert-portal.siemens.com/productcert/html/ssa-087301.html • CWE-488: Exposure of Data Element to Wrong Session •