CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2026-42843 – grav-plugin-api: Grav API Privilege Escalation to Super Admin
https://notcve.org/view.php?id=CVE-2026-42843
11 May 2026 — An attacker can exploit this to escalate their privileges to Super Administrator (admin.super and api.super), leading to full system compromise and potential RCE. • https://github.com/getgrav/grav/security/advisories/GHSA-r945-h4vm-h736 • CWE-863: Incorrect Authorization •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-47945 – Argus Surveillance DVR 4.0 Unquoted Service Path Privilege Escalation
https://notcve.org/view.php?id=CVE-2021-47945
10 May 2026 — Argus Surveillance DVR 4.0 contains an unquoted service path vulnerability in the DVRWatchdog service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers can place a malicious executable in the Program Files directory to be executed with LocalSystem privileges when the service starts. • https://www.exploit-db.com/exploits/50261 • CWE-428: Unquoted Search Path or Element •
CVSS: 8.8EPSS: 0%CPEs: 13EXPL: 0CVE-2026-29203
https://notcve.org/view.php?id=CVE-2026-29203
08 May 2026 — That can cause DoS or local privilege escalation when an authenticated cPanel user places a symlink at a user-controlled legacy Nova path under their home directory. • https://support.cpanel.net/hc/en-us/articles/40311543760407-Security-CVE-2026-29203-cPanel-WHM-WP2-Security-Update-May-08-2026 • CWE-61: UNIX Symbolic Link (Symlink) Following •
CVSS: 7.4EPSS: 0%CPEs: 2EXPL: 0CVE-2026-34354
https://notcve.org/view.php?id=CVE-2026-34354
08 May 2026 — Akamai Guardicore Platform Agent (GPA) and Zero Trust Client on Linux and macOS allow TOCTOU-based local privilege escalation. ... In addition, a diagnostic collection tool (gimmelogs) running with root privileges was vulnerable to command injection from the dbstore, offering a second privilege escalation vector. • https://www.akamai.com/blog/security-research/advisory-cve-2026-34354-guardicore-local-privilege-escalation • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2026-40004 – openssl.cnf Privilege Escalation Vulnerability in ZTE Cloud PC Client uSmartview
https://notcve.org/view.php?id=CVE-2026-40004
07 May 2026 — An attacker can execute arbitrary code locally and escalate privileges. • https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/3126272076755775573 • CWE-427: Uncontrolled Search Path Element •
CVSS: 8.8EPSS: 0%CPEs: -EXPL: 0CVE-2026-30495
https://notcve.org/view.php?id=CVE-2026-30495
07 May 2026 — Additionally, a functional su binary exists at /system/xbin/su that grants root privileges without authentication. An attacker on the same network can connect to the device via ADB, obtain a shell, and escalate to root privileges, gaining complete control of the device. • https://whitelabel.org/security/2026-02-01-smart-projector • CWE-285: Improper Authorization •
CVSS: 5.2EPSS: 0%CPEs: -EXPL: 0CVE-2026-40001 – Local privilege escalation vulnerability in ZTE PROCESS Guard service of the cloud computer client
https://notcve.org/view.php?id=CVE-2026-40001
06 May 2026 — There is a local privilege escalation vulnerability in the ZTE PROCESS Guard service of the cloud computer client, which may allow local arbitrary code execution, privilege escalation and path traversal bypass. • https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/1477954674427011121 • CWE-269: Improper Privilege Management •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 1CVE-2026-34596 – Sandboxie-Plus local privilege escalation via TOCTOU race condition in UpdUtil addon installation
https://notcve.org/view.php?id=CVE-2026-34596
05 May 2026 — Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a Time-of-Check-to-Time-of-Use (TOCTOU) race condition exists during addon installation. When a user installs an addon through the SandMan interface, UpdUtil.exe is spawned as SYSTEM by SbieSvc but stages files in the user-writable %TEMP%\sandboxie-updater directory. After UpdUtil verifies file hashes against the signed addon manifest, install.bat extracts files.cab and executes config.exe from its... • https://github.com/sandboxie-plus/Sandboxie/security/advisories/GHSA-xjvp-63f2-v585 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2026-34461 – Sandboxie-Plus SbieIniServer RunSbieCtrl stack buffer overflow allows local privilege escalation
https://notcve.org/view.php?id=CVE-2026-34461
05 May 2026 — Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieIniServer RunSbieCtrl handler contains a stack buffer overflow. The MSGID_SBIE_INI_RUN_SBIE_CTRL message is handled before normal sandbox and impersonation checks, and for non-sandboxed callers, the handler copies the trailing message payload into a fixed-size WCHAR ctrlCmd[128] stack buffer using memcpy without verifying the length fits within the buffer. The service pipe is created with a... • https://github.com/sandboxie-plus/Sandboxie/security/advisories/GHSA-wpjw-jh2p-gwx7 • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2026-43568 – OpenClaw 2026.4.5 < 2026.4.10 - Privilege Escalation via Memory Dreaming Configuration in /dreaming Endpoint
https://notcve.org/view.php?id=CVE-2026-43568
05 May 2026 — Attackers with write-scoped gateway access can toggle admin-class configuration mutations through the /dreaming endpoint to escalate privileges. • https://github.com/openclaw/openclaw/commit/6af17b39e11f5f35e23b7e5a5f71a7d0aa3c7310 • CWE-862: Missing Authorization •