CVSS: 4.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-21783
https://notcve.org/view.php?id=CVE-2024-21783
13 Nov 2024 — Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01131.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-24985
https://notcve.org/view.php?id=CVE-2024-24985
13 Nov 2024 — Exposure of resource to wrong sphere in some Intel(R) processors with Intel(R) ACTM may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01111.html • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 8.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-22185
https://notcve.org/view.php?id=CVE-2024-22185
13 Nov 2024 — Time-of-check Time-of-use Race Condition in some Intel(R) processors with Intel(R) ACTM may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01111.html • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 8.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-21820 – Ubuntu Security Notice USN-7149-1
https://notcve.org/view.php?id=CVE-2024-21820
13 Nov 2024 — Incorrect default permissions in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via local access. ... This may allow a local privileged attacker to further escalate their privileges. ... This may allow a local privileged attacker to cause a denial of service. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01079.html • CWE-276: Incorrect Default Permissions •
CVSS: 8.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-23918 – Ubuntu Security Notice USN-7149-1
https://notcve.org/view.php?id=CVE-2024-23918
13 Nov 2024 — Improper conditions check in some Intel(R) Xeon(R) processor memory controller configurations when using Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via local access. ... This may allow a local privileged attacker to further escalate their privileges. ... This may allow a local privileged attacker to cause a denial of service. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01079.html • CWE-92: DEPRECATED: Improper Sanitization of Custom Special Characters •
CVSS: 8.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-21850
https://notcve.org/view.php?id=CVE-2024-21850
13 Nov 2024 — Sensitive information in resource not removed before reuse in some Intel(R) TDX Seamldr module software before version 1.5.02.00 may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01076.html • CWE-226: Sensitive Information in Resource Not Removed Before Reuse •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2024-43093 – Android Framework Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2024-43093
13 Nov 2024 — This could lead to local escalation of privilege with no additional execution privileges needed. ... Android Framework contains an unspecified vulnerability that allows for privilege escalation. • https://github.com/hatvix1/CVE-2024-43093 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2024-43089
https://notcve.org/view.php?id=CVE-2024-43089
13 Nov 2024 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/providers/MediaProvider/+/33ff6a663eea1fcdd2b422b98722c1dee48a7f6a • CWE-276: Incorrect Default Permissions •
CVSS: 8.4EPSS: 0%CPEs: 5EXPL: 1CVE-2024-43088
https://notcve.org/view.php?id=CVE-2024-43088
13 Nov 2024 — This could lead to local escalation of privilege across user boundaries with no additional execution privileges needed. • https://github.com/nidhihcl75/packages_apps_Settings_AOSP10_r33_CVE-2024-43088 • CWE-862: Missing Authorization •
CVSS: 8.4EPSS: 0%CPEs: 5EXPL: 0CVE-2024-43087
https://notcve.org/view.php?id=CVE-2024-43087
13 Nov 2024 — This could lead to local escalation of privilege with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/apps/Settings/+/6253b87704bb097ad9963941bdddf3b86906a73e • CWE-862: Missing Authorization •