CVE-2024-29210
https://notcve.org/view.php?id=CVE-2024-29210
A local privilege escalation (LPE) vulnerability has been identified in Phish Alert Button for Outlook (PAB), specifically within its configuration management functionalities. ... Se ha identificado una vulnerabilidad de escalada de privilegios locales (LPE) en Phish Alert Button for Outlook (PAB), específicamente dentro de sus funcionalidades de gestión de configuración. • https://support.knowbe4.com/hc/en-us/articles/28959854203923-CVE-2024-29210 • CWE-269: Improper Privilege Management •
CVE-2024-3576 – NPort 5100A Series Store XSS Vulnerability
https://notcve.org/view.php?id=CVE-2024-3576
Malicious users may use the vulnerability to get sensitive information and escalate privileges. • https://www.moxa.com/en/support/product-support/security-advisory/mpsa-246328-nport-5100a-series-store-xss-vulnerability • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-29417
https://notcve.org/view.php?id=CVE-2024-29417
Insecure Permissions vulnerability in e-trust Horacius 1.0, 1.1, and 1.2 allows a local attacker to escalate privileges via the password reset function. • https://blog.pridesec.com.br/en/horacius-unauthenticated-privilege-escalation • CWE-277: Insecure Inherited Permissions •
CVE-2024-27453
https://notcve.org/view.php?id=CVE-2024-27453
In Extreme XOS through 22.6.1.4, a read-only user can escalate privileges to root via a crafted HTTP POST request to the python method of the Machine-to-Machine Interface (MMI). • https://extreme-networks.my.site.com/ExtrArticleDetail?an=000118266 https://www.exsiliumsecurity.com/CVE-2024-27453.html • CWE-266: Incorrect Privilege Assignment •
CVE-2023-7241 – Webroot Antivirus COM-Hijacking LPE
https://notcve.org/view.php?id=CVE-2023-7241
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files. La escalada de privilegios en WRSA.EXE en Webroot Antivirus 8.0.1X-9.0.35.12 en Windows de 64 y 32 bits permite que software malicioso abuse de WRSA.EXE para eliminar archivos arbitrarios y protegidos. • https://answers.webroot.com/Webroot/ukp.aspx?&app=vw&vw=1&login=1&solutionid=4258 https://www.webroot.com/us/en/business/support/release-notes#heading-endpoint https://www.webroot.com/us/en/support/support-consumer-release-notes • CWE-269: Improper Privilege Management •