CVSS: 7.5EPSS: 0%CPEs: -EXPL: 1CVE-2024-32371
https://notcve.org/view.php?id=CVE-2024-32371
An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a regular user account to escalate their privileges and gain administrative access by changing the type parameter from 1 to 0. • https://github.com/chucrutis/CVE-2024-32371 https://cwe.mitre.org/data/definitions/639.html • CWE-20: Improper Input Validation •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-3576 – NPort 5100A Series Store XSS Vulnerability
https://notcve.org/view.php?id=CVE-2024-3576
Malicious users may use the vulnerability to get sensitive information and escalate privileges. • https://www.moxa.com/en/support/product-support/security-advisory/mpsa-246328-nport-5100a-series-store-xss-vulnerability • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-29417
https://notcve.org/view.php?id=CVE-2024-29417
Insecure Permissions vulnerability in e-trust Horacius 1.0, 1.1, and 1.2 allows a local attacker to escalate privileges via the password reset function. • https://blog.pridesec.com.br/en/horacius-unauthenticated-privilege-escalation • CWE-277: Insecure Inherited Permissions •
CVSS: 8.6EPSS: 0%CPEs: -EXPL: 0CVE-2024-27453
https://notcve.org/view.php?id=CVE-2024-27453
In Extreme XOS through 22.6.1.4, a read-only user can escalate privileges to root via a crafted HTTP POST request to the python method of the Machine-to-Machine Interface (MMI). • https://extreme-networks.my.site.com/ExtrArticleDetail?an=000118266 https://www.exsiliumsecurity.com/CVE-2024-27453.html • CWE-266: Incorrect Privilege Assignment •
CVSS: 7.9EPSS: 0%CPEs: 1EXPL: 0CVE-2023-7241 – Webroot Antivirus COM-Hijacking LPE
https://notcve.org/view.php?id=CVE-2023-7241
Privilege Escalation in WRSA.EXE in Webroot Antivirus 8.0.1X- 9.0.35.12 on Windows64 bit and 32 bit allows malicious software to abuse WRSA.EXE to delete arbitrary and protected files. La escalada de privilegios en WRSA.EXE en Webroot Antivirus 8.0.1X-9.0.35.12 en Windows de 64 y 32 bits permite que software malicioso abuse de WRSA.EXE para eliminar archivos arbitrarios y protegidos. • https://answers.webroot.com/Webroot/ukp.aspx?&app=vw&vw=1&login=1&solutionid=4258 https://www.webroot.com/us/en/business/support/release-notes#heading-endpoint https://www.webroot.com/us/en/support/support-consumer-release-notes • CWE-269: Improper Privilege Management •