Page 98 of 5095 results (0.023 seconds)

CVSS: 6.7EPSS: %CPEs: -EXPL: 0

Because it is possible to tamper with the directory and executable files used during the installation process, an attacker can escalate privileges through arbitrary code execution. (The attacker must already have user privileges, and an administrator password must be entered during the program installation stage for privilege escalation.) • https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31953 • CWE-269: Improper Privilege Management •

CVSS: 6.7EPSS: %CPEs: -EXPL: 0

Because symlinks are used during the installation process, an attacker can escalate privileges via arbitrary file permission writes. (The attacker must already have user privileges, and an administrator password must be entered during the program installation stage for privilege escalation.) • https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31952 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 7.8EPSS: %CPEs: -EXPL: 1

Insecure Permission vulnerability in TotalAV v.6.0.740 allows a local attacker to escalate privileges via a crafted file La vulnerabilidad de permiso inseguro en TotalAV v.6.0.740 permite a un atacante local escalar privilegios a través de un archivo manipulado • https://github.com/restdone/CVE-2024-31771 • CWE-266: Incorrect Privilege Assignment •

CVSS: 9.8EPSS: %CPEs: -EXPL: 0

A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in the same system with a victim process to disclose information and escalate privileges. • https://gist.github.com/liang-junkai/3e91f58070812ea76c1b8c126c3e28c7 • CWE-209: Generation of Error Message Containing Sensitive Information CWE-285: Improper Authorization •

CVSS: 7.8EPSS: %CPEs: -EXPL: 1

An issue in Panoramic Corporation Digital Imaging Software v.9.1.2.7600 allows a local attacker to escalate privileges via the ccsservice.exe component. Un problema en Panoramic Corporation Digital Imaging Software v.9.1.2.7600 permite a un atacante local escalar privilegios a través del componente ccsservice.exe. • https://github.com/Gray-0men/CVE-2024-22774 https://blueteamalpha.com/blog/new-vulnerability-discovered-in-panoramic-x-ray-software https://pancorp.com/index.html https://pancorp.com/pdf/Panoramic-Dental-Imaging-%28GLAN%29-Windows-10x64-Setup-Rev3.pdf https://pancorp.com/software/files/PANCORP_DENTAL_IMAGING_9.1.2.7600.exe • CWE-269: Improper Privilege Management •