CVSS: 6.3EPSS: %CPEs: 6EXPL: 0CVE-2025-43079 – Local Privilege Escalation via qagent_uninstall.sh Qualys Cloud Agents
https://notcve.org/view.php?id=CVE-2025-43079
10 Nov 2025 — This behavior can be leveraged for local privilege escalation and arbitrary command execution under elevated privileges. • https://www.qualys.com/security-advisories/cve-2025-43079 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 4.2EPSS: %CPEs: 1EXPL: 0CVE-2025-64457
https://notcve.org/view.php?id=CVE-2025-64457
10 Nov 2025 — In JetBrains dotTrace before 2025.2.5 local privilege escalation possible via race condition • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 8.4EPSS: %CPEs: 1EXPL: 0CVE-2025-64456
https://notcve.org/view.php?id=CVE-2025-64456
10 Nov 2025 — In JetBrains ReSharper before 2025.2.4 missing signature verification in DPA Collector allows local privilege escalation • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-64492 – SuiteCRM is Vulnerable to Authenticated Time Based Blind SQL Injection
https://notcve.org/view.php?id=CVE-2025-64492
08 Nov 2025 — It is possible for an attacker to enumerate database, table, and column names, extract sensitive data, or escalate privileges. This is fixed in version 8.9.1. • https://github.com/SuiteCRM/SuiteCRM-Core/security/advisories/GHSA-54m4-4p54-j8hp • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.3EPSS: 0%CPEs: 4EXPL: 0CVE-2024-25621 – containerd affected by a local privilege escalation via wide permissions on CRI directory
https://notcve.org/view.php?id=CVE-2024-25621
06 Nov 2025 — containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.0 through 2.2.0-rc.1 have an overly broad default permission vulnerability. Directory paths `/var/lib/containerd`, `/run/containerd/io.containerd.grpc.v1.cri` and `/run/containerd/io.containerd.sandbox.controller.v1.shim` were all created with incorrect permissions. This issue is fixed in versions 1.7.29, 2.0.7, 2.1.5 and 2.2.0. Workarounds include updating sys... • https://github.com/containerd/containerd/blob/main/docs/rootless.md • CWE-279: Incorrect Execution-Assigned Permissions •
CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-37735
https://notcve.org/view.php?id=CVE-2025-37735
06 Nov 2025 — In some cases, this could result in local privilege escalation. • https://discuss.elastic.co/t/elastic-defend-8-19-6-9-1-6-and-9-2-0-security-update-esa-2025-23/383272 • CWE-281: Improper Preservation of Permissions •
CVSS: 6.7EPSS: 0%CPEs: -EXPL: 0CVE-2025-20749
https://notcve.org/view.php?id=CVE-2025-20749
04 Nov 2025 — This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. • https://corp.mediatek.com/product-security-bulletin/November-2025 • CWE-121: Stack-based Buffer Overflow •
CVSS: 6.7EPSS: 0%CPEs: -EXPL: 0CVE-2025-20748
https://notcve.org/view.php?id=CVE-2025-20748
04 Nov 2025 — This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. • https://corp.mediatek.com/product-security-bulletin/November-2025 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.7EPSS: 0%CPEs: -EXPL: 0CVE-2025-20741
https://notcve.org/view.php?id=CVE-2025-20741
04 Nov 2025 — This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. • https://corp.mediatek.com/product-security-bulletin/November-2025 • CWE-122: Heap-based Buffer Overflow •
CVSS: 6.7EPSS: 0%CPEs: -EXPL: 0CVE-2025-20747
https://notcve.org/view.php?id=CVE-2025-20747
04 Nov 2025 — This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. • https://corp.mediatek.com/product-security-bulletin/November-2025 • CWE-121: Stack-based Buffer Overflow •