CWE:
 

Tytuł
Data
Autor
Med.
Microsoft Windows UAC Privilege Escalation
02.05.2021
Stefan Kanthak
Med.
Microsoft SAFER Bypass
30.04.2021
Stefan Kanthak


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2021-11-17
Medium
CVE-2021-33063

Updating...
 

 
Uncontrolled search path in the Intel(R) RealSense(TM) D400 Series UWP driver for Windows 10 before version 6.1.160.22 may allow an authenticated user to potentially enable escalation of privilege via local access.

 
2021-11-15
Medium
CVE-2020-12892

Updating...
 

 
An untrusted search path in AMD Radeon settings Installer may lead to a privilege escalation or unauthorized code execution.

 
2021-10-27
High
CVE-2011-4125

Vendor: Calibre-ebook
Software: Calibre
 

 
A untrusted search path issue was found in Calibre at devices/linux_mount_helper.c leading to the ability of unprivileged users to execute any program as root.

 
2021-09-28
Waiting for details
CVE-2021-36297

Updating...
 

 
SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows attackers to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstallerTool.exe installation for executing arbitrary dll's,

 
2021-09-22
Medium
CVE-2021-31841

Vendor: Mcafee
Software: Mcafee agent
 

 
A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability to execute arbitrary code as the system user, through not checking the DLL signature.

 
2021-08-18
Medium
CVE-2021-37617

Vendor: Nextcloud
Software: Desktop
 

 
The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with a computer. The Nextcloud Desktop Client invokes its uninstaller script when being installed to make sure there are no remnants of previous installations. In versions 3.0.3 through 3.2.4, the Client searches the `Uninstall.exe` file in a folder that can be written by regular users. This could lead to a case where a malicious user creates a malicious `Uninstall.exe`, which would be executed with administrative privileges on the Nextcloud Desktop Client installation. This issue is fixed in Nextcloud Desktop Client version 3.3.0. As a workaround, do not allow untrusted users to create content in the `C:\` system folder and verify that there is no malicious `C:\Uninstall.exe` file on the system.

 
2021-08-17
Medium
CVE-2021-3633

Vendor: Lenovo
Software: Drivers mana...
 

 
A DLL preloading vulnerability was reported in Lenovo Driver Management prior to version 2.9.0719.1104 that could allow privilege escalation.

 
2021-05-24
Medium
CVE-2021-20726

Vendor: Overwolf
Software: Overwolf
 

 
Untrusted search path vulnerability in The Installer of Overwolf 2.168.0.n and earlier allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the installer via a Trojan horse DLL in an unspecified directory.

 
2021-04-08
Medium
CVE-2021-3146

Updating...
 

 
The Dolby Audio X2 (DAX2) API service before 0.8.8.90 on Windows allows local users to gain privileges.

 
2021-03-26
Medium
CVE-2021-28246

Vendor: CA
Software: Ehealth
 

 
** UNSUPPORTED WHEN ASSIGNED ** CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a Dynamically Linked Shared Object Library. A regular user must create a malicious library in the writable RPATH, to be dynamically linked when the emtgtctl2 executable is run. The code in the library will be executed as the ehealth user. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

 

 


Copyright 2021, cxsecurity.com

 

Back to Top