Show filters
35,559 Total Results
Displaying 31-40 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
High
CVE-2020-3153
Disclosure Date: February 20, 2020 (last updated October 06, 2023)
A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local attacker to copy user-supplied files to system level directories with system level privileges. The vulnerability is due to the incorrect handling of directory paths. An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory. An exploit could allow the attacker to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks. To exploit this vulnerability, the attacker needs valid credentials on the Windows system.
4
Attacker Value
Moderate
CVE-2020-0668
Disclosure Date: February 11, 2020 (last updated October 06, 2023)
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0669, CVE-2020-0670, CVE-2020-0671, CVE-2020-0672.
1
Attacker Value
High
CVE-2023-36874
Disclosure Date: July 11, 2023 (last updated December 14, 2023)
Windows Error Reporting Service Elevation of Privilege Vulnerability
3
Attacker Value
Moderate
CVE-2023-29336
Disclosure Date: May 09, 2023 (last updated April 10, 2024)
Win32k Elevation of Privilege Vulnerability
3
Attacker Value
Unknown
CVE-2023-21735
Disclosure Date: January 10, 2023 (last updated October 08, 2023)
Microsoft Office Remote Code Execution Vulnerability
3
Attacker Value
Very High
CVE-2022-41073
Disclosure Date: November 09, 2022 (last updated October 08, 2023)
Windows Print Spooler Elevation of Privilege Vulnerability
4
Attacker Value
High
CVE-2022-26904
Disclosure Date: April 15, 2022 (last updated October 07, 2023)
Windows User Profile Service Elevation of Privilege Vulnerability
4
Attacker Value
Low
CVE-2022-22960
Disclosure Date: April 13, 2022 (last updated October 07, 2023)
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts. A malicious actor with local access can escalate privileges to 'root'.
4
Attacker Value
Moderate
CVE-2022-21970
Disclosure Date: January 11, 2022 (last updated December 21, 2023)
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
3
Attacker Value
High
CVE-2022-21919
Disclosure Date: January 11, 2022 (last updated December 21, 2023)
Windows User Profile Service Elevation of Privilege Vulnerability
4