Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
elevation of privilege vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2018-0822
NTFS in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way NTFS handles objects, aka "Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability".
Microsoft Windows 10 1511
Microsoft Windows 10 1607
Microsoft Windows Server 2016 -
Microsoft Windows 10 1703
Microsoft Windows 10 -
Microsoft Windows 10 1709
Microsoft Windows Server 2016 1709
1 EDB exploit
NA
CVE-2020-6912
A potential security vulnerability has been identified for certain HP multifunction printers (MFP) which may lead to elevation of privilege.
NA
CVE-2020-6924
A potential security vulnerability has been identified for certain HP multifunction printers (MFPs). The vulnerability may lead to elevation of privilege when running Workpath solutions on Enterprise-class printers.
4.4
CVSSv2
CVE-2018-0823
The Named Pipe File System in Windows 10 version 1709 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Named Pipe File System handles objects, aka "Named Pipe File System Elevation of Privilege Vulnerability".
Microsoft Windows 10 1709
Microsoft Windows Server 2016 1709
1 EDB exploit
NA
CVE-2023-36391
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
Microsoft Windows 11 23h2
7.2
CVSSv2
CVE-2018-15442
A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated, local malicious user to execute arbitrary commands as a privileged user. The vulnerability is due to insufficient validation of user-supplied parameters. An attacke...
Cisco Webex Productivity Tools
Cisco Webex Meetings Desktop
2 EDB exploits
1 Nmap script
4.6
CVSSv2
CVE-2018-10709
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write CR register values. This could be leveraged in a number of ways to...
Asrock F-stream
Asrock A-tuning
Asrock Restart To Uefi
Asrock Rgbled
1 EDB exploit
7.2
CVSSv2
CVE-2018-10710
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local mali...
Asrock F-stream
Asrock A-tuning
Asrock Restart To Uefi
Asrock Rgbled
1 EDB exploit
7.2
CVSSv2
CVE-2018-10711
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write Machine Specific Registers (MSRs). This could be leveraged to exec...
Asrock F-stream
Asrock A-tuning
Asrock Restart To Uefi
Asrock Rgbled
1 EDB exploit
7.2
CVSSv2
CVE-2018-10712
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ...
Asrock F-stream
Asrock A-tuning
Asrock Restart To Uefi
Asrock Rgbled
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »