CWE-268: CWE-268

This vulnerability allows a lower-privileged process on Windows to create a named pipe that the OpenVPN GUI component automatically connects to, enabl...

This privilege escalation vulnerability in QND software versions 11.0.9i and earlier allows authenticated Windows users to gain administrator privileg...

This vulnerability allows local authenticated users to edit their profile files and insert illegitimate challenge response codes, enabling privilege e...

This vulnerability allows local authenticated attackers to elevate privileges on systems running Privilege Management for Windows versions before 25.2...

This CVE describes a privilege escalation vulnerability in the e-Tax software installer where an attacker can plant a malicious DLL that gets executed...

This vulnerability in Microsoft Edge (Chromium-based) allows unauthorized attackers to access sensitive information over a network. It affects all use...

CVE-2025-32955 is a privilege escalation vulnerability in Harden-Runner CI/CD security agent that allows attackers to bypass the 'disable-sudo' policy...

IBM WebSphere Application Server Liberty versions 17.0.0.3 through 25.0.0.8 contain a vulnerability where JMS messaging configuration is not properly ...

This vulnerability in Cisco Unified Communications and Contact Center Solutions allows authenticated local attackers with administrative ESXi hypervis...