CWE-269: Improper Privilege Management vulnerability exists that could cause privilege escalation and
arbitrary code execution when a privileged engineer user with console access modifies a configurat
Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorized attacker to elevate privileges locally.
An improper validation vulnerability was reported in Lenovo Vantage that under certain conditions could allow a local attacker to execute code with elevated permissions by modifying specific registry
Improper input validation in System Center Operations Manager allows an authorized attacker to elevate privileges over a network.
Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally.
A DLL hijack vulnerability was reported in Lenovo Leyun that could allow a local attacker to execute code with elevated privileges.
Out-of-bounds read in Windows DWM allows an authorized attacker to elevate privileges locally.
A vulnerability in the CLI and web-based management interface of Cisco UCS Manager Software could allow an authenticated, remote attacker with valid administrative privileges to execute arbitrary comm
A DLL hijack vulnerability was reported in Lenovo Service Framework that could allow a local attacker to execute code with elevated privileges.
A vulnerability allowing local system users to modify directory contents, allowing for arbitrary code execution on the local system with elevated permissions.
In multiple locations there is a possible provisioning bypass due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User in
An improper default permission vulnerability was reported in Lenovo Dock Manager that, under certain conditions during installation, could allow an authenticated local user to redirect log files with
Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.
Out-of-bounds read in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.
Improper input validation in Azure Local allows an authorized attacker to elevate privileges locally.
Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally.
Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.
Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
Improper access control in Storvsp.sys Driver allows an authorized attacker to elevate privileges locally.
← Previous Page 5