privilege-escalation
342 articles with this tag
MEDIUM
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
CRITICAL
HIGH
CRITICAL
CRITICAL
HIGH
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
MEDIUM
CRITICAL
HIGH
HIGH
HIGH
HIGH
CRITICAL
HIGH
CRITICAL
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
MEDIUM
MEDIUM
MEDIUM
MEDIUM
MEDIUM
MEDIUM
MEDIUM
MEDIUM
MEDIUM
MEDIUM
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
INFO
INFO
INFO
INFO
CRITICAL
CRITICAL
HIGH
CRITICAL
CRITICAL
HIGH
CRITICAL
MEDIUM
CRITICAL
[NEU] [mittel] Intel NPU Driver: Mehrere Schwachstellen ermöglichen Privilegieneskalation und DoS
[NEU] [hoch] CODESYS: Mehrere Schwachstellen
[UPDATE] [hoch] Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation
NCSC-2026-0167 [1.00] [M/H] Kwetsbaarheid verholpen in Cisco Secure Workload
USN-8305-1: Linux kernel (Intel IoTG Real-time) vulnerabilities
[UPDATE] [hoch] SUSE Manager: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
USN-8281-2: Linux kernel (Azure) vulnerabilities
USN-8280-2: Linux kernel (Azure)vulnerabilities
USN-8297-1: Linux kernel (GCP) vulnerabilities
USN-8279-2: Linux kernel (GCP) vulnerabilities
Vulnérabilité dans le noyau Linux de Debian LTS (22 mai 2026)
Multiples vulnérabilités dans le noyau Linux de Red Hat (22 mai 2026)
Multiples vulnérabilités dans le noyau Linux de Debian (22 mai 2026)
[NEU] [hoch] Cisco Secure Workload: Schwachstelle ermöglicht Erlangen von Administratorrechten
[NEU] [mittel] Gitea: Mehrere Schwachstellen
[UPDATE] [mittel] Exim: Schwachstelle ermöglicht Privilegieneskalation
A TL;DR on Dirty Frag #cybersecurity #threatwire @endingwithali
[NEU] [hoch] Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation
Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days
9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros
RHSA-2026:19664: Important: kernel-rt security update
Cisco Secure Workload Unauthorized API Access Vulnerability
[NEU] [hoch] Budibase: Mehrere Schwachstellen
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
Exploit available for new DirtyDecrypt Linux root escalation flaw
New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released
Microsoft rejects critical Azure vulnerability report, no CVE issued
New Linux privilege escalation flaw ‘Fragnesia’ disclosed; PoC available
[NEU] [hoch] Strapi: Mehrere Schwachstellen
[NEU] [hoch] Apple Safari: Mehrere Schwachstellen
[NEU] [hoch] PostgreSQL: Mehrere Schwachstellen
[NEU] [mittel] Grafana: Mehrere Schwachstellen
[NEU] [hoch] MISP und MISP Modules: Mehrere Schwachstellen
[NEU] [mittel] VMware Fusion: Schwachstelle ermöglicht Privilegieneskalation
[NEU] [hoch] Palo Alto Networks PAN-OS: Mehrere Schwachstellen
[NEU] [hoch] Linux Kernel (Fragnesia): Schwachstelle ermöglicht Erlangen von Administratorrechten
[UPDATE] [mittel] F5 BIG-IP Produkte: Mehrere Schwachstellen
[NEU] [kritisch] Cisco Catalyst SD-WAN Controller: Schwachstelle ermöglicht Erlangen von Administratorrechten
[NEU] [hoch] Palo Alto Networks GlobalProtect App: Mehrere Schwachstellen
NCSC-2026-0160 [1.00] [M/H] Kwetsbaarheden verholpen in Ivanti Endpoint Manager
Broadcom patches high-severity VMware Fusion flaw allowing local privilege escalation
Researcher publishes proof-of-concept exploits for unpatched Windows vulnerabilities
Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)
Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access
High-Severity Vulnerability Patched in VMware Fusion
Mystery Microsoft bug leaker keeps the zero-days coming
When IT Support Calls: Dissecting a ModeloRAT Campaign from Teams to Domain Compromise
NCSC-2026-0156 [1.00] [M/H] Kwetsbaarheid verholpen in Fortinet FortiAuthenticator
[NEU] [hoch] Microsoft SQL Server: Schwachstelle ermöglicht Erlangen von Administratorrechten
[NEU] [hoch] Fortinet FortiOS: Schwachstelle ermöglicht Privilegieneskalation
[UPDATE] [mittel] PAM: Schwachstelle ermöglicht Privilegieneskalation
[NEU] [hoch] Intel Prozessor: Mehrere Schwachstellen
[NEU] [mittel] Intel Server Firmware Update Utility Software: Schwachstelle ermöglicht Privilegieneskalation
CVE-2026-40420 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
CVE-2026-35436 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
CVE-2026-40418 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
CVE-2026-40402 Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2026-40398 Windows Remote Desktop Services Elevation of Privilege Vulnerability
CVE-2026-40397 Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2026-34341 Windows Link-Layer Discovery Protocol (LLDP) Elevation of Privilege Vulnerability
CVE-2026-34340 Windows Projected File System Elevation of Privilege Vulnerability
CVE-2026-34338 Windows Telephony Service Elevation of Privilege Vulnerability
CVE-2026-34337 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2026-34334 Windows TCP/IP Elevation of Privilege Vulnerability
CVE-2026-33838 Windows Message Queuing (MSMQ) Elevation of Privilege Vulnerability
CVE-2026-33837 Windows TCP/IP Local Elevation of Privilege Vulnerability
Multiples vulnérabilités dans les produits Schneider Electric (12 mai 2026)
NCSC-2026-0138 [1.00] [M/H] Kwetsbaarheden verholpen in Apple iOS en iPadOS
NCSC-2026-0139 [1.00] [M/H] Kwetsbaarheden verholpen in Apple MacOS
JetBrains TeamCity vulnerability allows privilege escalation, API exposure (CVE-2026-44413)
[NEU] [mittel] Microsoft Dynamics 365 Customer Insights: Schwachstelle ermöglicht Privilegieneskalation
QNAP NAS Elevation of Privilege Vulnerability
GhostLock: SMB Deny-Share Handles as a Zero-Privilege Availability Weapon
Linux developers weigh emergency “killswitch” for vulnerable kernel functions
New ‘Dirty Frag’ exploit targets Linux kernel for root access
Copy Fail and DirtyFrag: Linux Page Cache Bugs in the Wild
cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now
Dirty Frag: Using the Page Caches as an Attack Surface
VU#260001: Linux kernel contains local privilege escalation vulnerability (Copy Fail)
Active attack: Dirty Frag Linux vulnerability expands post-compromise risk
Dirty Frag: Unpatched Linux vulnerability delivers root access
[NEU] [hoch] Ivanti Endpoint Manager Mobile: Mehrere Schwachstellen
[NEU] [hoch] Linux Kernel (Dirty Frag): Mehrere Schwachstellen ermöglichen Erlangen von Administratorrechten
[UPDATE] [mittel] Avast Antivirus: Schwachstelle ermöglicht Privilegieneskalation
New Linux 'Dirty Frag' zero-day gives root on all major distros
Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions
CVE-2026-35435 Azure AI Foundry Elevation of Privilege Vulnerability
CVE-2026-41105 Azure Monitor Action Group Notification System Elevation of Privilege Vulnerability
CVE-2026-33821 Microsoft Dynamics 365 Customer Insights Elevation of Privilege Vulnerability
Dirty Frag - Linux LPE similiar to Copy Fail
Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (07 mai 2026)
Linux cryptographic code flaw offers fast route to root
NCSC-2026-0133 [1.00] [M/H] Kwetsbaarheden verholpen in Progress MOVEit Automation
‘Copy Fail’ is a real Linux security crisis wrapped in AI slop
[local] Linux nf_tables 6.19.3 - Local Privilege Escalation
[local] Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation
CISA says ‘Copy Fail’ flaw now exploited to root Linux systems
[NEU] [mittel] IBM i: Schwachstelle ermöglicht Privilegieneskalation
CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments