You searched for privilege escalation | SC Media

Your search for privilege escalation returned 42 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Network Security remove

Your search for privilege escalation returned 42 results

Sort Results:

Relevant Recent
VMware advisory warns users to patch critical issue in product
Network Security, Security News, Vulnerabilities

VMware discloses important local privilege escalation bug found in 3 products

VMware’s latest security advisory discloses three vulnerabilities spread out among five products. The most significant of this trio is an “important” time-of-check time-of-use (TOCTOU) flaw in the service opener of Fusion, VMRC and Horizon Client that can be locally exploited to escalate privileges to root. Officially designated CVE-2020-3957, the bug was assigned a CVSSv3 base score of…
mobile security
Mobile Security, Network Security, Security News, Vulnerabilities

Kernel privilege escalation bug actively exploited in Android devices

Researchers have discovered a zero-day kernel privilege escalation bug that can result in the full compromise of certain Android devices and is apparently being exploited in the wild. Devices known to be affected by the high-level, use-after-free vulnerability include the Pixel 1, 1X:, 2 and 2 XL; the Huawei P20; the Xiaomi Redmi 5A; the…
VMware advisory warns users to patch critical issue in product
Network Security, Security News, Vulnerabilities

VMware squashes critical code execution bug in hypervisors

VMware has updated its Workstation hosted hypervisor and Fusion software hypervisor, fixing a critical vulnerability that could be exploited to trigger arbitrary code execution or a denial of service condition. The virtualization and cloud computing software provider company also fixed two important privilege escalation flaws spread out between four of its products. Designated CVE-2020-3947, the most critical…
Network Security, Security News, Vulnerabilities

Patch Tuesday: Adobe eliminates four critical bugs

Adobe Systems on Patch Tuesday issued fixes for 13 vulnerabilities — four critical — spread out among five products, including Download Manager, ColdFusion, Genuine Service, Media Encoder and the Creative Cloud Desktop Application. Download Manager 2.0.0.518 for Windows contains a command injection flaw (CVE-2020-9688), that can cause arbitrary code execution. Discovered by researcher Dhiraj Mishra,…
Network Security, Security News, Vulnerabilities

Patch Tuesday: Adobe announces 25 bug fixes, 21 in Acrobat products

On the last Patch Tuesday of 2019, Adobe today released security updates for Acrobat and Acrobat Reader, Photoshop CC, Brackets and ColdFusion, fixing 25 critical and important vulnerabilities in the process. Twenty-one of the flaws were found in various Acrobat and Acrobat Reader products for the Windows and macOS platforms. Of these, 14 are critical,…
Network Security, Patch Management, Security News, Vulnerabilities

Cisco patches privilege escalation flaw in Adaptive Securty Appliance software

Cisco Systems this week issued an update for its Adaptive Security Appliance (ASA) software, fixing a high-severity vulnerability that could allow authenticated attackers with low-level access to remotely escalate their privileges on Cisco devices with web management access enabled. Designated CVE-2018-15465, the flaw is the result of an improper validation process while using the web management interface.…
Mobile Security, Network Security, Security News, Vulnerabilities

Privilege escalation bug patched in Accelerated Mobile Pages WordPress plug-in

A WordPress plug-in used to build faster-loading web pages was discovered to contain a privilege escalation vulnerability that allows unauthorized attackers to inject malicious HTML code into the main page. In a company blog post yesterday, researchers at WebARX disclosed the bug, which resides in the “MP for WP – Accelerated Mobile Pages” plug-in. The…
Network Security, Security News

Researchers disclose six privilege escalation bugs in Shimo VPN client

The Shimo VPN client for Mac systems contains six privilege escalation vulnerabilities that have yet to be patched by its developers, researchers from Cisco’s Talos division reported yesterday. Shimo is a product that allows users to connect multiple VPN accounts to a single application. Discovered by Cisco Labs researcher Tyler Bohan, all six flaws were…
Next post in Network Security