Latest Security News about privilege escalation

Privilege escalation vulnerability in MicroK8s allows a low privilege user with local access to obtain root access to the host by provisioning a privileged container. Fixed in MicroK8s 1.15.3.

Overview : Privilege escalation vulnerability in MicroK8s allows a low privilege user with local access to obtain root access to the host by provisioning a privileged container. Fixed in MicroK8s 1.15.3. MICROK8S - PRIVILEGE ESCALATION (CVE-2019-15789) Sep 10 2019 MicroK8s prior to v1.15.3 included a privilege escalation vulnerability, allowing a low privilege user to obtain [...]

Data Center Security Privilege Escalation

Overview : Symantec Data Center Security Manager Component, prior to 6.8.2 (aka 6.8 MP2), may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. CVE-2020-5832   [...]

Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER through 3.0.7 when installed to run as a service.

  Overview : Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER through 3.0.7 when installed to run as a service. CVE-2020-10940   PHOENIX CONTACT Local Privilege Escalation in Portico Remote desktop control software VDE-2020-013 (2020-03-27 10:48 UTC+0100) CVE Identifier CVE-2020-10940 Severity 7.8 (CVSS:3.1:AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) Affected Vendors PHOENIX CONTACT Affected Products Product Article Number Affected [...]

Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT through 1.14 allow for local privilege escalation.

  Overview : Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT through 1.14 allow for local privilege escalation. CVE-2020-10939   PHOENIX CONTACT Local Privilege Escalation in PC WORX SRT VDE-2020-012 (2020-03-27 10:47 UTC+0100) CVE Identifier CVE-2020-10939 Severity 7.8 (CVSS:3.1:AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) Affected Vendors PHOENIX CONTACT Affected Products Product Article Number Affected Versions PC WORX SRT [...]