CVE-2023-36853

HIGH Year: 2023
CVSS v3 Score
7.8
High
Weakness Type
CWE-749
View all →

Vulnerability Description

​In Keysight Geolocation Server v2.4.2 and prior, a low privileged attacker could create a local ZIP file containing a malicious script in any location. The attacker could abuse this to load a DLL with SYSTEM privileges.

Related Vulnerabilities

CVE-2018-19322

HIGH
CVSS:7.8(High)

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to re...

CWE-7492018

CVE-2020-12927

HIGH
CVSS:7.8(High)

A potential vulnerability in a dynamically loaded AMD driver in AMD VBIOS Flash Tool SDK may allow any authenticated user to escalate privileges to NT authority system.

CWE-7492020

CVE-2020-12928

HIGH
CVSS:7.8(High)

A vulnerability in a dynamically loaded AMD driver in AMD Ryzen Master V15 may allow any authenticated user to escalate privileges to NT authority system.

CWE-7492020

CVE-2022-37365

HIGH
CVSS:7.8(High)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must...

CWE-7492022

CVE-2023-27363

HIGH
CVSS:7.8(High)

Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF...

CWE-7492023

CVE-2023-27364

HIGH
CVSS:7.8(High)

Foxit PDF Editor XLS File Parsing Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit ...

CWE-7492023