Brian Wiltse

**Name of the Vulnerable Software and Affected Versions** QEMU Guest Agent (affected versions not specified) **Description** A flaw was found in the QEMU Guest Agent service for Windows, allowing a local unprivileged user to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to elevate their privileges on the system. This issue is related to insecure privilege management. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Verint Desktop Resources version 15.2 **Description** The issue allows an unprivileged local user to elevate their privileges during the installation or repair process of the software. **Recommendations** For Verint Desktop Resources version 15.2, consider restricting access to the installation or repair process until a fix is available. As a temporary workaround, limit the privileges of users who can perform these actions to minimize the risk of exploitation.