Dong-Uk Kim

**Name of the Vulnerable Software and Affected Versions** NVIDIA Installer for NvAPP for Windows (affected versions not specified) **Description** The NVIDIA Installer for NvAPP for Windows has a flaw in the FrameviewSDK installation process. An attacker with local unprivileged access can alter files within the Frameview SDK directory. A successful exploit could result in privilege escalation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Gen Digital CCleaner versions prior to 6.36.11508 **Description** A local user can gain SYSTEM privileges through insecure file delete operations within the cleaning feature on Windows. **Recommendations** Update to version 6.36.11508 or later.

**Name of the Vulnerable Software and Affected Versions** Samsung Magician versions 6.3 through 8.3 **Description** An attacker can achieve Elevation of Privileges to SYSTEM by exploiting insecure file delete operations during the update process. **Recommendations** Update Samsung Magician to a version newer than 8.3.

**Name of the Vulnerable Software and Affected Versions** Oracle Java SE versions 8u451 and 8u451-perf **Description** An issue exists in the Oracle Java SE Install component that allows a low-privileged attacker with logon access to the infrastructure where Oracle Java SE executes to compromise the software. Successful attacks require human interaction from a person other than the attacker and can result in a takeover of Oracle Java SE. This applies to the installation process on client deployments of Java. **Recommendations** Update Oracle Java SE to a version newer than 8u451-perf.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** The issue concerns the behavior of `os.OpenFile` when the target path is a dangling symlink. On Unix systems, `os.OpenFile` with `O CREATE` and `O EXCL` flags never follows symlinks. However, on Windows, if the target path was a symlink to a nonexistent location, `os.OpenFile` would create a file in that location. This discrepancy has been addressed, and now `os.OpenFile` always returns an error when the `O CREATE` and `O EXCL` flags are both set and the target path is a symlink. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 138 Mozilla Firefox ESR versions prior to 128.10 Mozilla Firefox ESR versions prior to 115.23 Thunderbird versions prior to 138 Thunderbird ESR versions prior to 128.10 **Description** The update mechanism in Mozilla Firefox allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating file-locking behavior. By injecting code into the user-privileged process, an attacker could bypass intended access controls, enabling SYSTEM-level file operations on paths controlled by a non-privileged user and allowing privilege escalation. **Recommendations** For Mozilla Firefox versions prior to 138, update to version 138 or later. For Mozilla Firefox ESR versions prior to 128.10, update to version 128.10 or later. For Mozilla Firefox ESR versions prior to 115.23, update to version 115.23 or later. For Thunderbird versions prior to 138, update to version 138 or later. For Thunderbird ESR versions prior to 128.10, update to version 128.10 or later.