Eran Shimony

**Name of the Vulnerable Software and Affected Versions** IBM Langflow Desktop versions 1.0.0 through 1.8.4 **Description** An issue allows an attacker to execute arbitrary commands with the privileges of the process running Langflow. This can lead to the exposure of sensitive environment variables, such as API keys and database credentials, as well as the modification of files or the initiation of further attacks on the internal network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) Graphics DCH Drivers for Windows 10 versions prior to 27.20.100.9316 Description: The issue is related to improper initialization in the installer for some Intel(R) Graphics DCH Drivers, which may allow an authenticated user to potentially enable denial of service via local access. Recommendations: For versions prior to 27.20.100.9316, update to version 27.20.100.9316 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** AMD Radeon settings Installer (affected versions not specified) **Description** The issue is related to an untrusted search path in the AMD Radeon settings Installer, which may lead to privilege escalation or unauthorized code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) NUC Pro Chassis Element AverMedia Capture Card drivers versions prior to 3.0.64.143 Description: The issue is related to an uncontrolled search path in some Intel(R) NUC Pro Chassis Element AverMedia Capture Card drivers. This may allow an authenticated user to potentially enable escalation of privilege via local access. Recommendations: For versions prior to 3.0.64.143, update to version 3.0.64.143 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Intel(R) NUC 9 Extreme Laptop Kit LAN Drivers versions prior to 10.42 Description: The issue concerns insecure inherited permissions that may allow an authenticated user to potentially enable escalation of privilege via local access. Recommendations: For versions prior to 10.42, update to version 10.42 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V (affected versions not specified) Description: The issue is related to insufficient access controls in the Windows Hyper-V hardware virtualization system, allowing an attacker to potentially elevate their privileges. An elevation-of-privilege issue affects the system, enabling attackers to impact it. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Security 2020 (Consumer) **Description** The issue concerns a vulnerability in the installer package of the software. This vulnerability can be exploited by placing a malicious DLL in a local directory, potentially leading to the obtainment of administrative privileges during the product's installation. **Recommendations** For Trend Micro Security 2020 (Consumer), consider restricting access to the local directory where the installer package is executed to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid installing the product in environments where malicious DLLs could be present. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Security 2020 (Consumer) (affected versions not specified) **Description** The issue concerns a vulnerability in the installer package of the software. This vulnerability can be exploited by placing a specific file in a Windows system directory, potentially leading to the obtainment of administrative privileges during the product's installation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Security 2020 (Consumer) **Description** The issue concerns a vulnerability in the installer package that can be exploited through a symlink attack. This involves placing a malicious DLL in a non-protected location with high privileges, potentially leading to the obtainment of administrative privileges during the product's installation. **Recommendations** For Trend Micro Security 2020 (Consumer), consider restricting access to the installer package to minimize the risk of exploitation until a patch is available. As a temporary workaround, ensure that all locations where the installer package is executed are protected from malicious DLL placement.

**Name of the Vulnerable Software and Affected Versions** LGPCSuite Setup version 1.0.0.3 IPSFULLHD version 1.0.0.9 LG ULTRAWIDE version 1.0.0.9 ULTRA HD Driver Setup version 1.0.0.9 **Description** A vulnerability exists that can hijack a DLL file loaded during the installation of certain LG Electronics products. This issue is due to missing support for integrity checks in a component of the affected products, allowing an attacker to cause an impact. **Recommendations** For LGPCSuite Setup version 1.0.0.3, update to a version that includes support for integrity checks to prevent DLL hijacking. For IPSFULLHD version 1.0.0.9, update to a version that includes support for integrity checks to prevent DLL hijacking. For LG ULTRAWIDE version 1.0.0.9, update to a version that includes support for integrity checks to prevent DLL hijacking. For ULTRA HD Driver Setup version 1.0.0.9, update to a version that includes support for integrity checks to prevent DLL hijacking.

Name of the Vulnerable Software and Affected Versions: Intel Computing Improvement Program versions prior to 2.4.5718 Description: The issue is caused by improper access control in the Intel Computing Improvement Program, which may allow an authenticated user to potentially enable escalation of privilege via local access. This is due to errors in privilege management. Recommendations: For versions prior to 2.4.5718, update to version 2.4.5718 or later to resolve the issue. As a temporary workaround, consider restricting local access to the Intel Computing Improvement Program to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Kaspersky Virus Removal Tool (KVRT) versions prior to 15.0.23.0 **Description** The issue is related to insufficient access control, which could allow an attacker to delete the content of any file in the system. This could provide an opportunity for arbitrary file corruption. **Recommendations** For versions prior to 15.0.23.0, update to version 15.0.23.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Kaspersky Security Center versions prior to 12 Patch A Kaspersky Security Center Web Console versions prior to 12 Patch A **Description** The issue is related to errors in the mechanism for checking the path to dynamically loaded libraries (DLL), which can be exploited to elevate privileges in the system. This can allow an attacker to perform a DLL hijacking attack. **Recommendations** For Kaspersky Security Center versions prior to 12 Patch A, update to version 12 Patch A or later to resolve the issue. For Kaspersky Security Center Web Console versions prior to 12 Patch A, update to version 12 Patch A or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable DLL loading mechanism to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Kaspersky VPN Secure Connection versions prior to 5.0 **Description** The issue is related to insufficient access control in the installer, which could allow an attacker to delete any file in the system. This is due to a vulnerability in the installation file that enables arbitrary file deletion. **Recommendations** For versions prior to 5.0, update to version 5.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the installer to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** HiSuite versions prior to 10.1.0.500 **Description** The issue exists due to improper loading of a DLL file by HiSuite, allowing an attacker to load a DLL file of their choice. This is a result of a DLL hijacking vulnerability. **Recommendations** For versions prior to 10.1.0.500, update to version 10.1.0.500 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable DLL files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to a lack of proper access control in the Windows group policy, allowing a remote attacker to potentially elevate their privileges and execute arbitrary code using a specially crafted application. This can affect the system, enabling attackers to impact it. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Registry (affected versions not specified) **Description** A denial of service issue exists due to improper handling of filesystem operations by the Windows Registry. This can be exploited by an attacker to cause a denial of service by running a specially crafted application. The vulnerability is related to the incorrect processing of filesystem operations, which can lead to system disruption. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) CSME versions prior to 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 Intel(R) TXE versions prior to 3.1.75, 4.0.25 Description: The issue is related to a path traversal vulnerability in the Intel Dynamic Application Loader (DAL) subsystem for Intel Converged Security and Manageability Engine (CSME) and Intel Trusted Execution Engine (TXE) software. This vulnerability may allow an unprivileged user to potentially enable denial of service via local access. The vulnerability is caused by incorrect restriction of access to a directory with limited access. Recommendations: For Intel(R) CSME versions prior to 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33, update to version 11.8.77 or later, 11.12.77 or later, 11.22.77 or later, 12.0.64 or later, 13.0.32 or later, 14.0.33 or later. For Intel(R) TXE versions prior to 3.1.75, 4.0.25, update to version 3.1.75 or later, 4.0.25 or later. As a temporary workaround, consider restricting access to the vulnerable subsystem until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Huawei PCManager versions earlier than 10.0.1.36 **Description** The issue is related to improper permission management of specific files, allowing local attackers with low permissions to inject commands and potentially cause privilege escalation. This can be exploited by attackers to gain elevated access. **Recommendations** For versions earlier than 10.0.1.36, update to version 10.0.1.36 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Android versions Android-10 **Description** The issue is related to a possible out of bounds read in the `l2c link process num completed pkts` function of `l2c link.cc` due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. **Recommendations** For Android version Android-10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.