Vladislav Berghici

**Name of the Vulnerable Software and Affected Versions** Nagios Host (affected versions not specified) **Description** A flaw exists within the `zabbixagent configwizard func` method that allows remote attackers to execute arbitrary code on affected installations. Authentication is required to exploit this issue. The root cause is the lack of proper validation of user-supplied input before it is used in a system call, potentially allowing an attacker to execute code in the context of the service account. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nagios Host (affected versions not specified) **Description** A flaw exists within the `esensors websensor configwizard func` method that allows remote attackers to execute arbitrary code on affected installations. Authentication is required to exploit this issue. The root cause is the lack of proper validation of user-supplied input before it is used in a system call, potentially allowing an attacker to execute code in the context of the service account. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nagios Host (affected versions not specified) **Description** A flaw exists within the monitoringwizard module that allows remote attackers to execute arbitrary code on affected installations of Nagios Host. Authentication is required for exploitation. The issue stems from insufficient validation of user-supplied input before it is used in a system call, potentially allowing an attacker to execute code within the context of the service account. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Exchange Server (affected versions not specified) **Description** A flaw in Microsoft Exchange Server’s user interface can lead to the misrepresentation of critical information. This allows an unauthorized attacker to conduct spoofing attacks over a network. The issue enables attackers to affect the system through spoofing. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Security version 17.8 **Description** The issue is related to a link following local privilege escalation that could allow a local attacker to unintentionally delete privileged Trend Micro files, including its own. **Recommendations** For Trend Micro Security version 17.8, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Avast Cleanup Premium version 24.2.16593.17810 **Description** The issue allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a time-of-check to time-of-use (TOCTTOU) attack. This is achieved by exploiting the `TuneupSvc` in Avast Cleanup Premium on Windows 10 Pro x64. **Recommendations** For Avast Cleanup Premium version 24.2.16593.17810, consider disabling the `TuneupSvc` service as a temporary workaround until a patch is available. Restrict access to the vulnerable service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Avast Cleanup Premium version 24.2.16593.17810 **Description** The issue allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a time-of-check to time-of-use (TOCTTOU) attack. **Recommendations** For Avast Cleanup Premium version 24.2.16593.17810, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AVG TuneUp version 24.2.16593.9844 **Description** The issue allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging the service to delete a directory. This is achieved by exploiting the `TuneupSvc.exe` in AVG TuneUp on Windows. **Recommendations** For AVG TuneUp version 24.2.16593.9844, consider disabling the `TuneupSvc.exe` service as a temporary workaround until a patch is available. Restrict access to the vulnerable service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Norton Utilities Ultimate version 24.2.16862.6344 **Description** The issue allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via the creation of a symbolic link and leveraging a time-of-check to time-of-use (TOCTTOU) attack. This is a local privilege escalation vulnerability in the NortonUtilitiesSvc service. **Recommendations** For Norton Utilities Ultimate version 24.2.16862.6344, consider disabling the NortonUtilitiesSvc service as a temporary workaround until a patch is available. Restrict access to the service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Wacom Center (affected versions not specified) **Description** This issue allows local attackers to escalate privileges on affected installations of Wacom Center. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. The specific flaw exists within WTabletServicePro.exe. By creating a symbolic link, an attacker can abuse the service to create an arbitrary file. An attacker can leverage this issue to escalate privileges and execute arbitrary code in the context of SYSTEM. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Security version 17.8 (Consumer) **Description** The issue is a link following local privilege escalation vulnerability. It could allow a local attacker to unintentionally delete privileged Trend Micro files, including its own. **Recommendations** For Trend Micro Security version 17.8 (Consumer), at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trend Micro Apex One security agent (affected versions not specified) **Description** An uncontrolled search path issue allows a local attacker to escalate privileges on affected installations, but the attacker must first obtain the ability to execute low-privileged code on the target system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Trimble SketchUp Pro (affected versions not specified) **Description** This issue allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this, where the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files embedded in SKP files, resulting from the lack of proper validation of user-supplied data. This can lead to a read past the end of an allocated buffer, and an attacker can leverage this, in conjunction with other vulnerabilities, to execute arbitrary code in the context of the current process. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Open Design Alliance Drawings SDK versions prior to 2025.10 Description: An out-of-bounds write issue was discovered in the Open Design Alliance Drawings SDK. This issue can be triggered by reading a crafted DWF file and missing proper checks on received `SectionIterator` data, which can cause an unhandled exception. This may allow attackers to cause a crash, potentially enabling a denial-of-service attack or possible code execution. Recommendations: For versions prior to 2025.10, upgrade the affected component to a version that includes the fix for this issue. As a temporary workaround, consider restricting the handling of DWF files to minimize the risk of exploitation. Avoid using the `SectionIterator` data in the affected API endpoint until the issue is resolved.