#privilege-escalation

[ follow ]
fromSecuritymagazine
3 weeks ago

Sudo Vulnerability Discovered, May Exposes Linux Systems

CVE-2025-32462 has received a lower CVSS score due to the conditions that are needed. Namely, successful execution would require someone to make a misconfiguration and deploy a Sudoers file with an incorrect host for this vulnerability to work.
Privacy professionals
#cybersecurity
more#cybersecurity
Growth hacking
fromThe Hacker News
2 months ago

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise

A significant privilege escalation flaw in Windows Server 2025 allows attackers to compromise any Active Directory user due to misconfigured delegation settings.
fromThe Hacker News
2 months ago

AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation

These roles, often created automatically or recommended during setup, grant overly broad permissions, such as full S3 access.
Information security
fromThe Hacker News
3 months ago

GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages

A patched vulnerability in Google Cloud Platform allowed privilege escalation in the Cloud Composer service.
[ Load more ]