CVE-2016-8732

HIGH Year: 2016
CVSS v3 Score
7.8
High
CVSS v2 Score
4.6
Medium
Weakness Type
CWE-275
View all →

Vulnerability Description

Multiple security flaws exists in InvProtectDrv.sys which is a part of Invincea Dell Protected Workspace 5.1.1-22303. Weak restrictions on the driver communication channel and additional insufficient checks allow any application to turn off some of the protection mechanisms provided by the Invincea product.

Related Vulnerabilities

CVE-2015-8300

HIGH
CVSS:7.8(High)

Polycom BToE Connector before 3.0.0 uses weak permissions (Everyone: Full Control) for "Program Files (x86)\polycom\polycom btoe connector\plcmbtoesrv.exe," which allows local users to gain privileges...

CWE-2752015

CVE-2016-7382

HIGH
CVSS:7.8(High)

For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys for Windows or nvidia.ko for Linux) handler where a m...

CWE-2752016

CVE-2016-8856

HIGH
CVSS:7.8(High)

Foxit Reader for Mac 2.1.0.0804 and earlier and Foxit Reader for Linux 2.1.0.0805 and earlier suffered from a vulnerability where weak file permissions could be exploited by attackers to execute arbit...

CWE-2752016

CVE-2017-18390

HIGH
CVSS:7.8(High)

cPanel before 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups (SEC-322).

CWE-2752017

CVE-2019-11145

HIGH
CVSS:7.8(High)

Improper file verification in Intel® Driver & Support Assistant before 19.7.30.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

CWE-2752019

CVE-2019-11146

HIGH
CVSS:7.8(High)

Improper file verification in Intel® Driver & Support Assistant before 19.7.30.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

CWE-2752019