ZDI-26-281: Microsoft vcpkg OpenSSL Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on applications built using the Microsoft vcpkg port of OpenSSL. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2026-34054.

Source link

What's Hot

Integer Overflow Denial of Service in administrative interface

Seiko USA website defaced as hacker claims customer data theft

ZDI-26-281: Microsoft vcpkg OpenSSL Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Integer Overflow Denial of Service in administrative interface

Flowise – Path Traversal in Vector Store basePath – Research Advisory

CVE-2026-6652 | THREATINT

Catchy & Intriguing

The Grandparent Scam: How AI Voice Technology Makes This Old Con Deadlier Than Ever

Global Takedown of Massive IoT Botnets Halts Record-Breaking Cyberattacks

Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

Most Popular

Catchy & Intriguing

The Grandparent Scam: How AI Voice Technology Makes This Old Con Deadlier Than Ever

Global Takedown of Massive IoT Botnets Halts Record-Breaking Cyberattacks

Our Picks

Integer Overflow Denial of Service in administrative interface

Seiko USA website defaced as hacker claims customer data theft

ZDI-26-281: Microsoft vcpkg OpenSSL Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Subscribe to Updates

What's Hot

ZDI-26-281: Microsoft vcpkg OpenSSL Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Related Posts

Subscribe to Updates