cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-25029,https://securityvulnerability.io/vulnerability/CVE-2024-25029,IBM Personal Communications Vulnerable to Remote Code Execution and Local Privilege Escalation,"IBM Personal Communications versions 14.0.6 through 15.0.1 contain a Windows service with a vulnerability that exposes affected systems to remote code execution and local privilege escalation. This vulnerability enables an attacker with unprivileged access and network capabilities to execute commands at the level of NT AUTHORITY\SYSTEM. Consequently, this can lead to unauthorized lateral movement across networks and elevation of privileges, significantly compromising system integrity and security.",IBM,Personal Communications,9,CRITICAL,0.0004299999854993075,false,,true,false,true,2024-04-09T05:39:04.000Z,,false,false,,2024-04-06T11:51:45.548Z,0
CVE-2023-37410,https://securityvulnerability.io/vulnerability/CVE-2023-37410,IBM Personal Communications privilege escalation,"IBM Personal Communications versions 14.05, 14.06, and 15.0.0 are susceptible to a vulnerability that enables local users to escalate their privileges to the SYSTEM user. This issue arises from overly permissive access controls, potentially allowing unauthorized modifications to sensitive configurations or access to critical resources. Organizations leveraging these versions of IBM Personal Communications are advised to implement available security updates and review access control settings to mitigate risks associated with this vulnerability.",IBM,Person Communications,8.4,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-20T20:15:00.000Z,0
CVE-2016-0321,https://securityvulnerability.io/vulnerability/CVE-2016-0321,,"IBM Personal Communications (aka PCOMM) 6.x before 6.0.17 and 12.x before 12.0.0.1 does not properly restrict credential extraction, which allows local users to discover passwords by leveraging access to the victim account and executing a PowerShell script.",IBM,Personal Communications,6.2,MEDIUM,0.0007900000200606883,false,,false,false,false,,,false,false,,2016-07-17T22:00:00.000Z,0
CVE-2012-0201,https://securityvulnerability.io/vulnerability/CVE-2012-0201,,Stack-based buffer overflow in pcspref.dll in pcsws.exe in IBM Personal Communications 5.9.x before 5.9.8 and 6.0.x before 6.0.4 might allow remote attackers to execute arbitrary code via a long profile string in a WorkStation (aka .ws) file.,IBM,Personal Communications,,,0.7907099723815918,false,,false,false,false,,,false,false,,2012-03-02T11:00:00.000Z,0