Windows Security Vulnerabilities

CVE-2024-20700

...

CVE-2024-20698

...

CVE-2024-20699

...

CVE-2024-20697

...

CVE-2024-20696

...

CVE-2024-20694

...

CVE-2024-20691

...

CVE-2024-20690

...

CVE-2024-20683

...

CVE-2024-20680

...

CVE-2024-20682

...

CVE-2024-20658

...

CVE-2024-20657

...

CVE-2024-20654

...

CVE-2024-20674

...

CVE-2024-20666

...

CVE-2023-51654

Improper link resolution before file access ('Link Following') issue exists in iPrint&Scan Desktop for Windows versions 11.0.0 and earlier. A symlink attack by a malicious user may cause a Denial-of-service (DoS) condition on the...

CVE-2023-5594

Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as...

CVE-2022-44684

Windows Local Session Manager (LSM) Denial of Service...

CVE-2023-43586

Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows may allow an authenticated user to conduct an escalation of privilege via network...

CVE-2023-36391

Local Security Authority Subsystem Service Elevation of Privilege...

CVE-2023-36696

Windows Cloud Files Mini Filter Driver Elevation of Privilege...

CVE-2023-36006

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution...

CVE-2023-36011

Win32k Elevation of Privilege...

CVE-2023-36012

DHCP Server Service Information Disclosure...

CVE-2023-36005

Windows Telephony Server Elevation of Privilege...

CVE-2023-35643

DHCP Server Service Information Disclosure...

CVE-2023-36004

Windows DPAPI (Data Protection Application Programming Interface) Spoofing...

CVE-2023-36003

XAML Diagnostics Elevation of Privilege...

CVE-2023-35644

Windows Sysmain Service Elevation of...

CVE-2023-35638

DHCP Server Service Denial of Service...

CVE-2023-35642

Internet Connection Sharing (ICS) Denial of Service...

CVE-2023-35641

Internet Connection Sharing (ICS) Remote Code Execution...

CVE-2023-35635

Windows Kernel Denial of Service...

CVE-2023-35639

Microsoft ODBC Driver Remote Code Execution...

CVE-2023-35633

Windows Kernel Elevation of Privilege...

CVE-2023-35632

Windows Ancillary Function Driver for WinSock Elevation of Privilege...

CVE-2023-35634

Windows Bluetooth Driver Remote Code Execution...

CVE-2023-35630

Internet Connection Sharing (ICS) Remote Code Execution...

CVE-2023-35631

Win32k Elevation of Privilege...

CVE-2023-35622

Windows DNS Spoofing...

CVE-2023-35629

Microsoft USBHUB 3.0 Device Driver Remote Code Execution...

CVE-2023-35628

Windows MSHTML Platform Remote Code Execution...

CVE-2023-21740

Windows Media Remote Code Execution...

CVE-2023-49580

SAP GUI for Windows and SAP GUI for Java - versions SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757, SAP_BASIS 758, allow an unauthenticated attacker to access information which would otherwise be restricted and confidential. In addition, this vulnerability allows the unauthenticated attacker to...

CVE-2023-40687

IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted RUNSTATS command on an 8TB table. IBM X-Force ID: ...

CVE-2023-38727

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted SQL statement. IBM X-Force ID: ...

CVE-2023-29258

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1, and 11.5 is vulnerable to a denial of service through a specially crafted federated query on specific federation objects. IBM X-Force ID: ...

CVE-2023-46167

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 federated server is vulnerable to a denial of service when a specially crafted cursor is used. IBM X-Force ID: ...

CVE-2023-47701

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: ...