CVE-2026-20857

Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

CVE-2026-20857

CVE-2026-20857 affects the Windows Cloud Files Mini Filter Driver. The vulnerability is an untrusted pointer dereference that enables an authorized attacker to elevate privileges locally. Multiple Nessus/NVD/NCSC entries map this CVE to the January 2026 Microsoft security update KB5074109 (Window...

KB5073724: Windows 10 version 21H2 / Windows 10 Version 22H2 Security Update (January 2026)

The remote Windows host is missing security update 5073724. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. CVE-2026-20857 - An issue was discovered in...

KB5073455: Windows 11 version 23H2 Security Update (January 2026)

The remote Windows host is missing security update 5073455. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. CVE-2026-20857 - An issue was discovered in...

CVE-2019-20857

An issue was discovered in Mattermost Server before 5.16.0. It allows attackers to cause a denial of service markdown renderer hang via many backtick characters...

CVE-2024-20857

Improper access control vulnerability in startListening of CocktailBarService prior to SMR May-2024 Release 1 allows local attackers to access information of current application...

CVE-2021-20857

Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

CVE-2023-20857

creationtimestamp| type| source ---|---|--- 2025-03-10 19:39:04+00:00| seen| Telegram/R3OwlmrgbodY-RVJFGYWiH4kGXKkcs1ac5ZfngKvSE1EE34...

CVE-2024-20857

creationtimestamp| type| source ---|---|--- 2025-02-14 10:00:30+00:00| seen| Telegram/Aqd-qCSdUyc5m26WalQNw5BXmkXfJJYhOegpcLvpshbJTM...

CVE-2024-20857

Improper access control vulnerability in startListening of CocktailBarService prior to SMR May-2024 Release 1 allows local attackers to access information of current application...

CVE-2023-20857

VMware Workspace ONE Content contains a passcode bypass vulnerability. A malicious actor, with access to a users rooted device, may be able to bypass the VMware Workspace ONE Content passcode...

CVE-2023-20857

CVE-2023-20857 relates to a passcode bypass vulnerability in VMware Workspace ONE Content. Connected sources confirm the issue affects the Workspace ONE Content component and could allow bypassing the device passcode when the attacker has access to a rooted device. The primary public advisories d...

The Bug Report – July 2022 Edition

The Bug Report – July 2022 Edition By Trellix · August 3, 2022 This story was also written by Kasimir Schulz and Jesse Chick Your Cybersecurity Comic Relief Why am I here? Welcome to the Bug Report, Heat Wave Edition! In the face of chronic irritability and soggy-pants syndrome, we are back at it...

CVE-2022-20857

creationtimestamp| type| source ---|---|--- 2022-07-21 19:30:04+00:00| seen| https://t.me/truesecator/3205 2022-09-30 14:54:14+00:00| seen| https://t.me/thehackernews/2394...

CVE-2022-20857

Cisco Nexus Dashboard for data centers is affected by multiple unauthenticated remote-code-execution, container-image read/write, and CSRF vulnerabilities (CVE-2022-20857). The Cisco advisory states these issues affect Nexus Dashboard 1.1 and later and are addressed by fixes in version 2.2(1e). T...

CVE-2021-20857

creationtimestamp| type| source ---|---|--- 2021-12-01 07:35:14+00:00| seen| https://t.me/cibsecurity/33166...

CVE-2021-20857

CVE-2021-20857 affects ELECOM WRC-2533GHBK-I, firmware 1.20 and earlier. Described as a Cross-site scripting (CWE-79) vulnerability in the router’s web UI that enables a remote authenticated attacker to inject arbitrary scripts via unspecified vectors. Impact reported: arbitrary script execution ...

JVN#88993473: Multiple vulnerabilities in multiple ELECOM LAN routers

Multiple ELECOM LAN routers provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below. Buffer overflow CWE-121 - CVE-2021-20852 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H| Base Score: 6.8 CVSS v2| AV:A/AC:L/Au:S/C:P/I:P/A:P| Base Score...

CVE-2019-20857

CVE-2019-20857 affects Mattermost Server prior to 5.16.0. The issue allows a denial of service by triggering a markdown renderer hang when processing many backtick characters. Multiple connected sources (Red Hat CVE entry, NVD entry, CNVD/EUVD mirrors, OSV, etc.) confirm the same description. No ...

CVE-2018-20857

creationtimestamp| type| source ---|---|--- 2019-07-26 16:31:28+00:00| seen| https://t.me/cibsecurity/5736...