CVE-2026-25184

Concurrent execution using shared resource with improper synchronization 'race condition' in Applocker Filter Driver applockerfltr.sys allows an authorized attacker to elevate privileges locally...

EUVD-2026-22367

Concurrent execution using shared resource with improper synchronization 'race condition' in Applocker Filter Driver applockerfltr.sys allows an authorized attacker to elevate privileges locally...

CVE-2026-25184

Concurrent execution using shared resource with improper synchronization 'race condition' in Applocker Filter Driver applockerfltr.sys allows an authorized attacker to elevate privileges locally...

CVE-2026-25184 Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability

...

CVE-2026-25184

Technical details about CVE-2026-25184 are not publicly provided in the supplied documents. No information on affected products, targeted components, impact, or fixes is available here. Monitor for updates.

CVE-2026-25184 Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability

...

Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Applocker Filter Driver applockerfltr.sys allows an authorized attacker to elevate privileges locally...

Microsoft Applocker Filter Driver 竞争条件问题漏洞

The Microsoft Applocker Filter Driver is a component developed by Microsoft that is used in Windows operating systems to implement application control. The Microsoft Applocker Filter Driver applockerfltr.sys has a race condition vulnerability. Attackers can exploit this vulnerability to gain...

PT-2026-32728

Name of the Vulnerable Software and Affected Versions Applocker Filter Driver applockerfltr.sys affected versions not specified Description A race condition occurs in the Applocker Filter Driver applockerfltr.sys due to concurrent execution using a shared resource with improper synchronization...

EUVD-2011-4363

Malware in sbrugna...

CVE-2011-4434

Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 do not properly enforce AppLocker rules, which allows local users to bypass intended access restrictions via a 1 macro or 2 scripting feature in an application, as demonstrated by Microsoft Office applications and the...

October 8, 2024—KB5044281 (OS Build 20348.2762)

October 8, 2024—KB5044281 OS Build 20348.2762 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when...

October 8, 2024—KB5044288 (OS Build 25398.1189)

October 8, 2024—KB5044288 OS Build 25398.1189 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server, version 23H2, see its update history page. Improvements This security update...

CVE-2024-31226

Sunshine (Moonlight’s self-hosted game stream host) for Windows is affected in versions 0.17.0–0.22.2 when running as a service. An attacker could place a file named C:\Program.exe, C:\Program.bat, or C:\Program.cmd on the target machine and trigger hijacked execution flow during service terminat...

Lazarus Hackers Exploited Windows Kernel Flaw as Zero-Day in Recent Attacks

The notorious Lazarus Group actors exploited a recently patched privilege escalation flaw in the Windows Kernel as a zero-day to obtain kernel-level access and disable security software on compromised hosts. The vulnerability in question is CVE-2024-21338 CVSS score: 7.8, which can permit an...

PT-2024-1704

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the February 2024 Patch Tuesday update Windows 10 version 10.0.17763.5458 and earlier Windows 11 and Windows Server 2022 and Windows Server 2019 affected versions not specified Description The issue is relat...

WEM Security Executable Rules are not working as expected

AppLocker policies configured through Citrix Workspace Environment Management WEM under Security - Executable Rules are not working as expected...

What Old is New Again and What's Old is Me?

Welcome to this weeks edition of the Threat Source newsletter. Whats old is new again and whats old is still old. The fact that we are seeing a comeback of this USB thumb drive nonsense is giving me heartburn, and a headache, and my left eye is twitching … and maybe numbness in my legs? Yes, I am...

Get-AppLockerEventlog - Script For Fetching Applocker Event Log By Parsing The Win-Event Log

This script will parse all the channels of events from the win-event log to extract all the log relatives to AppLocker. The script will gather all the important pieces of information relative to the events for forensic or threat-hunting purposes, or even in order to troubleshoot. Here are the log...

July 12, 2022—KB5015874 (Monthly Rollup)

July 12, 2022—KB5015874 Monthly Rollup Summary Learn more about this cumulative security update, including improvements, any known issues, and how to get the update. REMINDERWindows 8.1 will reach end of support on January 10, 2023 for all editions, at which point technical assistance and softwar...