Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

31 matches found

Positive Technologies
Positive Technologiesadded 2021/09/22 12:0 a.m.1 views

PT-2021-5995 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a buffer overflow in the DirectComposition component of the Win32k Win32k.sys in Windows operating systems. This allows an attacker to obtain sensitive information...

5.5CVSS9.4AI score0.00697EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2021/06/08 12:0 a.m.104 views

CVE-2021-33739

Microsoft DWM Core Library Elevation of Privilege Vulnerability Recent assessments: gwillcox-r7 at June 17, 2021 5:19pm UTC reported: Public PoC code has been supposively making the rounds courtesy of https://github.com/mavillon1/CVE-2021-33739-POC. There is also a detailed writeup on this issue ...

8.4CVSS8.1AI score0.16919EPSS
In wildExploits2References2
CNVD
CNVDadded 2021/04/01 12:0 a.m.3 views

Binary Vulnerability in Microsoft DirectComposition

DirectComposition is a graphical interface rendering framework introduced by Microsoft in the kernel since Windows 8, mainly used for rendering windows, interfaces and animations of UWP applications. A binary vulnerability exists in Microsoft DirectComposition, which can be exploited by attackers...

6.8AI score
Exploits0
Zero Day Initiative
Zero Day Initiativeadded 2021/03/17 12:0 a.m.40 views

Microsoft Windows CInteractionTrackerMarshaler Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within DirectComposition...

8.8CVSS5.1AI score0.06603EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/11/11 12:0 a.m.35 views

Microsoft Windows DirectComposition Uninitialized Pointer Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementation...

8.8CVSS6.4AI score0.10648EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiativeadded 2020/07/16 12:0 a.m.34 views

(Pwn2Own) Microsoft Windows DirectComposition RemoveBindingManagerReferenceFromTrackerIfNecessary Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of th...

7.8CVSS4.6AI score0.00383EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/07/16 12:0 a.m.109 views

(Pwn2Own) Microsoft Windows DirectComposition SetBufferProperty Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of th...

7.8CVSS4.4AI score0.00712EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/05/12 12:0 a.m.55 views

(Pwn2Own) Microsoft Windows DirectComposition SetReferenceArrayProperty Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of th...

8.8CVSS4.2AI score0.00397EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/06/14 12:0 a.m.26 views

Microsoft Windows DirectComposition PropertySet Race Condition Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.8CVSS4.2AI score0.00847EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/06/11 12:0 a.m.28 views

(Pwn2Own) Microsoft Windows DirectComposition PropertySet Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.8CVSS4.6AI score0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2019/06/11 12:0 a.m.1 views

PT-2019-2614 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation of privilege vulnerability that exists when the Windows kernel fails to properly handle objects in memory. This can allow an attacker to execute arbitra...

7.8CVSS8.2AI score0.00847EPSS
Exploits0References7
Rows per page
Query Builder