SUSE CVE-2022-23708

A flaw was discovered in Elasticsearch 7.17.0's upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “” index permissions access to this index...

Microsoft Windows Media Base Memory Corruption Vulnerability

Microsoft Windows is a desktop operating system from Microsoft. A security vulnerability exists in Microsoft Windows Media Base. An attacker could exploit the vulnerability to install programs; view, change, or delete data; or create new accounts with full user rights...

Microsoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Graphics Device Interface is a graphics device interface function of Microsoft. Th...

The vulnerability of the Windows Media Foundation component in Windows operating systems allows attackers to gain privileges to install programs, view, modify, or delete data, as well as create new user accounts with full user rights.

The vulnerability of the Windows Media Foundation component in Windows operating systems arises from operations that occur outside the buffer in memory. Exploiting this vulnerability can allow attackers to gain control over programs, access data, modify or delete data, and create new user account...

PT-2020-3653 · Microsoft · Windows Media Foundation +1

Name of the Vulnerable Software and Affected Versions: Windows Media Foundation affected versions not specified Description: The issue is caused by a memory corruption vulnerability in Windows Media Foundation, allowing an attacker to install programs, view, change, or delete data, or create new...

Microsoft Windows and Windows Server Elevation of Privilege Vulnerability (CNVD-2020-46643)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows and Windows Server,...

PT-2019-2976 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A remote code execution issue exists due to the improper handling of specially crafted embedded fonts by the Windows font library. This could allow an attacker to take control of the affect...

CVE-2019-1041

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create ne...

Microsoft Windows Graphics Memory Corruption Vulnerability (CNVD-2015-08116)

Microsoft Windows is a series of operating systems released by the American company Microsoft. A memory corruption vulnerability exists in the Windows font library of Microsoft Windows. The vulnerability exists because the program does not properly handle specially designed embedded fonts. A remo...

Microsoft Windows Graphics Memory Corruption Vulnerability (CNVD-2015-08115)

Microsoft Windows is a series of operating systems released by the American company Microsoft. A memory corruption vulnerability exists in the Windows font library of Microsoft Windows. The vulnerability exists because the program does not properly handle specially designed embedded fonts. A remo...