Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12313

Malware in sbrugna...

7.8CVSS8.1AI score0.00708EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:55 p.m.7 views

CVE-2020-1437

An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory, aka 'Windows Network Location Awareness Service Elevation of Privilege Vulnerability'...

7.8CVSS6.9AI score0.00708EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.7 views

The vulnerability of the Windows Network Location Awareness Service allows attackers to escalate their privileges and execute arbitrary code.

The vulnerability of the Windows Network Location Awareness Service in Windows operating systems is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code through a specially created application...

7CVSS7.6AI score0.00708EPSS
Exploits0References2
CNVD
CNVD
added 2020/07/17 12:0 a.m.3 views

Microsoft Windows Network Location Awareness Service Elevation of Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the Microsoft Windows Network Location...

7.8CVSS7.5AI score0.00708EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/07/15 12:0 a.m.61 views

Microsoft Windows Multiple Vulnerabilities (KB4565524)

This host is missing a critical security update according to Microsoft KB4565524 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.92178EPSS
Exploits21References3
OSV
OSV
added 2020/07/14 11:15 p.m.3 views

CVE-2020-1437

An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory, aka 'Windows Network Location Awareness Service Elevation of Privilege Vulnerability'...

7.8CVSS7.2AI score0.00708EPSS
Exploits0References1
CVE
CVE
added 2020/07/14 10:54 p.m.97 views

CVE-2020-1437

CVE-2020-1437 is described in CNVD as an elevation-of-privilege vulnerability in the Windows Network Location Awareness Service. The flaw stems from how the service handles objects in memory, enabling an attacker to execute code with elevated privileges by running a specially crafted application....

7.8CVSS8.5AI score0.00708EPSS
Exploits0References1Affected Software8
Cvelist
Cvelist
added 2020/07/14 10:54 p.m.19 views

CVE-2020-1437

An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory, aka 'Windows Network Location Awareness Service Elevation of Privilege Vulnerability'...

8.2AI score0.00708EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2020/07/14 7:0 a.m.28 views

Windows Network Location Awareness Service Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium...

7.8CVSS4.3AI score0.00708EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/07/14 12:0 a.m.286 views

KB4565539: Windows 7 and Windows Server 2008 R2 July 2020 Security Update

The remote Windows host is missing security update 4565539 or cumulative update 4565524. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this...

9.3CVSS7.8AI score0.94243EPSS
Exploits10References40
Microsoft KB
Microsoft KB
added 2017/01/07 12:0 a.m.26 views

MS15-005: Vulnerability in Network Location Awareness service could allow security feature bypass: January 13, 2015

MS15-005: Vulnerability in Network Location Awareness service could allow security feature bypass: January 13, 2015 Summary This security update resolves a vulnerability in Microsoft Windows that could allow security feature bypass by unintentionally relaxing the firewall policy or configuration ...

6.3AI score
Exploits0
securityvulns
securityvulns
added 2015/01/19 12:0 a.m.60 views

Microsoft Windows multiple security vulnerabilities

Application Compatibility Cache privilege escalation, telnet service buffer overflow, User Profile Service privilege escalation, TS WebProxy directory traversal, Network Location Awareness Service restrictions bypass, Windows Error Reporting restrictions bypass, WebDAV driver privilege escalation...

10CVSS3.2AI score0.96893EPSS
Exploits11Affected Software1
CNVD
CNVD
added 2015/01/15 12:0 a.m.6 views

Microsoft Windows Server DNS and LDAP Response Spoofing Vulnerability

Microsoft Windows is a family of operating systems from Microsoft. A security bypass vulnerability exists in the Microsoft Network Location Awareness NLA service, which can lead to overly lax configuration of firewall rules or some of the services, increasing the opportunity for attackers. The...

6.1CVSS6.8AI score0.11613EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/01/14 12:0 a.m.42 views

Microsoft Windows Network Location Awareness Service Security Bypass Vulnerability (3022777)

This host is missing an important security update according to Microsoft Bulletin MS15-005. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

6.1CVSS5AI score0.11613EPSS
Exploits0References3
CVE
CVE
added 2015/01/13 10:0 p.m.83 views

CVE-2015-0006

The CVE-2015-0006 issue is a vulnerability in Microsoft Windows’ Network Location Awareness (NLA) service. The root cause is that NLA does not perform mutual authentication to verify domain connections, enabling a remote attacker to spoof DNS/LDAP responses on a local network and trigger an unint...

6.1CVSS6.6AI score0.11613EPSS
Exploits0References6Affected Software8
Tenable Nessus
Tenable Nessus
added 2015/01/13 12:0 a.m.71 views

MS15-005: Vulnerability in Network Location Awareness Service Could Allow Security Feature Bypass (3022777)

The Network Location Awareness NLA service on the remote host is affected by a security bypass vulnerability due to a failure to validate whether it is connected to a trusted domain or an untrusted network. This could cause the system to unintentionally configure applications insecurely e.g. the...

6.1CVSS5.7AI score0.11613EPSS
Exploits0References2
Rows per page
Query Builder