Windows Secure Channel Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Secure Channel allows an authorized attacker to elevate privileges locally...

PT-2025-15550 · Microsoft · Windows Secure Channel +1

Name of the Vulnerable Software and Affected Versions: Windows Secure Channel affected versions not specified Description: The issue is related to concurrent execution using a shared resource with improper synchronization, also known as a 'race condition', in Windows Secure Channel. This allows a...

Microsoft Windows Secure Channel 资源管理错误漏洞

Microsoft Windows Secure Channel is a Security Support Provider SSP from Microsoft Corporation that contains a set of security protocols that provide authentication and secure, private communications through encryption. A resource management error vulnerability exists in Microsoft Windows Secure...

Microsoft Windows Secure Channel 资源管理错误漏洞

Microsoft Windows Secure Channel is a security support provider SSP from Microsoft Corporation that contains a set of security protocols that provide authentication and secure, private communications through encryption. A resource management error vulnerability exists in Microsoft Windows Secure...

DEBIAN-CVE-2024-57985

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

[SECURITY] Fedora 41 Update: openssh-9.9p1-3.fc41

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

CLSA-2024-1735065713 Fix CVE(s): CVE-2023-28708

SECURITY UPDATE: Missing secure attribute in session cookies when using RemoteIpFilter with X-Forwarded-Proto header set to https - debian/patches/CVE-2023-28708.patch: Fix JSessionId secure attribute missing when RemoteIpFilter determines request submitted via secure channel - CVE-2023-28708...

The vulnerability of the Secure Channel component in Windows operating systems, which allows a hacker to perform a spoofing attack

The vulnerability of the Secure Channel component in Windows operating systems is related to errors in the certificate authentication process. Exploiting this vulnerability can allow a malicious actor to perform a spoofing attack remotely...

firmware: qcom: scm: Mark get_wq_ctx() as atomic call

...

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to carry out attacks that can lead to the categories of damage listed below. The most serious vulnerability has been assigned attribute CVE-2024-38124 and is located in the NETLOGON functionality...

CVE-2024-43550

Windows Secure Channel Spoofing Vulnerability...

CVE-2024-43550

Windows Secure Channel Spoofing Vulnerability...

CVE-2024-43550 Windows Secure Channel Spoofing Vulnerability

...

CVE-2024-43550 Windows Secure Channel Spoofing Vulnerability

...

CVE-2024-43550

CVE-2024-43550 is described in connected sources as a Windows Secure Channel vulnerability with an impact described as impersonation of another user. The NCSC advisory groups it with other Windows CVEs and notes that Microsoft has released security updates to fix affected components (e.g., Octobe...

Windows Secure Channel Spoofing Vulnerability

...

PT-2024-6919 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to a spoofing vulnerability in the Windows Secure Channel component, which is associated with errors in the certificate authentication procedure. This vulnerability can...

Microsoft Windows Secure Channel 信任管理问题漏洞

Microsoft Windows Secure Channel is a Microsoft Security Support Provider SSP that contains a set of security protocols that provide authentication and secure, private communications through encryption. A vulnerability exists in Microsoft Windows Secure Channel for trust management issues. An...

The vulnerability of the Secure Channel component in Windows operating systems, which allows a hacker to cause a service failure

The vulnerability of the Secure Channel component in Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

CVE-2024-38148

Windows Secure Channel Denial of Service Vulnerability...