Microsoft Windows 安全漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There are security vulnerabilities in Microsoft Windows. The following products and versions are affected: Windows 10 Version 1809 for 32-bit Systems, Windows 10 Version 1809 for x64-based Systems...

Exploit for Stack-based Buffer Overflow in Microsoft

CVE-2026-41089 Detector Safe detection script for CVE-2026-...

May 12, 2026-Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 R2 (KB5087063)

May 12, 2026-Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 R2 KB5087063 Applies to: Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Important The installation of this Extend...

2026-04 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 for x64 (KB5084070)

2026-04 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 for x64 KB5084070...

April 14, 2026-Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 R2 (KB5082404)

April 14, 2026-Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 R2 KB5082404 Applies to: Microsoft .NET Framework 4.8 Important The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running...

KB5070886: Windows Server 2012R2 WSUS RCE (CVE-2025-59287)

The remote Windows host is missing security update 5070879, which addresses a remote code execution vulnerability in Windows Server Update Services WSUS. This plugin identifies vulnerable systems by performing the following checks: 1. Validates the host is an affected Windows Server instance. 2...

KB5065507: Windows Server 2012 R2 Security Update (September 2025)

The remote Windows host is missing security update 5065507. It is, therefore, affected by multiple vulnerabilities - SMB Server might be susceptible to relay attacks depending on the configuration. An attacker who successfully exploited these vulnerabilities could perform relay attacks and make t...

September 9, 2025-Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 (KB5065960)

September 9, 2025-Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 KB5065960 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7...

Microsoft Windows Remote Desktop Gateway（RD Gateway） 资源管理错误漏洞

Microsoft Windows Remote Desktop Gateway RD Gateway is a role service from Microsoft Corporation USA that allows authorized users to securely access internal network resources over the Internet. A resource management error vulnerability exists in Microsoft Windows Remote Desktop Gateway RD Gatewa...

Server 2012R2 with VDA 1912 CU9 "Citrix Group Policy Engine" crashes every 30 minutes

Server 2012R2 with VDA 1912 CU9 "Citrix Group Policy Engine" crashes every 30 minutes This only occurred after upgrading 2012R2 VDAs from 1912 CU8 to 1912 CU9. The issue occurs randomly without a known trigger, with the Event ID: 7034 being logged within the System event logs stating - "The Citri...

Microsoft Windows Cryptographic Services Security Vulnerability

Microsoft Windows Cryptographic Services is a cryptographic service provider program from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows Cryptographic Services. An attacker exploiting this vulnerability could bypass certain features. The following products and...

Microsoft Windows Security Vulnerabilities

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft USA. A security vulnerability exists in Microsoft Windows. Attackers have exploited this vulnerability to cause a denial of service on the system. The following products and versions are affected:Windows ...

May 14, 2024-Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 (KB5038290)

May 14, 2024-Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 KB5038290 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2...

ThievingFox - Remotely Retrieving Credentials From Password Managers And Windows Utilities

ThievingFox is a collection of post-exploitation tools to gather credentials from various password managers and windows utilities. Each module leverages a specific method of injecting into the target process, and then hooks internals functions to gather crendentials. The accompanying blog post ca...

Microsoft .NET Framework Security Vulnerabilities

Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a development platform. The platform includes the C and Visual Basic programming languages, a public language runtime library, and an extensive class library. A security vulnerability...

Microsoft Windows HTML Platform Security Vulnerability

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows HTML Platform. An attacker could exploit this vulnerability to remotely execute code. The following products and...

Microsoft Windows Cluster Shared Volume 信息泄露漏洞

Microsoft Windows Cluster Shared Volume is a general-purpose cluster file system from Microsoft Corporation USA. An information disclosure vulnerability exists in Microsoft Windows Cluster Shared Volume CSV. The following products and versions are affected:Windows Server 2022,Windows Server 2022...

Microsoft Windows Active Directory 竞争条件问题漏洞

Microsoft Windows Active Directory is a centralized directory management service responsible for architecting medium- to large-scale network environments from the U.S. company Microsoft. Stores information about objects on the network and makes it easy for administrators and users to find and use...

Microsoft Hyper-V 竞争条件问题漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. A vulnerability exists in Microsoft Hyper-V due to a competitive condition issue. The following products and versions are affected: Windows Server...

Exploit for Path Traversal in Microsoft

〖EXP〗Ladon CVE-2021-40444 Office Vulnerability Reimplementatio...