EUVD-2020-12006

Malware in sbrugna...

CVE-2024-45383

A mishandling of IRP requests vulnerability exists in the HDAudBusDMA interface of Microsoft High Definition Audio Bus Driver 10.0.19041.3636 WinBuild.160101.0800. A specially crafted application can issue multiple IRP Complete requests which leads to a local denial-of-service. An attacker can...

CVE-2024-45383

A mishandling of IRP requests vulnerability exists in the HDAudBusDMA interface of Microsoft High Definition Audio Bus Driver 10.0.19041.3636 WinBuild.160101.0800. A specially crafted application can issue multiple IRP Complete requests which leads to a local denial-of-service. An attacker can...

CVE-2024-4786

An improper validation vulnerability was reported in the Lenovo Tab K10 that could allow a specially crafted application to keep the device on...

CVE-2024-4786

Based on the connected sources, CVE-2024-4786 concerns Lenovo Tab K10 and is described as an improper validation vulnerability that could allow a specially crafted application to keep the device on. The NVD/Red Hat entries reiterate this description without detailing affected software versions, e...

CVE-2024-4786

An improper validation vulnerability was reported in the Lenovo Tab K10 that could allow a specially crafted application to keep the device on...

The vulnerability of the Win32k component in Windows operating systems, which allows attackers to increase their privileges

The vulnerability of the Win32k.sys component in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges by using a specially created application...

Microsoft Windows NTFS Privilege Escalation Vulnerability

Microsoft Windows New Technology File System NTFS contains an unspecified vulnerability that allows attackers to escalate privileges via a specially crafted application...

Design/Logic Flaw

Huawei LTE USB Dongle products have an improper permission assignment vulnerability. An attacker can locally access and log in to a PC to induce a user to install a specially crafted application. After successfully exploiting this vulnerability, the attacker can perform unauthenticated operations...

The vulnerability of the Windows operating system’s kernel allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Windows operating system kernels is related to incorrect handling of objects in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created application...

Information disclosure

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory. To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information t...

Information disclosure

An information disclosure vulnerability exists in Remote Desktop Protocol RDP when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. ...

Microsoft Windows and Windows Server Information Disclosure Vulnerability (CNVD-2021-71945)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server is a server operating system. Microsoft Windows and Windows Server are vulnerable to an information disclosure vulnerability that stems...

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

Windows Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface UEFI location. To exploit this vulnerability, an attacker could run a specially craft...

Privilege escalation

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted...

Privilege escalation

An elevation of privilege vulnerability exists when the OneDrive for Windows Desktop application improperly handles symbolic links. An attacker who successfully exploited this vulnerability could overwrite a targeted file with an elevated status. To exploit this vulnerability, an attacker would...

Microsoft Windows/Windows Server Information Disclosure Vulnerability (CNVD-2021-63313)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server, a server operating system. Microsoft Windows/Windows Server is vulnerable to an information leakage vulnerability that originates from...

Microsoft Windows/Windows Server Elevation of Privilege Vulnerability (CNVD-2021-90797)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server, a server operating system. An elevation-of-privilege vulnerability exists in Microsoft Windows/Windows Server, which stems from a...