Lucene search
K

112 matches found

CNNVD
CNNVD
added 2022/04/12 12:0 a.m.5 views

Microsoft Windows Local Security Authority Subsystem Service 权限许可和访问控制问题漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...

7.8CVSS7.6AI score0.00609EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.5 views

Microsoft Windows Local Security Authority Subsystem Service 输入验证错误漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...

8.8CVSS8.2AI score0.02093EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/01/11 9:15 p.m.7 views

CVE-2022-21884

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

7.8CVSS7.2AI score0.00669EPSS
Exploits0References3Affected Software15
OSV
OSV
added 2022/01/11 9:15 p.m.2 views

CVE-2022-21884

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00669EPSS
Exploits0References2
CVE
CVE
added 2022/01/11 8:22 p.m.129 views

CVE-2022-21884

Technical details for CVE-2022-21884 are not publicly provided in the connected documents; monitor official disclosures or advisories for affected products, impact, and remediation.

7.8CVSS8.4AI score0.00669EPSS
Exploits0References2Affected Software5
CNNVD
CNNVD
added 2022/01/11 12:0 a.m.7 views

Microsoft Windows Local Security Authority Subsystem Service 缓冲区错误漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...

7.8CVSS7.8AI score0.00669EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/01/11 12:0 a.m.3 views

PT-2022-15177 · Microsoft · Local Security Authority Subsystem Service +1

Name of the Vulnerable Software and Affected Versions: Windows Local Security Authority Subsystem Service affected versions not specified Description: An elevation-of-privilege issue allows attackers to affect the system. Recommendations: At the moment, there is no information about a newer versi...

7.8CVSS9.3AI score0.00669EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2021/12/14 12:0 a.m.2 views

PT-2021-6253 · Microsoft · Windows +2

Name of the Vulnerable Software and Affected Versions: Microsoft Local Security Authority LSA Server affected versions not specified Description: The issue is related to an information disclosure vulnerability in the Microsoft Local Security Authority Subsystem Service LSASS of the Microsoft...

6.8CVSS6.5AI score0.03246EPSS
Exploits0References8
CVE
CVE
added 2020/08/17 7:13 p.m.159 views

CVE-2020-1509

CVE-2020-1509 is an elevation-of-privilege vulnerability in the Local Security Authority Subsystem Service (LSASS) on Windows. An authenticated attacker could exploit a specially crafted authentication request to elevate privileges on the target system. The issue is addressed by a security update...

8.8CVSS7.7AI score0.03264EPSS
Exploits0References1Affected Software8
Tenable Nessus
Tenable Nessus
added 2020/08/11 12:0 a.m.181 views

KB4571723: Windows 8.1 and Windows Server 2012 R2 August 2020 Security Update

The remote Windows host is missing security update 4571723 or cumulative update 4571703. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Windows Media Audio Codec improperly handles objects. An attacker who successfully exploited the...

10CVSS8.6AI score0.99512EPSS
Exploits86References51
NVD
NVD
added 2020/07/14 11:15 p.m.23 views

CVE-2020-1267

This security update corrects a denial of service in the Local Security Authority Subsystem Service LSASS caused when an authenticated attacker sends a specially crafted authentication request, aka 'Local Security Authority Subsystem Service Denial of Service Vulnerability'...

4.9CVSS0.04532EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2019/11/06 2:22 a.m.49 views

MS10-068: Vulnerability in Local Security Authority Subsystem Service could allow elevation of privilege

Resolves a vulnerability in Active Directory directory service, Active Directory Application Mode ADAM, and Active Directory Lightweight Directory Service AD LDS that could allow elevation of privilege if an authenticated attacker sent a specially crafted LDAP messages to a listening LSASS...

9CVSS0.1AI score0.14361EPSS
Exploits0
NVD
NVD
added 2019/06/12 2:29 p.m.16 views

CVE-2019-0972

This security update corrects a denial of service in the Local Security Authority Subsystem Service LSASS caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the...

6.8CVSS6.8AI score0.05786EPSS
Exploits0References2
CNVD
CNVD
added 2019/06/12 12:0 a.m.1 views

Microsoft Windows Denial of Service Vulnerability (CNVD-2019-18614)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A denial of service vulnerability exists in Microsoft Local Security Authority Subsystem...

6.8CVSS6.8AI score0.05786EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2019/06/11 12:0 a.m.52 views

KLA11874 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products ESU. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of...

9.3CVSS9.7AI score0.48488EPSS
Exploits15References69
Microsoft Secure
Microsoft Secure
added 2019/05/09 5:29 p.m.104 views

Detecting credential theft through memory access modelling with Microsoft Defender ATP

Stealing user credentials is a key step for attackers to move laterally across victim networks. In today’s attacks, we see a range of tools used to achieve credential theft, requiring protections that target the root behavior and not just individual known tools as is often done by traditional...

0.2AI score
Exploits0
Microsoft KB
Microsoft KB
added 2018/04/17 12:0 a.m.44 views

MS09-059: Vulnerability in the Local Security Authority Subsystem Service could allow denial of service

MS09-059: Vulnerability in the Local Security Authority Subsystem Service could allow denial of service Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 SP2. For more...

6.2AI score
Exploits0
Microsoft KB
Microsoft KB
added 2017/03/14 7:0 a.m.191 views

March 14, 2017—KB4013429 (OS Build 14393.953)

March 14, 2017—KB4013429 OS Build 14393.953 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed known issue called out in KB3213986. Users may experience delays while running 3D...

9.3CVSS7.6AI score0.99693EPSS
Exploits130
CNVD
CNVD
added 2017/01/11 12:0 a.m.6 views

Microsoft Windows LSASS Denial of Service Vulnerability

Microsoft Windows is a series of operating systems released by Microsoft Corporation in the U.S. Local Security Authority Subsystem Service LSASS is one of the local security authentication subsystem services. A denial of service vulnerability exists in Microsoft Windows LSASS. An attacker can...

7.8CVSS6.5AI score0.89569EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2017/01/10 8:0 a.m.41 views

January 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1

January 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1 Summary This security update resolves the following vulnerabilities in Windows: MS17-004 Security Update for Local Security Authority Subsystem Service 3216771 This security update also includes...

7.8CVSS7.5AI score0.89569EPSS
Exploits0
Rows per page
Query Builder