CVE-2024-20692

Technical details such as affected product versions, root cause, exploiting conditions, or remediation are not publicly available in the provided documents. Monitor for updates from authoritative sources to obtain concrete information about CVE-2024-20692.

CVE-2024-20681 Windows Subsystem for Linux Elevation of Privilege Vulnerability

...

CVE-2024-20681 Windows Subsystem for Linux Elevation of Privilege Vulnerability

...

CVE-2024-20681

CVE-2024-20681 affects Windows Subsystem for Linux and enables local elevation of privilege. CVSS v3.1 base score 7.8 (HIGH); attack vector LOCAL, privileges required LOW, user interaction NONE; impacts on confidentiality, integrity, and availability are HIGH. Connected documents reference Window...

Windows Subsystem for Linux Elevation of Privilege Vulnerability

...

Microsoft Windows Local Security Authority Subsystem Service Security Vulnerability

The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...

PT-2024-1018 · Microsoft · Windows Subsystem For Linux +1

Name of the Vulnerable Software and Affected Versions: Windows Subsystem for Linux affected versions not specified Description: The issue is related to insufficient access restrictions in the Windows Subsystem for Linux, allowing an attacker to elevate their privileges. This can affect the system...

Microsoft Subsystem for Linux Security Vulnerability

Microsoft Windows Subsystem for Linux WSL is a Windows subsystem for Linux from Microsoft, a compatibility layer capable of running native Linux binary executables ELF format. A security vulnerability exists in Microsoft Subsystem for Linux. An attacker could exploit the vulnerability to gain...

PT-2024-1126 · Microsoft · Lsass +1

Name of the Vulnerable Software and Affected Versions: Microsoft Local Security Authority Subsystem Service affected versions not specified Description: The issue is related to a lack of protection for service data in the Local Security Authority Subsystem Service LSASS of the Windows operating...

Ubuntu 20.04 LTS : Linux kernel (GKE) vulnerabilities (USN-6548-4)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6548-4 advisory. It was discovered that Spectre-BHB mitigations were missing for Ampere processors. A local attacker could potentially use this to expose sensitive...

CentOS 7 : kernel-rt (RHSA-2023:1092)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1092 advisory. - mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anonvma double reuse. CVE-2022-42703 - A stack overflow flaw was fou...

Linux kernel memory misreference vulnerability (CNVD-2024-30380)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux Kernel suffers from a memory misreference vulnerability that originates from a confusion in the instructions responsible for freeing memory in the netfilter subsystem...

USN-6549-4: Linux kernel (Intel IoTG) vulnerabilities

It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2023-37453 Lin Ma...

USN-6549-4 linux-intel-iotg vulnerabilities

It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service system crash. CVE-2023-37453 Lin Ma...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1037)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-6549-4)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6549-4 advisory. It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading ...

CVE-2023-51779

A flaw was found in the Bluetooth subsystem of the Linux kernel. A race condition between the btsockrecvmsg and btsockioctl functions could lead to a use-after-free on a socket buffer "skb". This flaw allows a local user to cause a denial of service condition or potential code execution...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of a race condition in the Appletalk subsystem that results in a post-release reuse vulnerabili...

CVE-2024-0193

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFTCHAIN object or NFTOBJECT object, allowing a local...

CVE-2024-0193

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFTCHAIN object or NFTOBJECT object, allowing a local...