PT-2024-2118 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Update Stack, which is associated with insufficient access control. This vulnerability can be exploited to all...

Microsoft Windows Update Stack Security Vulnerability

Microsoft Windows Update Stack is part of Microsoft Corporation's USA for managing updates. A security vulnerability exists in Microsoft Windows Update Stack. An attacker could exploit this vulnerability to gain elevated privileges. The following products and editions are affected:Windows 10...

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS Manipulation of data Circumvention of security measure Remote code execution User rights...

UBUNTU-CVE-2023-52452

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix accesses to uninit stack slots Privileged programs are supposed to be able to read uninitialized stack memory ever since 6715df8d5 but, before this patch, these accesses were permitted inconsistently. In particular,...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

PT-2023-33862 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue concerns a slot type check in the check stack write var off function. It was introduced in version v5.12 and fixed in version v6.0.16. The actual impact and attack plausibility hav...

PT-2023-34254 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.86 Description: The issue concerns a slot type check in the check stack write var off function. It was introduced in version v5.12 and fixed in version v5.15.86. The actual impact and attack plausibility...

The vulnerability of the Windows Update Stack component of the Microsoft Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows Update Stack component in the Microsoft Windows operating system is related to the use of a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to increase their privileges...

Microsoft Windows Multiple Vulnerabilities (KB5011485)

This host is missing an important security update according to Microsoft KB5011485 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

PT-2022-1973 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to the use of a shared resource with incorrect synchronization in the Windows Update Stack component of the Microsoft Windows operating system. This can allow...

SUSE: Security Advisory (SUSE-SU-2020:3742-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2264-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the Windows Update Stack component on Windows operating systems allows a perpetrator to escalate their privileges or execute arbitrary code.

The vulnerability of the Windows Update Stack component in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges or execute arbitrary code...

The vulnerability of the Windows operating system, related to insecure management of privileges, allows a perpetrator to elevate their privileges.

The vulnerability of the Update Stack Setup component in the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...

Microsoft Windows 后置链接漏洞

Microsoft Windows is a desktop operating system from Microsoft Corporation USA. A backlink vulnerability exists in Windows Update Stack. The following products and editions are affected:Windows 10 Version 1803 for 32-bit Systems,Windows 10 Version 1803 for x64-based Systems,Windows 10 Version 180...

The vulnerability of the Windows Update Stack component allows attackers to enhance their privileges.

The vulnerability of the Windows Update Stack component in Windows operating systems is related to privilege management errors. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

PT-2021-1677 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in privilege management within the Windows Update Stack component of Windows operating systems. This can allow a remote attacker to elevate their privileges...

Microsoft Windows Update Stack Security Vulnerability

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A security vulnerability exists in the Windows Update Stack. The following products and editions are affected:Windows Server, version 20H2 Server Core Installation,Windows 10 Version 20H2...

KLA12041 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, spoof user interface, bypass security restrictions, cause denial of service. Below is a...