Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.7 views

KB5071503: Windows Server 2012 R2 Security Update (December 2025)

The remote Windows host is missing security update 5071503. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 - Heap-based buffer...

8.8CVSS6.6AI score0.02075EPSS
Exploits5References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-1301

Malware in sbrugna...

4.9CVSS6.2AI score0.01466EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-37761

Malicious code in bioql PyPI...

7.8CVSS6.2AI score0.00866EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 4:58 p.m.46 views

CVE-2025-49733

CVE-2025-49733 is a local privilege escalation in Windows Win32K ICOMP due to a use-after-free condition. The vulnerability can be exploited locally by an authenticated user to obtain elevated privileges. Microsoft’s July 2025 security updates address this issue (driver/OS updates noted in KBs an...

7.8CVSS7AI score0.00273EPSS
Exploits0References1Affected Software10
RedhatCVE
RedhatCVE
added 2025/05/22 5:40 p.m.8 views

CVE-2020-1247

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310...

7.8CVSS6.9AI score0.01155EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:59 p.m.4 views

CVE-2020-0726

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723,...

7.8CVSS6.5AI score0.01055EPSS
Exploits0References1
CISA
CISA
added 2023/06/22 12:0 p.m.5 views

CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-20887 VMware Aria Operations for Networks Command Injection Vulnerability CVE-2020-35730 Roundcube Webmail Cross-Site Scripting XSS Vulnerability CVE-2020-1264...

9.8CVSS8.2AI score0.98281EPSS
In wildExploits24References11
The Hacker News
The Hacker News
added 2023/05/10 5:34 a.m.4 views

Microsoft's May Patch Tuesday Fixes 38 Flaws, Including 2 Exploited Zero-Day Bugs

Microsoft has rolled out Patch Tuesday updates for May 2023 to address 38 security flaws, including two zero-day bugs that it said are being actively exploited in the wild. Trend Micro's Zero Day Initiative ZDI said the volume is the lowest since August 2021, although it pointed out that "this...

8.1CVSS7.6AI score0.84386EPSS
Exploits4
Positive Technologies
Positive Technologies
added 2023/04/11 12:0 a.m.4 views

PT-2023-2467 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access control in the Win32k component of the Windows operating system. This can allow an attacker to elevate their privileges. There is no information...

7.8CVSS9.2AI score0.06827EPSS
Exploits0References7
securityvulns
securityvulns
added 2013/01/10 12:0 a.m.93 views

Microsoft Windows multiple security vulnerabilities

Print spooler service code execution, XML library integer overflow and memory corruption, multiple .Net vulnerabilities, Win32K privilege escalation SSL/TLS library protection bypass, Open Data Protocol DoS...

10CVSS3.9AI score0.32096EPSS
Exploits19Affected Software1
Rows per page
Query Builder