webkitgtk: Memory corruption triggered by a malicious web content

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to...

The vulnerability of the Microsoft Store Runtime component in Microsoft Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the Microsoft Store Runtime operating system components in Microsoft Windows is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

The vulnerability of the WinINet API component of the Windows operating system allows a hacker to escalate their privileges and execute arbitrary code.

The vulnerability of the WinINet API component of the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability allows a remote attacker to enhance their privileges and execute arbitrary code...

The vulnerability of the DirectX component of the Windows operating system, which allows attackers to exploit their privileges

The vulnerability of the DirectX component of the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

The vulnerability of the Win32k component of the Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the Win32k component of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information through a specially created application...

The vulnerability of the DirectX component in Windows operating systems, which allows attackers to exploit their privileges

The vulnerability of the DirectX component in Windows operating systems is related to incorrect handling of objects in memory. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

The vulnerability of the Windows operating system’s DNS server, related to errors in handling DNS requests, allows a hacker to cause a service failure.

The vulnerability of the Windows operating system’s DNS server is related to errors in handling DNS requests. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially crafted DNS request...

The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a perpetrator to trigger a service failure.

The hardware virtualization system Hyper-V for Windows operating systems has vulnerabilities due to insufficient validation of input data. Exploiting these vulnerabilities can allow attackers to cause service failures...

The vulnerability of the splwow64.exe process in the Windows operating system, which allows a hacker to escalate their privileges

The vulnerability of the splwow64.exe process in Windows operating systems is related to call processing errors. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows a perpetrator to trigger a service failure.

The hardware virtualization system Hyper-V for Windows operating systems has vulnerabilities due to insufficient validation of input data. Exploiting these vulnerabilities can allow attackers to cause service failures...

CVE-2020-0648

An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges...

The vulnerability of the UPnP Device Host service for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the UPnP Device Host service for Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

Microsoft Windows Modules Installer Elevation of Privilege Vulnerability (CNVD-2020-54911)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows Modules Installer, whi...

The vulnerability of the Radio Management API interface for the Windows operating system allows a malicious individual to escalate their privileges.

The vulnerability in the set of interfaces of the Windows operating system’s Radio Management API is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the UPnP Device Host service for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the UPnP Device Host service for Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

The vulnerability of the dnsrslvr.dll library in the Windows operating system allows a hacker to increase their privileges.

The vulnerability of the dnsrslvr.dll library in the Windows operating system is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

The vulnerability of the Microsoft JET Database Engine driver for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft JET Database Engine driver for Windows operating systems exists due to object handling errors in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Vulnerability of the Microsoft Graphics component in the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Microsoft Graphics component in the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted file...

Vulnerability in the implementation of ARM operating systems for Windows, allowing a intruder to gain unauthorized access to protected information

The vulnerability in ARM-based Windows operating system implementations is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain unauthorized access to protected information...

Binary Vulnerability in VMware Workstation Pro for Windows

VMware Workstation Pro for Windows is a Windows-based virtual machine software product from VMware. A binary vulnerability exists in VMware Workstation Pro for Windows, which can be exploited by attackers to cause a system crash...