The vulnerability of the Microsoft DWM Core Library in the Windows operating system allows attackers to escalate their privileges.

The vulnerability of the Microsoft DWM Core Library in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the Win32k.sys component in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component of the Windows operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Windows RRAS operating system’s routing and remote access service allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to the execution of operations beyond the buffer in the data memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the Win32k.sys component in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component of the Windows operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

The vulnerability of Windows operating system-based Cryptographic Services allows attackers to disclose protected information.

The vulnerability of Windows operating system’s Cryptographic Services is related to the use of a cryptographic primitive with a risky implementation. Exploiting this vulnerability could allow an attacker to disclose the protected information...

The vulnerability of the Windows Routing and Remote Access Service (RRAS) on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows Routing and Remote Access Service RRAS on Windows operating systems occurs when the operation is performed outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability in the implementation of the LDAP service protocol for Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in Windows operating systems is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the HTTP.sys driver on Windows operating systems, which allows a hacker to trigger a service failure

The vulnerability of the HTTP.sys driver on Windows operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the NTFS file system in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the NTFS file system in Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Kerberos authentication network protocol for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Kerberos authentication protocol for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to enhance their privileges remotely...

The vulnerability of the Windows Routing and Remote Access Service (RRAS) on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows Routing and Remote Access Service RRAS on Windows operating systems occurs when the operation is performed outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the upnphost.dll library in the Windows operating system, which allows attackers to escalate their privileges

The vulnerability of the upnphost.dll library in the Windows operating system is related to the use of unsafe mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the Power Dependency Coordinator component in the Windows operating system allows a hacker to disclose protected information.

The vulnerability of the Power Dependency Coordinator component in the Windows operating system is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

The vulnerability of the trusted execution environment of Virtualization-Based Security (VBS) Enclaves in Windows operating systems allows attackers to circumvent existing security restrictions.

The vulnerability of the trusted execution environment for Virtualization-Based Security VBS in Windows operating systems is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

The vulnerability of the Windows Common Log File System (CLFS) driver in Windows operating systems allows a hacker to elevate their privileges to a system-level level.

The vulnerability of the Windows Common Log File System CLFS driver in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their system-level privileges...

CVE-2025-26687

Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network...

HPE Aruba Networking Virtual Intranet Access (VIA) Client < 4.7.2 Multiple Vulnerabilities (hpesbnw04841)

The version of HPE Aruba Networking Virtual Intranet Access VIA Client running on the remote host is affected by multiple vulnerabilities, as referenced in the hpesbnw04841 advisory. - DHCP can add routes to a client’s routing table via the classless static route option 121. VPN-based security...

Microsoft DWM Core Library 输入验证错误漏洞

The Microsoft Windows DWM Core Library is a core library in the Windows operating system. An elevation of privilege vulnerability exists in Microsoft Windows DWM Core Library, which can be exploited by an attacker to elevate privileges...

Microsoft Windows Resilient File System（ReFS） 访问控制错误漏洞

Microsoft Windows Resilient File System ReFS is a resilient file system from Microsoft Corporation USA. An access control error vulnerability exists in Microsoft Windows Resilient File System ReFS. An attacker could exploit this vulnerability to obtain sensitive information. The following product...

Microsoft Windows Digital Media 资源管理错误漏洞

Microsoft Windows Digital Media is a collection of technologies and features for playing, managing, sharing, delivering, and protecting digital media content from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Windows Digital Media. An attacker could...