Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft USA. A security vulnerability exists in Microsoft Windows. An attacker could exploit this vulnerability to remotely execute code. The following products and versions are affected: Windows 11 Version 24H2...

Microsoft Windows Cloud Files Mini Filter Driver 输入验证错误漏洞

Microsoft Windows Cloud Files Mini Filter Driver is a cloud file filter driver from Microsoft Corporation USA. An input validation error vulnerability exists in Microsoft Windows Cloud Files Mini Filter Driver. An attacker could exploit the vulnerability to elevate privileges. The following...

PT-2024-5639 · Microsoft · Windows Dns +1

Name of the Vulnerable Software and Affected Versions: Windows DNS affected versions not specified Description: The issue is related to insufficient authentication of data in the Windows DNS service, allowing a remote attacker to conduct spoofing attacks. This can affect the system, posing a...

Microsoft Windows 代码问题漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Windows. An attacker could use this vulnerability to cause a denial of service. The following products and versions are affected:Windows 10...

The vulnerability of the PowerShell command line interface on Windows operating systems, which allows attackers to exploit their privileges

The vulnerability of the PowerShell command line interface on Windows operating systems is related to insufficient validation of entered data. Exploiting this vulnerability can allow an attacker to gain increased privileges...

UBUNTU-CVE-2024-7553

Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing arbitrary behaviour determined by the contents of untrusted files. This issue affects MongoDB...

VulnCheck KEV: CVE-2008-3648

nslookup.exe in Microsoft Windows XP SP2 allows user-assisted remote attackers to execute arbitrary code, as demonstrated by an attempted DNS zone transfer, and as exploited in the wild in August 2008...

PT-2024-6296 · Mongodb +1 · Mongodb C Driver +4

Name of the Vulnerable Software and Affected Versions: MongoDB Server versions prior to 5.0.27 MongoDB Server versions prior to 6.0.16 MongoDB Server versions prior to 7.0.12 MongoDB Server versions prior to 7.3.3 MongoDB C Driver versions prior to 1.26.2 MongoDB PHP Driver versions prior to 1.18...

The vulnerability of Windows operating systems, related to processor optimization, the removal or modification of security-critical code, allows attackers to disclose sensitive information.

Vulnerabilities of Windows operating systems are related to optimizations made to the processor, as well as the removal or modification of code that is critical for security. Exploiting these vulnerabilities can allow attackers to disclose sensitive information through attacks via secondary...

The vulnerability of the Win32k.sys component in Windows operating systems, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Network Driver Interface Standard (NDIS) interface in Windows operating systems, which allows a hacker to cause a service failure

The vulnerability of the Network Driver Interface Standard NDIS in Windows operating systems is related to the execution of operations outside the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability in the implementation of the Online Certificate Status Protocol (OCSP) on Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Online Certificate Status Protocol OCSP implementation in Windows operating systems is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the Layer-2 Bridge network driver for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Layer-2 Bridge network driver for Windows operating systems relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability in the implementation of the Online Certificate Status Protocol (OCSP) on Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Online Certificate Status Protocol OCSP implementation in Windows operating systems is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the wireless adapter for Xbox Windows operating systems, allowing a hacker to execute arbitrary code

The vulnerability of the wireless adapter in Xbox Windows operating systems relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the BitLocker data protection function in Windows operating systems allows attackers to circumvent existing security restrictions and gain access to encrypted data.

The vulnerability of the BitLocker data protection function in Windows operating systems is related to a breach of the data protection mechanism. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions and gain access to encrypted data...

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of the DCOM Remote Cross-Session Activation component of the Windows operating system allows attackers to increase their privileges.

The vulnerability of the DCOM Remote Cross-Session Activation component in the Windows operating system is related to access control deficiencies. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.

The vulnerability of the Secure Boot protocol for operating systems running Windows is related to errors in processing input data length parameters. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.

The vulnerability of the Secure Boot protocol for Windows operating systems is related to a numerical overflow condition. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions remotely...