CVE-2023-26585

Improper access control in some IntelR ThunderboltTM DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable denial of service via local access...

PT-2024-3272 · Intel · Intel Thunderbolt Dch Drivers

Name of the Vulnerable Software and Affected Versions: IntelR ThunderboltTM DCH drivers for Windows versions prior to 88 Description: The issue is related to deserialization weaknesses in the IntelR ThunderboltTM DCH drivers for Windows. It may allow an authenticated user to potentially enable a...

PT-2024-2883 · Intel · Intel Thunderbolt Dch Drivers

Name of the Vulnerable Software and Affected Versions: IntelR ThunderboltTM DCH drivers for Windows versions prior to 88 Description: The issue is related to improper input validation in some IntelR ThunderboltTM DCH drivers for Windows, which may allow an unauthenticated user to potentially enab...

PT-2024-2882 · Intel · Intel Thunderbolt Dch Drivers

Name of the Vulnerable Software and Affected Versions: IntelR ThunderboltTM DCH drivers for Windows versions prior to 88 Description: The issue is related to improper access control in some IntelR ThunderboltTM DCH drivers for Windows, which may allow an authenticated user to potentially enable...

Microsoft WDAC OLE DB provider for SQL Security Vulnerability

Microsoft OLE DB Provider for SQL Server is an API from Microsoft Corporation that allows access to data from a variety of sources in a unified way. A security vulnerability exists in Microsoft WDAC OLE DB provider for SQL. The following products and versions are affected: Windows 10 Version 22H2...

Design/Logic Flaw

IBM i Access Client Solutions ACS 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.4 is vulnerable to NT LAN Manager NTLM hash disclosure by an attacker modifying UNC capable paths within ACS configuration files to point to a hostile server. If NTLM is enabled, the Windows operating system will try ...

The vulnerability of the Libarchive library in the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of the Libarchive library in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the CoreMessaging service in the Windows operating system allows a perpetrator to disclose protected information.

The vulnerability of the CoreMessaging service in the Windows operating system is related to deficiencies in the segmentation of the system’s controlled areas. Exploiting this vulnerability could allow an attacker to disclose protected information...

The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system allows attackers to circumvent existing security restrictions.

The vulnerability of the BitLocker data protection function in the Microsoft Windows operating system relates to the bypassing of security features. Exploiting this vulnerability can allow an attacker to circumvent existing security restrictions...

The vulnerability of the Windows Local Session Manager component of the Windows operating system allows a hacker to trigger a service failure.

The vulnerability of the Windows Local Session Manager component exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the Nearby Share function in Windows operating systems, which allows attackers to perform spoofing attacks

The vulnerability of the Nearby Share function in Windows operating systems is related to information representation errors in the user interface. Exploiting this vulnerability can allow remote attackers to perform spoofing attacks...

The vulnerability in the implementation of the Kerberos protocol for Windows operating systems allows a perpetrator to circumvent security restrictions.

The vulnerability of the Kerberos protocol for Windows operating systems is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...

The vulnerability of Windows operating systems’ message queues allows attackers to gain unauthorized access to protected information.

The vulnerability of Message Queuing in Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

The vulnerability of the HTML platform for Windows operating systems, which allows a hacker to bypass security restrictions

The vulnerability of the HTML platform for Windows operating systems is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...

The vulnerability of the Online Certificate Status Protocol (OCSP) implementation in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Online Certificate Status Protocol OCSP implementation in Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

CVE-2024-21313

Windows TCP/IP Information Disclosure Vulnerability...

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

...

Microsoft Windows BitLocker Security Vulnerability

Microsoft Windows BitLocker is a BitLocker by Microsoft Corporation USA Ensure secure backup of recovery keys before activating protection. A security vulnerability exists in Microsoft Windows BitLocker. An attacker could bypass certain features by exploiting the vulnerability. The following...

PT-2024-1024 · Microsoft · Ocsp +1

Name of the Vulnerable Software and Affected Versions: Microsoft Online Certificate Status Protocol OCSP affected versions not specified Description: The issue is related to the implementation of the Online Certificate Status Protocol OCSP in Windows operating systems, specifically concerning...

PT-2024-1103 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the Win32k component in Windows operating systems and is associated with insecure privilege management. Exploitation of this issue may allow an attacker to elevate...