The vulnerability of the Pragmatic General Multicast protocol implementation in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Pragmatic General Multicast protocol implementation in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created file...

The vulnerability of the Windows Filtering Platform, a system for filtering data on Windows operating systems, allows attackers to increase their privileges.

The vulnerability of the Windows Filtering Platform in the operating system Windows is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

PT-2023-4512 · Node.Js +2 · Node.Js +2

Name of the Vulnerable Software and Affected Versions: Node.js versions affected versions not specified Description: A vulnerability has been identified in the Node.js installation process, specifically affecting Windows users who install Node.js using the .msi installer. This issue arises during...

The vulnerability of the Microsoft PostScript printer driver for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft PostScript printer driver for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code using specially created data...

CVE-2023-29371

Windows GDI Elevation of Privilege Vulnerability...

Microsoft Windows NTFS 安全漏洞

Microsoft Windows NTFS is a file system from Microsoft USA that serves computer files. The file system has error warning, disk self-repair, and logging capabilities. A security vulnerability exists in Microsoft Windows NTFS. An attacker could exploit the vulnerability to elevate privileges. The...

Microsoft .NET Core安全漏洞

Microsoft .NET Core is a cross-platform, high-performance, open-source framework for building modern, cloud-enabled, Internet-connected applications from Microsoft Corporation. A security vulnerability exists in Microsoft .NET Core. The following products and versions are affected: Microsoft Visu...

CVE-2023-25740

After downloading a Windows .scf script from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This also had the potential to leak NTLM credentials to the resource.This bug only affects Firefox for Windows. Other...

CVE-2023-25738

Members of the DEVMODEW struct set by the printer device driver weren't being validated and could have resulted in invalid values which in turn would cause the browser to attempt out of bounds access to related variables.This bug only affects Firefox on Windows. Other operating systems are...

CVE-2023-25734

After downloading a Windows .url shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This also had the potential to leak NTLM credentials to the resource.This bug only affects Firefox on Windows. Othe...

CVE-2022-35747

Windows Point-to-Point Protocol PPP Denial of Service Vulnerability...

CVE-2022-35753

Windows Secure Socket Tunneling Protocol SSTP Remote Code Execution Vulnerability...

Filmora 12 version ( Build 1.0.0.7) - Unquoted Service Paths Privilege Escalation Vulnerability

Exploit Title: Filmora 12 version Build 1.0.0.7 - Unquoted Service Paths Privilege Escalation Exploit Author: Thurein Soe Vendor Homepage: https://filmora.wondershare.com Software Link: https://mega.nz/file/tQNGGZTQE1u20rdbT4R3pgSoUBG93IPAXqesJ5yyn6T8RlMFxaE Version: Filmora 12 Build 1.0.0.7 Test...

Filmora 12 version ( Build 1.0.0.7) - Unquoted Service Paths Privilege Escalation

Exploit Title: Filmora 12 version Build 1.0.0.7 - Unquoted Service Paths Privilege Escalation Date: 20 May 2023 Exploit Author: Thurein Soe Vendor Homepage: https://filmora.wondershare.com Software Link: https://mega.nz/file/tQNGGZTQE1u20rdbT4R3pgSoUBG93IPAXqesJ5yyn6T8RlMFxaE Version: Filmora 12...

The vulnerability of the NTLM Security Support Provider implementation in the Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NTLM Security Support Provider in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the Network File System (NFS) of Windows operating systems, which allows a perpetrator to carry out a DoS attack.

The vulnerability of the Network File System NFS of Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to execute a DoS Denial-of-Service attack...

The vulnerability in the implementation of the LDAP Lightweight Directory Access Protocol on the Windows operating system allows a perpetrator to execute arbitrary code.

The vulnerability of the LDAP Lightweight Directory Access Protocol implementation in the Windows operating system is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2023-2693 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access control in the Win32k component of the Windows operating system, which can be exploited to elevate privileges. This could allow an attacker to...

The vulnerability of the Virtual Delivery Agent (VDA) software, used for virtualizing and delivering Citrix Virtual Apps and Desktops (formerly XenApp and XenDesktop), on Windows operating systems, allows a malicious individual to escalate their privileges and execute arbitrary commands.

The vulnerability of the Virtual Delivery Agent VDA software for virtualizing and delivering Citrix Virtual Apps and Desktops formerly XenApp and XenDesktop on Windows operating systems is related to deficiencies in access control when using a multi-user mode. Exploiting this vulnerability can...

The vulnerability of the Win32k.sys component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to increase their privileges...