IBM DB2 安全漏洞

IBM DB2 is a relational database management system from International Business Machines IBM. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A code execution vulnerability exists in IBM DB2, which can be exploited by an attacker to cause...

The vulnerability of the DNS Server component of the Windows operating system, which allows a hacker to disclose protected information

The vulnerability of the DNS Server component of the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that should be protected...

The vulnerability of the Windows operating system’s DNS server allows a hacker to execute arbitrary code.

The vulnerability of the Windows operating system’s DNS server arises from a “race condition”. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

DEBIAN-CVE-2023-0199

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler, where an out-of-bounds write can lead to denial of service and data tampering...

The vulnerability of the Network Address Translation (NAT) technology implementation in Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Network Address Translation NAT technology implementation in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using specially created data...

The vulnerability of the Microsoft Message Queuing (MSMQ) service on Microsoft Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Microsoft Message Queuing MSMQ service on Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the DNS server of the Microsoft Windows operating system, allowing a hacker to execute arbitrary code.

The vulnerability of the DNS server of the Microsoft Windows operating system arises from a “race condition”. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of Windows operating system DNS servers allows a perpetrator to execute arbitrary code.

The vulnerability of Windows operating system DNS servers is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the UEFI loader of the Boot Manager for Windows operating systems allows a hacker to circumvent security restrictions.

The vulnerability of the UEFI-bootloader of Windows operating systems is related to security configuration errors. Exploiting this vulnerability can allow an attacker to bypass security restrictions...

The vulnerability of the Layer 2 Tunneling Protocol (L2TP) implementation in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Layer 2 Tunneling Protocol L2TP implementation in Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

VulnCheck KEV: CVE-2023-28252

Microsoft Windows Common Log File System CLFS driver contains an unspecified vulnerability that allows for privilege escalation...

Microsoft Windows DNS 安全漏洞

Microsoft Windows DNS is a domain name resolution service from Microsoft. The Domain Name System DNS is one of the industry-standard suite of protocols that encompasses TCP/IP, and DNS clients and DNS servers work together to provide computers and users with name resolution services that map...

PT-2023-2467 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access control in the Win32k component of the Windows operating system. This can allow an attacker to elevate their privileges. There is no information...

PT-2023-2402 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing MSMQ affected versions not specified Description: The issue is related to insufficient input validation in Microsoft Message Queuing MSMQ in Microsoft Windows operating systems. This can be exploited by a remote...

PT-2023-2273 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access restrictions in the Netlogon Remote Protocol RPC interface of Windows operating systems. It allows a remote attacker to elevate their privileges...

PT-2023-2437 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue exists due to insufficient input validation in the OLE DB driver for SQL Server in the Windows operating system. This allows a remote attacke...

The vulnerability of the Client Server Run-Time Subsystem (CSRSS) in the Windows operating system, which allows a perpetrator to access confidential information

The vulnerability of the Client Server Run-Time Subsystem CSRSS in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to access confidential information...

The vulnerability of the PCL6 printer driver for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the PCL6 printer driver for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the PCL6 printer driver for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the PCL6 printer driver for Windows operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

The vulnerability of Microsoft Defender for Endpoint’s Windows operating system allows a hacker to bypass existing security restrictions.

The vulnerability of Microsoft Defender for Endpoint’s Windows operating system is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions remotely...