The vulnerability of the Windows Storage Services data storage service on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Storage Services data storage service in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...

CVE-2024-3863

The Mozilla Foundation Security Advisory describes this flaw as: The executable file warning was not presented when downloading .xrm-ms files. Note: This issue only affected Windows operating systems. Other operating systems are unaffected...

The vulnerability of the Microsoft DWM Core Library on Windows operating systems allows attackers to gain unauthorized access to protected information.

The vulnerability of the Microsoft DWM Core Library on Windows operating systems relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Kerberos protocol for Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Kerberos protocol for Windows operating systems is related to pointer swapping errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with Windows, which allows attackers to circumvent existing security restrictions.

The vulnerability of the Secure Boot protocol for operating systems running Windows is related to a breach in the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with security features allows a perpetrator to circumvent security restrictions.

The vulnerability of the Secure Boot protocol for loading operating systems on Windows is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to bypass security restrictions remotely...

Microsoft Windows Local Security Authority Subsystem Service 安全漏洞

Microsoft Windows Local Security Authority Subsystem Service is an internal program of Microsoft Corporation USA that runs Windows system security policies. It verifies user identity, manages user password changes, and generates access characters when a user logs on to a computer standalone or...

Mozilla Firefox < 124.0

The version of Firefox installed on the remote Windows host is prior to 124.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-12 advisory. - Memory safety bugs present in Firefox 123. Some of these bugs showed evidence of memory corruption and we presume that...

The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the Microsoft Message Queuing (MSMQ) queue service on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Message Queuing MSMQ queue service on Windows operating systems is related to the use of unsafe mechanisms for processing authentication data in the operating system’s memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the application programming interface for accessing ActiveX Data Objects (ADO) on Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the application programming interface for accessing ActiveX Data Objects ADO on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Network Address Translation (NAT) technology implementation in Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Network Address Translation NAT technology implementation in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

The vulnerability of the Remote Desktop Protocol (RDP) on the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Remote Desktop Protocol RDP on Windows operating systems is related to synchronization errors when using shared resources. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Win32k component in Windows operating systems, which allows attackers to increase their privileges

The vulnerability of the Win32k component in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...

The vulnerability of the Message Queuing Client (MSMQC) on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Message Queuing Client MSMQC on Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the DHCP server service for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the DHCP server service for Windows operating systems is related to insufficient protection of service-related data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the MSHTML platform in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the MSHTML platform in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted email...

The vulnerability of the NTFS file system in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NTFS file system in Windows operating systems is related to insufficient protection of operational data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Windows Authentication component in Windows operating systems allows a hacker to trigger a service failure.

The vulnerability of the Windows Authentication component in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Hyper-V hardware virtualization system for Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Hyper-V hardware virtualization technology for Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges by sending specially crafted requests...