CVE-2023-5727

The executable file warning was not presented when downloading .msix, .msixbundle, .appx, and .appxbundle files, which can run commands on a user's computer. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 119,...

Command injection

The executable file warning was not presented when downloading .msix, .msixbundle, .appx, and .appxbundle files, which can run commands on a user's computer. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 119,...

CVE-2023-5727

The executable file warning was not presented when downloading .msix, .msixbundle, .appx, and .appxbundle files, which can run commands on a user's computer. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox 119,...

The vulnerability of the DirectMusic component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the DirectMusic component in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the ODBC driver for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the ODBC driver for SQL Server on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Layer 2 Tunneling Protocol (L2TP) implementation in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Layer 2 Tunneling Protocol L2TP implementation in Windows operating systems is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the IIS (Internet Information Services) server on Windows operating systems, which allows attackers to increase their privileges

The vulnerability of the IIS Internet Information Services server on Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

The vulnerability of the Active Directory Federation Services (ADFS) for Windows operating systems allows a hacker to bypass existing security restrictions.

The vulnerability of the Active Directory Federation Services ADFS for Windows operating systems is related to security configuration errors. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...

The vulnerability of the Microsoft Message Queuing (MSMQ) queue service on Windows operating systems allows a attacker to cause a service failure.

The vulnerability of the Microsoft Message Queuing MSMQ service on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of the Microsoft Message Queuing (MSMQ) queue service on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Microsoft Message Queuing MSMQ service on Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information remotely...

The vulnerability of the Microsoft Message Queuing (MSMQ) queue service on Windows operating systems allows a attacker to cause a service failure.

The vulnerability of the Microsoft Message Queuing MSMQ service on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

PT-2023-4298 · Microsoft · Message Queuing +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing MSMQ affected versions not specified Description: The issue is related to insufficient input validation in Microsoft Message Queuing MSMQ in Windows operating systems. This can allow a remote attacker to execute...

The vulnerability of the PostScript Printer Driver (Pscript) and PCL6 Class Printer drivers for Windows operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the PostScript Printer Driver PScript and PCL6 Class Printer drivers for Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the PostScript Printer Driver (Pscript) and PCL6 Class Printer drivers for Windows operating systems allows a hacker to gain unauthorized access to protected information.

The vulnerability of the PostScript Printer Driver PScript and PCL6 Class Printer drivers for Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the PostScript Printer Driver (Pscript) and PCL6 Class Printer operating systems for Windows allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the PostScript Printer Driver Pscript and PCL6 Class Printer operating systems for Windows is related to insufficient protection of operational data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the Failover Cluster component for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Failover Cluster component for Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the Microsoft Message Queuing (MSMQ) service on Microsoft Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Microsoft Message Queuing MSMQ service on Microsoft Windows operating systems is related to insufficient input validation. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

Cross site scripting

An out-of-bounds write vulnerability on windows operating systems causes the Ivanti AntiVirus Product to crash. Update to Ivanti AV Product version 7.9.1.285 or above...

PT-2023-25132 · Microsoft +1 · Windows +1

Name of the Vulnerable Software and Affected Versions: Ivanti AntiVirus Product versions prior to 7.9.1.285 Description: An out-of-bounds write vulnerability on Windows operating systems causes the Ivanti AntiVirus Product to crash. Recommendations: Update to Ivanti AV Product version 7.9.1.285 o...

The vulnerability of the Remote Procedure Call (RPC) technology in Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Remote Procedure Call RPC technology in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...