CVE-2023-21541

Windows Task Scheduler Elevation of Privilege Vulnerability...

CVE-2023-21541

Windows Task Scheduler Elevation of Privilege Vulnerability...

CVE-2023-21541

Technical details about CVE-2023-21541 are not provided in the connected documents. Based on available data, no specifics on affected components, root cause, or fixes are included here. Monitor for updates from authoritative sources.

PT-2023-1138 · Microsoft · Windows Task Scheduler +1

Name of the Vulnerable Software and Affected Versions: Windows Task Scheduler affected versions not specified Description: The issue is related to insufficient access control in the Windows Task Scheduler, which can be exploited to elevate privileges. This allows an attacker to affect the system...

CVE-2023-21541 Windows Task Scheduler Elevation of Privilege Vulnerability

...

Tarrask malware uses scheduled tasks for defense evasion

As Microsoft continues to track the high-priority state-sponsored threat actor HAFNIUM, new activity has been uncovered that leverages unpatched zero-day vulnerabilities as initial vectors. The Microsoft Detection and Response Team DART in collaboration with the Microsoft Threat Intelligence Cent...

CVE-2021-31989

A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a memory dump from the built-in Windows Task Manager application. The memory dump may potentially contain credentials of connected Axis devices...

CVE-2021-31989

A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a memory dump from the built-in Windows Task Manager application. The memory dump may potentially contain credentials of connected Axis devices...

CVE-2021-31989

The CVE-2021-31989 entry affects AXIS Device Manager: a user with host permissions can, under certain conditions, extract a memory dump from the built-in Windows Task Manager, potentially exposing credentials of connected Axis devices. Documented across multiple sources (Axis tech note, Red Hat a...

CVE-2020-10268

Critical services for operation can be terminated from windows task manager, bringing the manipulator to a halt. After this a Re-Calibration of the brakes needs to be performed. Be noted that this only can be accomplished either by a Kuka technician or by Kuka issued calibration hardware that...

CVE-2020-10268 RVD#2550: Terminate Critical Services in KUKA controller KR C4

Critical services for operation can be terminated from windows task manager, bringing the manipulator to a halt. After this a Re-Calibration of the brakes needs to be performed. Be noted that this only can be accomplished either by a Kuka technician or by Kuka issued calibration hardware that...

CVE-2020-1113

A security feature bypass vulnerability exists in Microsoft Windows when the Task Scheduler service fails to properly verify client connections over RPC, aka 'Windows Task Scheduler Security Feature Bypass Vulnerability'...

Microsoft Windows Task Scheduler Security Feature Bypass Vulnerability

Compass Security identified a security feature bypass vulnerability in Microsoft Windows. Due to the absence of integrity verification requirements for the RPC protocol and in particular the Task Scheduler, a man-in-the-middle attacker can relay his victim's NTLM authentication to a target of his...

Titanium: the Platinum group strikes again

Platinum is one of the most technologically advanced APT actors with a traditional focus on the APAC region. During recent analysis we discovered Platinum using a new backdoor that we call Titanium named after a password to one of the self-executable archives. Titanium is the final result of a...

PT-2019-2615 · Microsoft · Windows Task Scheduler +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Task Scheduler affected versions not specified Description: An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. An attacker who successfully exploited the...

Microsoft Windows Multiple Vulnerabilities (KB4493475)

This host is missing a critical security update according to Microsoft KB4493475 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

CVE-2019-0838

An information disclosure vulnerability exists when Windows Task Scheduler improperly discloses credentials to Windows Credential Manager, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0839...

Information disclosure

An information disclosure vulnerability exists when Windows Task Scheduler improperly discloses credentials to Windows Credential Manager, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0839...

Windows Information Disclosure Vulnerability

An information disclosure vulnerability exists when Windows Task Scheduler improperly discloses credentials to Windows Credential Manager. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. An attacker could then install...

Hacker Discloses New Windows Zero-Day Exploit On Twitter

A security researcher with Twitter alias SandboxEscaper—who two months ago publicly dropped a zero-day exploit for Microsoft Windows Task Scheduler—has yesterday released another proof-of-concept exploit for a new Windows zero-day vulnerability. SandboxEscaper posted a link to a Github page hosti...