CVE-2025-49664

Exposure of sensitive information to an unauthorized actor in Windows User-Mode Driver Framework Host allows an authorized attacker to disclose information locally...

CVE-2025-49664

Exposure of sensitive information to an unauthorized actor in Windows User-Mode Driver Framework Host allows an authorized attacker to disclose information locally...

Microsoft Windows User-mode Driver Framework 信息泄露漏洞

Microsoft Windows User-mode Driver Framework is a user-mode driver framework from Microsoft Corporation USA. An information disclosure vulnerability exists in the Microsoft Windows User-mode Driver Framework. An attacker could exploit this vulnerability to obtain sensitive information. The...

New PoolParty Process Injection Techniques Outsmart Top EDR Solutions

A new collection of eight process injection techniques, collectively dubbed PoolParty, could be exploited to achieve code execution in Windows systems while evading endpoint detection and response EDR systems. SafeBreach researcher Alon Leviev said the methods are "capable of working across all...

CVE-2022-21834

Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability...

CVE-2022-21834 Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability

...

Microsoft Windows User-mode Driver Framework权限许可和访问控制问题漏洞

Microsoft Windows User-mode Driver Framework is a user-mode driver framework from Microsoft Corporation USA. A vulnerability exists in the Microsoft Windows User-mode Driver Framework due to permission and access control issues. The following products and editions are affected:Windows 10 Version...

PT-2022-1526 · Microsoft · Windows User-Mode Driver Framework Reflector Driver +1

Name of the Vulnerable Software and Affected Versions: Windows User-mode Driver Framework Reflector Driver affected versions not specified Description: The issue is related to errors in privilege management, allowing an attacker to potentially elevate their privileges. This could enable an attack...

Microsoft Windows User-Mode Power Service Elevation of Privilege Vulnerability

Microsoft Windows is a set of operating systems for use on personal devices from the American company Microsoft. An elevation of privilege vulnerability exists in the way memory objects are handled in the Microsoft Windows User-Mode Power Service. An attacker could exploit this vulnerability with...

CVE-2018-12211

Insufficient input validation in User Mode Driver in IntelR Graphics Driver for Windows before versions 10.18.x.5059 aka 15.33.x.5059, 10.18.x.5057 aka 15.36.x.5057, 20.19.x.5063 aka 15.40.x.5063 21.20.x.5064 aka 15.45.x.5064 and 24.20.100.6373 potentially enables an unprivileged user to cause a...