14 matches found
CVE-2026-26117
Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally...
EUVD-2021-13846
Malware in sbrugna...
Understanding the New Windows Secure Kernel Mode Elevation of Privilege Vulnerability (CVE-2024-21302)
On August 7, 2024, Microsoft disclosed a significant security vulnerability affecting Windows-based systems, known as CVE-2024-21302. This zero-day vulnerability allows attackers with administrator privileges to elevate their access by replacing current versions of Windows system files with...
KB5041773: Windows 10 Version 1607 / Windows Server 2016 Security Update (August 2024)
The remote Windows host is missing security update 5041773. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security VBS including a subset of Azure Virtual Machine SKUS. This can allo...
KB5041585: Windows 11 version 22H2 / Windows 11 version 23H2 Security Update (August 2024)
The remote Windows host is missing security update 5041585. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security VBS including a subset of Azure Virtual Machine SKUS. This can allo...
KB5041592: Windows 11 version 21H2 Security Update (August 2024)
The remote Windows host is missing security update 5041592. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security VBS including a subset of Azure Virtual Machine SKUS. This can allo...
KB5041160: Windows Server 2022 / Azure Stack HCI 22H2 Security Update (August 2024)
The remote Windows host is missing security update 5041160. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security VBS including a subset of Azure Virtual Machine SKUS. This can allo...
KB5041573: Windows Server version 23H2 Security Update (August 2024)
The remote Windows host is missing security update 5041573. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security VBS including a subset of Azure Virtual Machine SKUS. This can allo...
KB5041580: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (August 2024)
The remote Windows host is missing security update 5041580. It is, therefore, affected by multiple vulnerabilities - An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security VBS including a subset of Azure Virtual Machine SKUS. This can allo...
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
Summary: As of July 10, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this...
Microsoft Warns of Cyber Attacks Attempting to Breach Cloud via SQL Server Instance
Microsoft has detailed a new campaign in which attackers unsuccessfully attempted to move laterally to a cloud environment through an SQL Server instance. "The attackers initially exploited a SQL injection vulnerability in an application within the target's environment," security researchers...
How to capture a full memory dump from a PVS target running on Azure
This article will cover the steps necessary to prepare an Azure VM running PVS to be able to capture a full memory dump...
Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware
Log4ShellCVE-2021-44228 Demo !demo-scenariosimages/demo-...
Information disclosure
Azure Virtual Machine Information Disclosure Vulnerability...