EUVD-2022-35378

Malicious code in bioql PyPI...

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure in the DSInternals.Common.Data.RoamedCredential.Save method, which incorrectly parses the msPKIAccountCredentials LDAP attribute values. Consequently, a malicious actor would be able to modify the computer's file...

GHSA-VX2X-9CFF-FHJW DSInternals Credential Roaming Elevation of Privilege Vulnerability

Impact A vulnerability exists in the DSInternals.Common.Data.RoamedCredential.Save method, which incorrectly parses the msPKIAccountCredentials LDAP attribute values. As a consequence, a malicious actor would be able to modify the file system of the computer where an application using this functi...

DSInternals Credential Roaming Elevation of Privilege Vulnerability

Impact A vulnerability exists in the DSInternals.Common.Data.RoamedCredential.Save method, which incorrectly parses the msPKIAccountCredentials LDAP attribute values. As a consequence, a malicious actor would be able to modify the file system of the computer where an application using this functi...

APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network

The Russia-linked APT29 nation-state actor has been found leveraging a "lesser-known" Windows feature called Credential Roaming following a successful phishing attack against an unnamed European diplomatic entity. "The diplomatic-centric targeting is consistent with Russian strategic priorities a...

VulnCheck KEV: CVE-2022-30170

Windows Credential Roaming Service Elevation of Privilege Vulnerability...

CVE-2022-30170

Windows Credential Roaming Service Elevation of Privilege Vulnerability...

CVE-2022-30170

Windows Credential Roaming Service Elevation of Privilege Vulnerability...

CVE-2022-30170

Windows Credential Roaming Service Elevation of Privilege Vulnerability...

CVE-2022-30170 Windows Credential Roaming Service Elevation of Privilege Vulnerability

...

Windows Credential Roaming Service Elevation of Privilege Vulnerability

...

KB5017328: Windows 11 Security Update (September 2022)

The remote Windows host is missing security update 5017328. It is, therefore, affected by multiple vulnerabilities - Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the...

KB5017371: Windows Server 2008 Security Update (September 2022)

The remote Windows host is missing security update 5017371. It is, therefore, affected by multiple vulnerabilities - Windows Credential Roaming Service Elevation of Privilege Vulnerability CVE-2022-30170 - Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...

PT-2022-5620 · Microsoft · Windows Server +1

Name of the Vulnerable Software and Affected Versions: Windows Credential Roaming Service versions prior to 4.8 microsoft windows server 2008 r2, - microsoft windows server 2012 r2, - microsoft windows 10 1607, 1809, 21h1, -, 21h2, 20h2 microsoft windows 8.1 - microsoft windows server 2016 -...

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in the Microsoft Windows Credential Roaming Service. The following products and versions are affected:Windows 10 Version 1809 for 32-b...

KLA19245 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote cod...