Lucene search
K

219 matches found

VulnCheck KEV
VulnCheck KEV
added 2022/07/12 12:0 a.m.4 views

VulnCheck KEV: CVE-2022-22047

Microsoft Windows CSRSS contains an unspecified vulnerability that allows for privilege escalation to SYSTEM privileges...

7.8CVSS7.3AI score0.18912EPSS
Exploits0References1
CISA KEV Catalog
CISA KEV Catalog
added 2022/07/12 12:0 a.m.38 views

Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability

Microsoft Windows CSRSS contains an unspecified vulnerability that allows for privilege escalation to SYSTEM privileges...

7.8CVSS8.1AI score0.18912EPSS
In wildExploits0
VulnCheck KEV
VulnCheck KEV
added 2022/03/28 12:0 a.m.7 views

VulnCheck KEV: CVE-2016-0151

The Client-Server Run-time Subsystem CSRSS in Microsoft mismanages process tokens, which allows local users to gain privileges via a crafted application...

7.8CVSS7.1AI score0.63195EPSS
Exploits2References1
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/28 12:0 a.m.22 views

Microsoft Windows CSRSS Security Feature Bypass Vulnerability

The Client-Server Run-time Subsystem CSRSS in Microsoft mismanages process tokens, which allows local users to gain privileges via a crafted application...

7.8CVSS6AI score0.63195EPSS
In wildExploits2
NVD
NVD
added 2020/05/21 11:15 p.m.16 views

CVE-2020-1116

An information disclosure vulnerability exists when the Windows Client Server Run-Time Subsystem CSRSS fails to properly handle objects in memory, aka 'Windows CSRSS Information Disclosure Vulnerability'...

5.5CVSS6.7AI score0.01224EPSS
Exploits0References1
Prion
Prion
added 2020/05/21 11:15 p.m.14 views

Information disclosure

An information disclosure vulnerability exists when the Windows Client Server Run-Time Subsystem CSRSS fails to properly handle objects in memory, aka 'Windows CSRSS Information Disclosure Vulnerability'...

2.1CVSS5.8AI score0.01224EPSS
Exploits0References1Affected Software5
CVE
CVE
added 2020/05/21 10:53 p.m.96 views

CVE-2020-1116

CVE-2020-1116 is described as a Windows CSRSS Information Disclosure Vulnerability, arising from CSRSS failing to properly handle objects in memory. The affected component is Windows CSRSS; the vulnerability enables information disclosure via local access (CVSSv3.1: 5.5 MEDIUM, AV:L/AC:L/PR:L/UI:...

5.5CVSS6.5AI score0.01224EPSS
Exploits0References1Affected Software8
Cvelist
Cvelist
added 2020/05/21 10:53 p.m.18 views

CVE-2020-1116

An information disclosure vulnerability exists when the Windows Client Server Run-Time Subsystem CSRSS fails to properly handle objects in memory, aka 'Windows CSRSS Information Disclosure Vulnerability'...

6.7AI score0.01224EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2020/05/12 7:0 a.m.24 views

Windows CSRSS Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows Client Server Run-Time Subsystem CSRSS fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this...

5.5CVSS3.1AI score0.01224EPSS
Exploits0
Kaspersky
Kaspersky
added 2020/05/12 12:0 a.m.50 views

KLA11773 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface. Below is a complete list of...

9.9CVSS10AI score0.52778EPSS
Exploits18References98
Tenable Nessus
Tenable Nessus
added 2020/05/12 12:0 a.m.293 views

KB4556843: Windows 7 and Windows Server 2008 R2 May 2020 Security Update

The remote Windows host is missing security update 4556843 or cumulative update 4556836. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests. An attacker who successfully exploited thi...

9.9CVSS8.3AI score0.52778EPSS
Exploits17References37
Kaspersky
Kaspersky
added 2020/05/12 12:0 a.m.66 views

KLA11777 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of...

9.9CVSS9.8AI score0.52778EPSS
Exploits17References49
Exploit DB
Exploit DB
added 2019/04/16 12:0 a.m.85 views

Microsoft Windows 10 1809 / 1709 - CSRSS SxSSrv Cached Manifest Privilege Escalation

Windows: CSRSS SxSSrv Cached Manifest EoP Platform: Windows 10 1809, 1709 Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary and others Summary: The SxS manifest cache in CSRSS uses a weak key allowing an attacker to fill a cache entry for a syste...

7.4AI score
Exploits0
0day.today
0day.today
added 2019/04/16 12:0 a.m.104 views

Microsoft Windows 10 1809 / 1709 - CSRSS SxSSrv Cached Manifest Privilege Escalation Exploit

Exploit for windows platform in category local exploits Windows: CSRSS SxSSrv Cached Manifest EoP Platform: Windows 10 1809, 1709 Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary and others Summary: The SxS manifest cache in CSRSS uses a weak ke...

7.2CVSS8.1AI score0.03662EPSS
Exploits2
exploitpack
exploitpack
added 2019/04/16 12:0 a.m.29 views

Microsoft Windows 10 1809 1709 - CSRSS SxSSrv Cached Manifest Privilege Escalation

Microsoft Windows 10 1809 1709 - CSRSS SxSSrv Cached Manifest Privilege Escalation Windows: CSRSS SxSSrv Cached Manifest EoP Platform: Windows 10 1809, 1709 Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary and others Summary: The SxS manifest...

0.3AI score
Exploits0
OpenVAS
OpenVAS
added 2019/04/10 12:0 a.m.91 views

Microsoft Windows Multiple Vulnerabilities (KB4493509)

This host is missing a critical security update according to Microsoft KB4493509 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.8CVSS7.3AI score0.81551EPSS
Exploits67References3
OpenVAS
OpenVAS
added 2019/04/10 12:0 a.m.61 views

Microsoft Windows Multiple Vulnerabilities (KB4493474)

This host is missing a critical security update according to Microsoft KB4493474 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3CVSS7.3AI score0.81551EPSS
Exploits67References3
OpenVAS
OpenVAS
added 2019/04/10 12:0 a.m.57 views

Microsoft Windows Multiple Vulnerabilities (KB4493475)

This host is missing a critical security update according to Microsoft KB4493475 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3CVSS7.3AI score0.81551EPSS
Exploits48References3
OpenVAS
OpenVAS
added 2019/04/10 12:0 a.m.105 views

Microsoft Windows Multiple Vulnerabilities (KB4493446)

This host is missing a critical security update according to Microsoft KB4493446 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3CVSS8.3AI score0.93838EPSS
Exploits60References3
OSV
OSV
added 2019/04/09 9:29 p.m.2 views

CVE-2019-0735

An elevation of privilege vulnerability exists when the Windows Client Server Run-Time Subsystem CSRSS fails to properly handle objects in memory, aka 'Windows CSRSS Elevation of Privilege Vulnerability'...

7.8CVSS7.2AI score0.03662EPSS
Exploits2References3
Rows per page
Query Builder