9 matches found
Exploit for Exposure of Sensitive System Information to an Unauthorized Control Sphere in Microsoft
CVE-2021-31955 Windows Kernel Informati...
Microsoft Windows Multiple Vulnerabilities (KB5003646)
This host is missing a critical security update according to Microsoft KB5003646 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft fixes seven zero-days, including two PuzzleMaker targets, Google fixes serious Android flaw
This patch Tuesday harvest was another big one. The Windows updates alone included seven zero-day vulnerability updates, two of them are actively being used in the wild by a group called PuzzleMaker, four others that have also been seen in the wild, plus one other zero-day vulnerability not known...
CVE-2021-31955
creationtimestamp| type| source ---|---|--- 2021-06-09 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=593 2021-06-09 04:51:08+00:00| seen| https://t.me/alexmakus/4121 2021-06-10 08:24:58+00:00| seen| MISP/df23874b-e926-4e6f-b80e-c8a58279bcb0 2021-06-15 10:49:56+00:00| see...
CVE-2021-31955
Windows Kernel Information Disclosure Vulnerability...
CVE-2021-31955
CVE-2021-31955 is a Windows kernel information-disclosure vulnerability in ntoskrnl.exe related to the SuperFetch feature. By sending a SystemSuperfetchInformation query via NtQuerySystemInformation, an attacker can obtain the kernel address of the current process’s EPROCESS, which also contains ...
PuzzleMaker attacks with Chrome zero-day exploit chain
On April 14-15, 2021, Kaspersky technologies detected a wave of highly targeted attacks against multiple companies. Closer analysis revealed that all these attacks exploited a chain of Google Chrome and Microsoft Windows zero-day exploits. While we were not able to retrieve the exploit used for...
CVE-2021-31955
Windows Kernel Information Disclosure Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...
KB5003646: Windows 10 version 1809 / Windows Server 2019 Security Update (June 2021)
The remote Windows host is missing security update 5003646. It is, therefore, affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is...