87 matches found
CVE-2026-23674
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
EUVD-2026-10598
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
EUVD-2026-10599
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-23674
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-23674 MapUrlToZone Security Feature Bypass Vulnerability
...
CVE-2026-23674
CVE-2026-23674 relates to Windows MapUrlToZone: improper resolution of path equivalence allows a network-based bypass of a security feature. Affected component is the MapUrlToZone path resolution logic in Windows, with exploitation possible over the network and no user interaction required beyond...
CVE-2026-23674
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...
CVE-2026-23674 MapUrlToZone Security Feature Bypass Vulnerability
...
PT-2026-24277
Уязвимость метода MapUrlToZone операционных систем Windows связана с неправильным разрешением эквивалентности пути. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, обойти существующие механизмы безопасности...
Microsoft MapUrlToZone 安全漏洞
Microsoft MapUrlToZone is a lightweight console application written in C++ by Microsoft Corporation. There is a security vulnerability present in Microsoft MapUrlToZone. Attackers can exploit this vulnerability to bypass certain features. The following products and versions are affected: Windows ...
A deep dive into MUTZ
AtDEF CON 33, we shared our research into MapUrlToZone, a critical Windows security component that determines whether a given path is local, on the intranet, or on the broader Internet. This classification drives several security decisions across Windows, for example, preventing a CreateFile call...
The vulnerability of the MapUrlToZone method in Windows operating systems allows attackers to disclose sensitive information that is protected by security measures.
The vulnerability of the MapUrlToZone method in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...
CVE-2025-59208
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
EUVD-2025-34292
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
CVE-2025-59208
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
CVE-2025-59208
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...
CVE-2025-59208 Windows MapUrlToZone Information Disclosure Vulnerability
...
CVE-2025-59208 Windows MapUrlToZone Information Disclosure Vulnerability
...
CVE-2025-59208
CVE-2025-59208 is an out-of-bounds read in Windows MapUrlToZone that could allow an unauthenticated attacker to disclose information over a network. The description and connected documents confirm a network-based exposure affecting Windows, with the root cause being a memory read beyond bounds in...
Windows MapUrlToZone Information Disclosure Vulnerability
Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network...