21 matches found
EUVD-2021-23524
Malware in sbrugna...
EUVD-2020-9025
Malware in sbrugna...
Microsoft Uncovers Austrian Company Exploiting Windows and Adobe Zero-Day Exploits
A cyber mercenary that "ostensibly sells general security and information analysis services to commercial customers" used several Windows and Adobe zero-day exploits in limited and highly-targeted attacks against European and Central American entities. The company, which Microsoft describes as a...
Microsoft Windows Update Medic Service Privilege Escalation Vulnerability
Microsoft Windows Update Medic Service contains an unspecified vulnerability that allows for privilege escalation...
CVE-2021-36948
Windows Update Medic Service Elevation of Privilege Vulnerability...
CVE-2021-36948
Windows Update Medic Service Elevation of Privilege Vulnerability...
Privilege escalation
Windows Update Medic Service Elevation of Privilege Vulnerability...
CVE-2021-36948 Windows Update Medic Service Elevation of Privilege Vulnerability
...
CVE-2021-36948
Technical details are not publicly provided in the available documents. The CVE is described as Windows Update Medic Service EoP, with some sources noting exploitation in the wild, but there is no concrete root cause, affected versions, or fix details here.
CVE-2021-36948 Windows Update Medic Service Elevation of Privilege Vulnerability
...
Windows Update Medic Service Elevation of Privilege Vulnerability
...
VulnCheck KEV: CVE-2021-36948
Microsoft Windows Update Medic Service contains an unspecified vulnerability that allows for privilege escalation...
PT-2021-3784 · Microsoft · Windows Update Medic Service +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows Update Medic Service affected versions not specified Description: The issue is related to insecure privilege management in the Windows Update Medic Service component of the Windows operating system. Exploitation of this issu...
The vulnerability of the Windows Update Medic Service component on the Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Windows Update Medic Service component in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...
CVE-2020-17070
Windows Update Medic Service Elevation of Privilege Vulnerability...
Privilege escalation
Windows Update Medic Service Elevation of Privilege Vulnerability...
CVE-2020-17070 Windows Update Medic Service Elevation of Privilege Vulnerability
...
CVE-2020-17070
The CVE-2020-17070 entry concerns the Windows Update Medic Service Elevation of Privilege vulnerability. The available documents identify a local, low-privilege elevation of privilege in the Windows Update Medic Service, with the NVD metrics showing local access, low attack complexity, and high i...
Windows Update Medic Service Elevation of Privilege Vulnerability
...
PT-2020-4607 · Microsoft · Windows Update Medic Service +1
Name of the Vulnerable Software and Affected Versions: Windows Update Medic Service affected versions not specified Description: The issue is related to insufficient access restrictions in the Windows Update Medic Service component of the Windows operating system. This can be exploited to allow a...