Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Metasploit
Metasploitadded 2021/11/10 5:42 p.m.350 views

Win32k NtGdiResetDC Use After Free Local Privilege Elevation

A use after free vulnerability exists in the NtGdiResetDC function of Win32k which can be leveraged by an attacker to escalate privileges to those of NT AUTHORITY\SYSTEM. The flaw exists due to the fact that this function calls hdcOpenDCW, which performs a user mode callback. During this callback...

7.8CVSS8.1AI score0.91507EPSS
Exploits11
Packet Storm
Packet Stormadded 2021/11/10 12:0 a.m.532 views

Win32k NtGdiResetDC Use-After-Free / Local Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Win32k NtGdiResetDC Use After Free Local Privilege Elevation', 'Description' = %q A use after free vulnerability exists in the NtGdiResetDC...

4.6CVSS7.7AI score0.91507EPSS
Exploits11
0day.today
0day.todayadded 2021/11/10 12:0 a.m.1011 views

Win32k NtGdiResetDC Use-After-Free / Local Privilege Escalation Exploit

A use after free vulnerability exists in the NtGdiResetDC function of Win32k which can be leveraged by an attacker to escalate privileges to those of NT AUTHORITY\SYSTEM. The flaw exists due to the fact that this function calls hdcOpenDCW, which performs a user mode callback. During this callback...

7.8CVSS8.2AI score0.91507EPSS
Exploits11
Tenable Nessus
Tenable Nessusadded 2021/10/12 12:0 a.m.234 views

KB5006699: Windows Server 2022 Security Update (October 2021)

The remote Windows host is missing security update 5006699. It is, therefore, affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is...

9CVSS7.8AI score0.91507EPSS
Exploits11References43
Tenable Nessus
Tenable Nessusadded 2021/10/12 12:0 a.m.87 views

KB5006674: Windows 11 Security Update (October 2021)

The remote Windows host is missing security update 5006674. It is, therefore, affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is...

9CVSS7.8AI score0.91507EPSS
Exploits11References38
Tenable Nessus
Tenable Nessusadded 2021/10/12 12:0 a.m.159 views

KB5006728: Windows 7 and Windows Server 2008 R2 Security Update (October 2021)

The remote Windows host is missing security update 5006728. It is, therefore, affected by multiple vulnerabilities %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is...

8.8CVSS7.8AI score0.91507EPSS
Exploits11References19
Positive Technologies
Positive Technologiesadded 2021/10/12 12:0 a.m.3 views

PT-2021-4388 · Microsoft · Win32K +1

Name of the Vulnerable Software and Affected Versions: Windows Win32k versions prior to the fixed version Description: The issue is related to a use-after-free vulnerability in the Win32k component of Windows operating systems. This vulnerability can be exploited to elevate privileges. The...

7.8CVSS7.6AI score0.91507EPSS
Exploits11References48
Rows per page
Query Builder