Lucene search
+L

35 matches found

NVD
NVD
added 2025/07/08 5:15 p.m.5 views

CVE-2025-49658

Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose information locally...

5.5CVSS0.00446EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 5:15 p.m.5 views

CVE-2025-49659

Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00366EPSS
Exploits0References1
OSV
OSV
added 2025/07/08 5:15 p.m.2 views

CVE-2025-49658

Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose information locally...

5.5CVSS5.7AI score0.00446EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 4:57 p.m.53 views

CVE-2025-49659

Technical details for CVE-2025-49659 are not present in the provided connected documents. Public information about affected products, root cause, exploit status, and fixes is not available here; monitor for updates from official advisories.

7.8CVSS6.5AI score0.00366EPSS
Exploits0References1Affected Software15
CVE
CVE
added 2025/07/08 4:57 p.m.52 views

CVE-2025-49658

CVE-2025-49658 is an information-disclosure vulnerability in Windows that arises from an out-of-bounds read in the TDX.sys driver. Impact: an authenticated, local attacker with LOW privileges could disclose sensitive data (C: HIGH, I: NONE, A: NONE; CVSS 5.5/LOCAL). Affected component: Windows Tr...

5.5CVSS6.1AI score0.00446EPSS
Exploits0References1Affected Software15
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.4 views

PT-2025-28558 · Microsoft · Windows Tdx.Sys +1

Name of the Vulnerable Software and Affected Versions: Windows TDX.sys affected versions not specified Description: A buffer over-read issue in Windows TDX.sys allows an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about a newer versio...

7.8CVSS5.9AI score0.00366EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.2 views

PT-2025-28557 · Microsoft · Tdx.Sys +1

Name of the Vulnerable Software and Affected Versions: Windows TDX.sys affected versions not specified Description: The issue is related to an out-of-bounds read in Windows TDX.sys, which allows an authorized attacker to disclose information locally. This means that an attacker with certain...

5.5CVSS5.5AI score0.00446EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/09/14 12:0 a.m.5 views

Microsoft Windows 信息泄露漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. An information disclosure vulnerability exists in Microsoft Windows TDX.sys. The following products and editions are affected: Windows 10 Version 21H1 for ARM64-based Systems,Windows 10...

6.5CVSS6.7AI score0.02486EPSS
Exploits0References5
OSV
OSV
added 2017/06/15 1:29 a.m.3 views

CVE-2017-0296

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to elevate privilege when tdx.sys fails to check the length of a buffer prior to copying memory...

7.8CVSS6AI score0.01315EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/06/14 12:0 a.m.78 views

Microsoft Windows TDX Elevation of Privilege Vulnerability (KB4021923)

This host is missing an important security update according to Microsoft KB4021923 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

7.8CVSS7.7AI score0.01315EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/06/14 12:0 a.m.110 views

Windows 2008 June 2017 Multiple Security Updates

The remote Windows host is missing multiple security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited the vulnerability...

10CVSS7.5AI score0.90026EPSS
Exploits91References61
Tenable Nessus
Tenable Nessus
added 2017/06/13 12:0 a.m.774 views

KB4022727: Windows 10 Version 1507 June 2017 Cumulative Update

The remote Windows 10 version 1507 host is missing security update KB4022727. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in Windows Hyper-V instruction emulation due to a failure to properly enforce privilege levels. An attacker on a...

10CVSS7.6AI score0.90026EPSS
Exploits89References65
Tenable Nessus
Tenable Nessus
added 2017/06/13 12:0 a.m.1616 views

KB4022715: Windows 10 Version 1607 and Windows Server 2016 June 2017 Cumulative Update

The remote Windows host is missing security update KB4022715. It is, therefore, affected by multiple vulnerabilities : - Multiple security bypass vulnerabilities exist in Device Guard. A local attacker can exploit these, via a specially crafted script, to bypass the Device Guard Code Integrity...

10CVSS7.4AI score0.90026EPSS
Exploits94References75
Microsoft KB
Microsoft KB
added 2015/11/10 12:0 a.m.15 views

Cumulative update for Windows 10: November 10, 2015

None None...

6.1AI score
Exploits0
Microsoft KB
Microsoft KB
added 2015/11/10 12:0 a.m.46 views

Cumulative update for Windows 10 Version 1511: November 10, 2015

None None...

6.1AI score
Exploits0
Rows per page
Query Builder