EUVD-2022-44001

Malicious code in bioql PyPI...

CVE-2022-40733

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboo...

CVE-2022-40732

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboo...

CVE-2022-40733

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboo...

CVE-2022-40732

CVE-2022-40732 affects Microsoft Windows DirectComposition in the win32kbase.sys driver (Windows 11 10.0.22000.593; Windows Server 2022 10.0.20348.643). Talos details a NULL pointer dereference in DirectComposition::CCompositionSurfaceBitmapMarshaler when setting integer property 0x3, which leads...

Microsoft win32kbase.sys 代码问题漏洞

Microsoft win32kbase.sys is a driver from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft win32kbase.sys that stems from the win32kbase.sys driver containing an access conflict vulnerability. An attacker exploiting this vulnerability could cause a reboot via a specially...

PT-2024-11633 · Microsoft · Windows 11 +1

Name of the Vulnerable Software and Affected Versions: Windows 11 version 10.0.22000.593 Windows Server 2022 version 10.0.20348.643 Description: An access violation issue exists in the DirectComposition functionality of the win32kbase.sys driver. A specially-crafted set of syscalls can lead to a...

PT-2024-11634 · Microsoft · Windows 11 +1

Name of the Vulnerable Software and Affected Versions: Windows 11 version 10.0.22000.593 Windows Server 2022 version 10.0.20348.643 Description: An access violation vulnerability exists in the DirectComposition functionality of the win32kbase.sys driver. A specially-crafted set of syscalls can le...

Microsoft win32kbase.sys 代码问题漏洞

Microsoft win32kbase.sys is a driver from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft win32kbase.sys that stems from the win32kbase.sys driver containing an access conflict vulnerability. An attacker exploiting this vulnerability could cause a reboot via a specially...

(Pwn2Own) Microsoft Windows win32kbase Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kbase.sys...

Microsoft DirectComposition CCompositionSurfaceBitmapMarshaler null pointer dereference vulnerability

Talos Vulnerability Report TALOS-2022-1514 Microsoft DirectComposition CCompositionSurfaceBitmapMarshaler null pointer dereference vulnerability August 16, 2022 CVE Number CVE-2022-40732 SUMMARY An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver...