PT-2026-2683

Name of the Vulnerable Software and Affected Versions Windows Kerberos affected versions not specified Description The use of a broken or risky cryptographic algorithm in Windows Kerberos can allow an authorized attacker to disclose information locally. This issue allows attackers to obtain...

CVE-2020-1359

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1384...

CVE-2020-1384

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359...

CVE-2025-25199

go-crypto-winnative Go crypto backend for Windows using Cryptography API: Next Generation CNG. Prior to commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41, calls to cng.TLS1PRF don't release the key handle, producing a small memory leak every time. Commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41...

CVE-2025-25199

CVE-2025-25199 concerns the go-crypto-winnative Go crypto backend for Windows (CNG). Root cause: prior to commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41, calls to cng.TLS1PRF did not release the key handle, causing a small memory leak per use. The fix is included in the Microsoft Go builds of ve...

CVE-2022-41125

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability...

The vulnerability of the Windows Cryptography Next Generation (CNG) service on Windows operating systems, which allows attackers to escalate their privileges

The vulnerability of the Windows Cryptography Next Generation CNG service for Windows operating systems exists due to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created application...

Microsoft Windows Multiple Vulnerabilities (KB4565524)

This host is missing a critical security update according to Microsoft KB4565524 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-1359

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1384...

June 9, 2020—KB4561621 (OS Build 17134.1550)

June 9, 2020—KB4561621 OS Build 17134.1550 IMPORTANT We have been evaluating the public health situation, and we understand this is impacting our customers. In response to these challenges, we are prioritizing our focus on security updates. Starting in May 2020, we are pausing all optional...

March 10, 2020—KB4541510 (Monthly Rollup)

March 10, 2020—KB4541510 Monthly Rollup NEW As of February 11, 2020, Internet Explorer 10 is no longer in support. To get Internet Explorer 11 for Windows Server 2012 or Windows 8 Embedded Standard, see KB4492872. Install one of the following applicable updates to stay updated with the latest...

The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information

The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information

The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information

The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

February 11, 2020—KB4537803 (Security-only update)

February 11, 2020—KB4537803 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Security updates to Microsoft Graphics Component, Windows Input and Composition, Windows Media, Windows Shell, Windows Fundamentals, Windows Cryptograph...

October 8, 2019—KB4520005 (Monthly Rollup)

October 8, 2019—KB4520005 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4516041released September 24, 2019 and addresses the following issues: Addresses an issue with applications and printer drivers that utilize the Window...

November 12, 2019—KB4525243 (Monthly Rollup)

November 12, 2019—KB4525243 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4520012 released October 15, 2019 and addresses the following issues: Addresses an issue that prevents a 16-bit Visual Basic 3 VB3 application or oth...

November 12, 2019—KB4525253 (Security-only update)

November 12, 2019—KB4525253 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Provides protections against the Intel® Processor Machine Check Error vulnerability CVE-2018-12207. Use the registry setting as described in the Guidanc...

September 10, 2019—KB4515384 (OS Build 18362.356)

September 10, 2019—KB4515384 OS Build 18362.356 Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard. Note This release also contains updates for Microsoft HoloLens OS Build 18362.1031 released September 10, 2019. Microsoft will release an upda...

June 11, 2019—KB4503293 (OS Build 18362.175)

June 11, 2019—KB4503293 OS Build 18362.175 Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard. Notes: This release also contains updates for Microsoft HoloLens OS Build 18362.1020 released June 11, 2019. Microsoft will release an update...