Lucene search
K

25 matches found

Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.3 views

PT-2026-2683

Name of the Vulnerable Software and Affected Versions Windows Kerberos affected versions not specified Description The use of a broken or risky cryptographic algorithm in Windows Kerberos can allow an authorized attacker to disclose information locally. This issue allows attackers to obtain...

5.5CVSS6.1AI score0.00363EPSS
Exploits0References26
RedhatCVE
RedhatCVE
added 2025/05/22 5:40 p.m.9 views

CVE-2020-1359

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1384...

7.8CVSS6.9AI score0.00762EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:18 p.m.6 views

CVE-2020-1384

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359...

7.8CVSS6.9AI score0.00762EPSS
Exploits0
NVD
NVD
added 2025/02/12 6:15 p.m.18 views

CVE-2025-25199

go-crypto-winnative Go crypto backend for Windows using Cryptography API: Next Generation CNG. Prior to commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41, calls to cng.TLS1PRF don't release the key handle, producing a small memory leak every time. Commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41...

7.5CVSS0.0139EPSS
Exploits0References2
CVE
CVE
added 2025/02/12 5:49 p.m.142 views

CVE-2025-25199

CVE-2025-25199 concerns the go-crypto-winnative Go crypto backend for Windows (CNG). Root cause: prior to commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41, calls to cng.TLS1PRF did not release the key handle, causing a small memory leak per use. The fix is included in the Microsoft Go builds of ve...

7.5CVSS7.4AI score0.0139EPSS
Exploits0References2
OSV
OSV
added 2022/11/09 10:15 p.m.2 views

CVE-2022-41125

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability...

7.8CVSS7.3AI score0.03021EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2020/07/23 12:0 a.m.7 views

The vulnerability of the Windows Cryptography Next Generation (CNG) service on Windows operating systems, which allows attackers to escalate their privileges

The vulnerability of the Windows Cryptography Next Generation CNG service for Windows operating systems exists due to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created application...

7CVSS7.2AI score0.00762EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/07/15 12:0 a.m.61 views

Microsoft Windows Multiple Vulnerabilities (KB4565524)

This host is missing a critical security update according to Microsoft KB4565524 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.92178EPSS
Exploits21References3
OSV
OSV
added 2020/07/14 11:15 p.m.2 views

CVE-2020-1359

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1384...

7.8CVSS7.1AI score0.00762EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2020/06/09 7:0 a.m.99 views

June 9, 2020—KB4561621 (OS Build 17134.1550)

None None...

9.3CVSS6.8AI score0.59518EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2020/03/10 7:0 a.m.138 views

March 10, 2020—KB4541510 (Monthly Rollup)

None None...

9.3CVSS6.8AI score0.42524EPSS
Exploits8
BDU FSTEC
BDU FSTEC
added 2020/03/10 12:0 a.m.5 views

The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information

The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

5.5CVSS6.2AI score0.01614EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/02/27 12:0 a.m.6 views

The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information

The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

5.5CVSS6.2AI score0.01614EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/02/24 12:0 a.m.7 views

The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information

The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...

5.5CVSS6.2AI score0.01614EPSS
Exploits0References4
Microsoft KB
Microsoft KB
added 2020/02/11 8:0 a.m.109 views

February 11, 2020—KB4537803 (Security-only update)

None None...

9.3CVSS6.8AI score0.30863EPSS
Exploits13
Microsoft KB
Microsoft KB
added 2019/11/12 8:0 a.m.468 views

November 12, 2019—KB4525243 (Monthly Rollup)

None None...

9.9CVSS6.8AI score0.75859EPSS
Exploits32
Microsoft KB
Microsoft KB
added 2019/11/12 8:0 a.m.93 views

November 12, 2019—KB4525253 (Security-only update)

None None...

9.9CVSS6.8AI score0.75859EPSS
Exploits29
Microsoft KB
Microsoft KB
added 2019/11/12 8:0 a.m.934 views

October 8, 2019—KB4520005 (Monthly Rollup)

None None...

9.9CVSS6.8AI score0.76451EPSS
Exploits6
Microsoft KB
Microsoft KB
added 2019/09/10 7:0 a.m.142 views

September 10, 2019—KB4515384 (OS Build 18362.356)

None None...

9.3CVSS6.8AI score0.61314EPSS
Exploits8
Microsoft KB
Microsoft KB
added 2019/06/11 7:0 a.m.280 views

June 11, 2019—KB4503293 (OS Build 18362.175)

None None...

9.3CVSS6.8AI score0.48043EPSS
Exploits14
Rows per page
Query Builder