25 matches found
PT-2026-2683
Name of the Vulnerable Software and Affected Versions Windows Kerberos affected versions not specified Description The use of a broken or risky cryptographic algorithm in Windows Kerberos can allow an authorized attacker to disclose information locally. This issue allows attackers to obtain...
CVE-2020-1359
An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1384...
CVE-2020-1384
An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359...
CVE-2025-25199
go-crypto-winnative Go crypto backend for Windows using Cryptography API: Next Generation CNG. Prior to commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41, calls to cng.TLS1PRF don't release the key handle, producing a small memory leak every time. Commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41...
CVE-2025-25199
CVE-2025-25199 concerns the go-crypto-winnative Go crypto backend for Windows (CNG). Root cause: prior to commit f49c8e1379ea4b147d5bff1b3be5b0ff45792e41, calls to cng.TLS1PRF did not release the key handle, causing a small memory leak per use. The fix is included in the Microsoft Go builds of ve...
CVE-2022-41125
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability...
The vulnerability of the Windows Cryptography Next Generation (CNG) service on Windows operating systems, which allows attackers to escalate their privileges
The vulnerability of the Windows Cryptography Next Generation CNG service for Windows operating systems exists due to errors in memory object handling. Exploiting this vulnerability can allow an attacker to increase their privileges through a specially created application...
Microsoft Windows Multiple Vulnerabilities (KB4565524)
This host is missing a critical security update according to Microsoft KB4565524 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-1359
An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation CNG Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1384...
June 9, 2020—KB4561621 (OS Build 17134.1550)
None None...
March 10, 2020—KB4541510 (Monthly Rollup)
None None...
The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information
The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...
The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information
The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...
The vulnerability of the Windows Cryptography Next Generation (CNG) service for Windows operating systems, which allows a hacker to compromise and disclose protected information
The vulnerability of the Windows Cryptography Next Generation CNG service on Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created application...
February 11, 2020—KB4537803 (Security-only update)
None None...
November 12, 2019—KB4525243 (Monthly Rollup)
None None...
November 12, 2019—KB4525253 (Security-only update)
None None...
October 8, 2019—KB4520005 (Monthly Rollup)
None None...
September 10, 2019—KB4515384 (OS Build 18362.356)
None None...
June 11, 2019—KB4503293 (OS Build 18362.175)
None None...