Windows 10 1809 Security Vulnerabilities - 2023

CVE-2023-36726

Windows Internet Key Exchange (IKE) Extension Elevation of Privilege Vulnerability

CVE-2023-36729

Named Pipe File System Elevation of Privilege Vulnerability

CVE-2023-36731

Win32k Elevation of Privilege Vulnerability

CVE-2023-36732

Win32k Elevation of Privilege Vulnerability

CVE-2023-36743

Win32k Elevation of Privilege Vulnerability

CVE-2023-36776

Win32k Elevation of Privilege Vulnerability

CVE-2023-36802

Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability

CVE-2023-36803

Windows Kernel Information Disclosure Vulnerability

CVE-2023-36804

Windows GDI Elevation of Privilege Vulnerability

CVE-2023-36805

Windows MSHTML Platform Security Feature Bypass Vulnerability

CVE-2023-36871

Azure Active Directory Security Feature Bypass Vulnerability

CVE-2023-36874

Windows Error Reporting Service Elevation of Privilege Vulnerability

CVE-2023-36882

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

CVE-2023-36884

Windows Search Remote Code Execution Vulnerability

CVE-2023-36889

Windows Group Policy Security Feature Bypass Vulnerability

CVE-2023-36900

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2023-36902

Windows Runtime Remote Code Execution Vulnerability

CVE-2023-36903

Windows System Assessment Tool Elevation of Privilege Vulnerability

CVE-2023-36904

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2023-36905

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

CVE-2023-36906

Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2023-36907

Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2023-36908

Windows Hyper-V Information Disclosure Vulnerability

CVE-2023-36909

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2023-36910

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

CVE-2023-36911

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

CVE-2023-36912

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2023-36913

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2023-38039

When curl retrieves an HTTP response, it stores the incoming headers so thatthey can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it wouldaccept in a response, allowing a malicious server to stream an endless seriesof headers and...

CVE-2023-38139

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-38140

Windows Kernel Information Disclosure Vulnerability

CVE-2023-38141

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-38142

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-38143

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2023-38144

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2023-38147

Windows Miracast Wireless Display Remote Code Execution Vulnerability

CVE-2023-38149

Windows TCP/IP Denial of Service Vulnerability

CVE-2023-38154

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-38159

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2023-38160

Windows TCP/IP Information Disclosure Vulnerability

CVE-2023-38161

Windows GDI Elevation of Privilege Vulnerability

CVE-2023-38166

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-38172

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2023-38184

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2023-38254

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxyhandshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allowthat to resolve the address instead of it getting done by curl itself, themaximum length that host name can be is 255 bytes. If the host name is...

CVE-2023-41765

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41766

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

CVE-2023-41767

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41768

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability