2974 matches found
CVE-2022-21907
CVE-2022-21907 concerns the HTTP Protocol Stack (http.sys) in Windows, enabling remote code execution via specially crafted packets. Public documentation and PoCs indicate impact on Windows 10 (notably 2004) and Windows Server variants, with multiple exploits and PoCs surfacing publicly. Mitigati...
CVE-2015-1769
CVE-2015-1769 is a Windows privilege-escalation issue in the Mount Manager where symbolic link handling can be abused by inserting a malicious USB device. The vulnerability affects multiple Windows client/server releases (Vista SP2, 2008 SP2/R2, 7 SP1, 8/8.1, 2012/2012 R2, RT/RT 8.1, 10) and is c...
CVE-2015-2426
CVE-2015-2426 is a Windows OpenType Font Driver vulnerability (ATMFD.DLL) that causes a pool/heap overflow when processing OpenType fonts, allowing remote code execution. The issue arises from a flawed handling of font data (notably the Class1Count field in the GPOS/CFF paths) where an invalid ze...
CVE-2018-3639
CVE-2018-3639 is a speculative execution side‑channel vulnerability (SSB) that can leak memory via speculative stores. The Connected ALMA doc notes a mitigation: SSB is disabled by the new alt-java launcher, reducing impact at the cost of performance, and it references OpenJDK 8u282 as part of th...
CVE-2018-5391
CVE-2018-5391 affects the Linux kernel (3.9+) via FragmentSmack: IP fragment reassembly can be exploited to exhaust CPU and cause DoS. Citrix/Arista/CentOS advisories describe affected products and kernel updates; CentOS/RH advisories list patched versions and note the vulnerability stems from fr...
CVE-2022-26809
CVE-2022-26809 is a Windows RPC Runtime Remote Code Execution vulnerability. Public material in the connected documents indicates an unauthenticated remote attacker can trigger code execution by sending a crafted RPC call, with the real vulnerability located in OSF_CASSOCIATION::ProcessBindAckOrN...
CVE-2019-1125
CVE-2019-1125 is a Linux kernel local information-disclosure vulnerability related to SWAPGS speculation (Spectre variant 1). The issue allows a local attacker to read kernel/privileged memory through speculative execution on most x86 processors; mitigation relies on memory barriers to limit spec...
CVE-2023-21752
CVE-2023-21752 is a Windows Backup Service Elevation of Privilege vulnerability affecting Windows 11 (build 10.0.22000). Exploitation is possible to gain SYSTEM privileges, potentially delete data or render the service unavailable. A public PoC and details exist (Exploit-DB entry: Windows 11 10.0...
CVE-2022-29130
Technical details about CVE-2022-29130 are not provided in the connected documents. Publicly available information in the initial entry is limited to high‑level descriptors; no product/version/impact/fix specifics are included here. Monitor for official updates.
CVE-2020-24588
The CVE-2020-24588 entry relates to the 802.11 Wi‑Fi fragmentation/ A‑MSDU handling issue where the plaintext QoS header flag isn’t authenticated, enabling an attacker to inject packets by sending non‑SSP A‑MSDU frames (FragAttacks). Connected Astra Linux advisories describe this as a variant of ...
CVE-2022-30209
Technical details (affected products, exploit vector, root cause, and remediation) are not provided in the supplied documents. Monitor for updates from official sources.
CVE-2020-12695
CVE-2020-12695 (CallStranger) concerns UPnP SUBSCRIBE handling in the Open Connectivity Foundation specification prior to 2020-04-17. The root cause is a controllable Callback header that can trigger HTTP connections to arbitrary URLs, enabling SSRF-like behavior and potentially leading to amplif...
CVE-2018-0886
CVE-2018-0886 denotes a CredSSP remote code execution vulnerability in Windows authentication flows (Credential Security Support Provider protocol). The core issue is how CredSSP validates requests during authentication, enabling potential code execution via an RDP-related interaction. Public adv...
CVE-2022-32230
CVE-2022-32230 affects Microsoft Windows SMBv3 prior to the April 2022 patch set. A malformed FileNormalizedNameInformation SMBv3 request sent over a named pipe can trigger a null pointer dereference in the Windows kernel, resulting in a Blue Screen of Death (BSOD) and reboot of the SMBv3 server....
CVE-2019-1181
CVE-2019-1181 is a remote code execution vulnerability in Windows Remote Desktop Services (RDS/Terminal Services). The Huawei advisory confirms the issue as one of four RC vulnerabilities in RDS where an unauthenticated, network-based attacker can exploit by sending specially crafted RDP requests...
CVE-2022-24508
CVE-2022-24508 is a Windows SMBv3 client/server remote code execution vulnerability. The issue resides in the SMBv3 compression feature introduced in newer Windows builds and can enable code execution on a vulnerable system when exploited over a network. Exploitation requires authentication and c...
CVE-2016-0128
Technical details about CVE-2016-0128 are not provided in the connected documents. The initial description mentions Badlock affecting Windows SAM/LSAD, but no explicit exploit vectors, affected products, or fixes are given here. Monitor for updates.
CVE-2020-1206
CVE-2020-1206 is an information disclosure vulnerability in SMBv3 (Microsoft Server Message Block 3.1.1) that affects the SMBv3 client/server handling of certain requests. The connected documents describe an information disclosure in SMBv3 and note that attackers can chain SMBleed with SMBGhost t...
CVE-2022-22012
Technical details about CVE-2022-22012 are not publicly provided in the connected documents. The materials mention updates and mitigations but do not specify affected products/versions or remediation for this CVE. Monitor for updates.
CVE-2022-21990
CVE-2022-21990 — Remote Desktop Client RCE . The connected sources confirm a remote code execution vulnerability in the Windows Remote Desktop Client triggered when a user connects to a malicious RDP server. This is a client-side flaw exploited via a crafted server, enabling code execution on the...
CVE-2023-36589
The CVE-2023-36589 entry corresponds to a Microsoft Message Queuing (MSMQ) Remote Code Execution vulnerability. Public records in connected documents confirm MSMQ is the affected component, with a local attack vector and user interaction required. The CVSS 3.1 base metrics (AV:L, AC:L, PR:L, UI:R...
CVE-2020-0645
CVE-2020-0645 corresponds to a tampering vulnerability in Microsoft IIS Server due to improper handling of malformed HTTP request headers. Affected component: IIS Server within Microsoft Windows Server/Windows. Impact (as stated in connected sources): an attacker could tamper with responses retur...
CVE-2023-36590
Technical details about CVE-2023-36590 (affected MSMQ RCE) are not publicly provided in the supplied connected documents. Please monitor for updates from official advisories and vulnerability databases for affected products, vulnerable components, impact, and fixes.
CVE-2023-36591
Technical details (affected product versions, root cause, exploit information) are not publicly available in the provided documents; monitor for updates from official advisories and vendor advisories.
CVE-2022-21894
CVE-2022-21894 is a Secure Boot security feature bypass exploited by the BlackLotus UEFI bootkit. It bypasses Secure Boot to load malicious EFI components, enabling persistence, disabling HVCI and Defender, and prior to OS load. Attack requires elevated privileges or physical access; bootkit impl...
CVE-2023-36697
Technical details about CVE-2023-36697 are not publicly available in the provided documents; monitor for updates.
CVE-2022-22048
Technical details about CVE-2022-22048 are not publicly provided in the supplied documents. No affected products, root cause, impact, or fixes are included here. Monitor for updates.
CVE-2023-36581
CVE-2023-36581 corresponds to a Denial of Service vulnerability in Microsoft Message Queuing (MSMQ). Public records in the connected CNVD entry describe a MSMQ DoS issue, but the available documents do not provide concrete technical details such as affected versions, root cause, specific exploit ...
CVE-2023-36593
Technical details for CVE-2023-36593 are not publicly provided in the supplied documents. Monitor for updates from official advisories (MSRC/NVD) to obtain affected products, impact, and fixes.
CVE-2023-36592
CVE-2023-36592 concerns Microsoft Message Queuing (MSMQ) Remote Code Execution. Connected CNVD-2023-84129 notes a remote code execution vulnerability in MSMQ. The CVSS metrics in the Initial document indicate Local attack vector, Low privileges required, User interaction, and high impact across c...
CVE-2019-1365
Public documents provided do not include concrete technical details for CVE-2019-1365 (affected product, root cause, impact or fix). Monitor for updates in the connected sources; the current set lacks sufficient information to assess vulnerabilities.
CVE-2019-0836
CVE-2019-0836 is a Windows local privilege-escalation vulnerability tied to the LUAFV driver (luafv.sys). CIRCL sightings confirm in-the-wild exploitation, with exploits documented (e.g., exploit-db entries 46718). The CVE entry identifies an elevation-of-privilege flaw when Windows improperly ha...
CVE-2023-36606
Technical details for CVE-2023-36606 are not publicly available in the provided documents. Monitor for updates from vendor/security advisories.
CVE-2022-24481
CVE-2022-24481 is a Windows Common Log File System Driver elevation-of-privilege vulnerability. The connected exploit reports describe a memory/counterpart corruption involving CLFS_CONTAINER_CONTEXT.pContainer that can be triggered from CClfsContainer::Close by modifying CLFS_BASE_RECORD_HEADER....
CVE-2022-24503
CVE-2022-24503 is a Remote Desktop Protocol Client Information Disclosure vulnerability. Connected sources indicate it affects Windows Remote Desktop Client and can be triggered over the network with no authentication and no user interaction, exposing partial confidentiality (C:L). The issue is t...
CVE-2021-34481
CVE-2021-34481 is a Windows Print Spooler remote code execution vulnerability. A low-privilege user could stage and install vulnerable printer drivers into the driver store and then escalate to SYSTEM by exploiting the spooler’s driver-install path. Affected scope includes Windows 8.1 and newer; ...
CVE-2021-1648
CVE-2021-1648 is a Windows splwow64 Elevation of Privilege vulnerability. The affected component is splwow64 (Printer subsystem interaction with 32-bit print path). The CVE is publicly documented with a high-severity CVSS, reflecting local access and privilege escalation potential. The connected ...
CVE-2023-36582
Technical details about CVE-2023-36582 are not publicly available in the provided connected documents. Monitor for updates from official advisories.
CVE-2023-36583
CVE-2023-36583 is a Microsoft Message Queuing (MSMQ) Remote Code Execution vulnerability. The NVD entry lists a CVSS v3.1 base score of 7.3 (HIGH) with LOCAL attack vector, LOW attack complexity, LOW privileges required, user interaction needed, and a scope of UNCHANGED. The impact is HIGH on con...
CVE-2022-23288
CVE-2022-23288 is a Windows vulnerability in the DWM Core Library identified as an elevation of privilege (local) issue affecting the Windows DWM Core Library. The connected documents confirm the affected component as the Windows DWM Core Library and describe the impact as elevation of privileges...
CVE-2022-26928
Technical details about CVE-2022-26928 are not publicly provided in the supplied documents. The entries only label it as a Windows Photo Import API elevation-of-privilege issue. Monitor for updates from Microsoft/NVD for remediation and impact.
CVE-2021-26414
CVE-2021-26414 is a Windows DCOM Server Security Feature Bypass. Connected docs confirm a DCOM hardening series (phase 3) and note mitigations: after applying relevant updates, DCOM hardening changes are permanent and cannot be disabled via registry. Microsoft guidance recommends enabling DCOM au...
CVE-2017-0055
CVE-2017-0055 refers to a cross-site scripting (XSS) elevation-of-privilege vulnerability in Microsoft Internet Information Services (IIS). The issue affects IIS on multiple Windows platforms (Vista through Windows Server 2016) and allows a remote attacker to craft a request that can execute scri...
CVE-2020-15707
CVE-2020-15707 is a GRUB2 bootloader vulnerability (initrd size handling) causing a heap-based buffer overflow via integer overflow in initrd processing. The flaw affects GRUB2 2.04 and earlier as deployed in multiple distros (Debian, Red Hat, Ubuntu) and can enable arbitrary code execution durin...
CVE-2017-8628
CVE-2017-8628 concerns a spoofing vulnerability in Microsoft’s Bluetooth driver stack for Windows platforms. The flaw allows an attacker within physical proximity and with Bluetooth enabled to initiate a Bluetooth connection and perform a man-in-the-middle attack, potentially forcing traffic thro...
CVE-2020-1269
Technical details for CVE-2020-1269 are not provided in the supplied documents. Monitor for updates from official sources.
CVE-2022-34721
CVE-2022-34721 is a Windows Internet Key Exchange (IKE) Protocol Extensions remote code execution vulnerability. The issue affects Windows systems with IPSec enabled and is exploitable via specially crafted IP packets targeting IKEv1 (IKEv2 is not affected). The flaw could allow an unauthenticate...
CVE-2020-15706
CVE-2020-15706 affects GRUB2 (2.04 and earlier) and is a race-condition/use-after-free in grub_script_function_create() triggered by redefining a function during execution, leading to arbitrary code execution and Secure Boot restriction bypass. Remediation is to upgrade to patched GRUB2 packages ...
CVE-2022-30133
Technical details about CVE-2022-30133 (affected product, exploit, impact, fix) are not provided in the supplied documents. Monitor for official updates from Microsoft for patch information and vulnerable components.
CVE-2021-34514
CVE-2021-34514 is identified as a Windows Kernel elevation-of-privilege vulnerability. The available connected documents confirm a Windows Kernel issue with elevation of privilege but do not provide concrete technical details (root cause, affected component/version, exploit specifics, or a remedi...