Lucene search
K

16 matches found

CVE
CVE
added 2013/12/11 12:0 a.m.3257 views

CVE-2013-3900

CVE-2013-3900 describes a remote code execution in the WinVerifyTrust Authenticode verification for PE files. An attacker could modify a signed executable to execute code without invalidating the signature, potentially gaining full control of the system. Microsoft republished this CVE in the Secu...

8.8CVSS7.4AI score0.44647EPSS
In wildWeb
CVE
CVE
added 2020/03/12 3:48 p.m.2355 views

CVE-2020-0796

CVE-2020-0796 (SMBGhost) is a Windows SMBv3 Client/Server remote code execution vulnerability. The CIRCL sighting notes publicly available PoC activity and a Metasploit module trajectory, indicating a pre-auth RCE path via SMBv3 processing. References cited include PoC/exploit context for SMBGhos...

10CVSS9.1AI score0.9981EPSS
In wild
CVE
CVE
added 2020/03/12 3:48 p.m.1545 views

CVE-2020-0787

CVE-2020-0787 is a privilege-escalation flaw in Microsoft Windows BITS (Background Intelligent Transfer Service) caused by improper handling of symbolic links. The issue can allow an attacker who can run code on a vulnerable host to escalate to system-level privileges and execute arbitrary code. ...

7.8CVSS8.5AI score0.42524EPSS
In wild
CVE
CVE
added 2021/02/25 11:1 p.m.1529 views

CVE-2021-1732

CVE-2021-1732 is a Windows Win32k local privilege escalation vulnerability. The root cause is a flaw in how the WndExtra field is handled as an offset, enabling an out-of-bounds write that grants SYSTEM privileges. Public exploit activity exists in multiple GitHub repos that demonstrate a local p...

7.8CVSS8AI score0.78376EPSS
In wild
CVE
CVE
added 2020/11/11 6:48 a.m.1366 views

CVE-2020-17087

CVE-2020-17087 is a Windows Kernel Local Privilege Escalation vulnerability tied to a heap-based overflow in cng.sys. Connected exploit sources describe a local-vector attack requiring initial code execution, then abusing an IOCTL to .\\.GLOBALROOT\Device\Cng with a crafted size parameter that ca...

7.8CVSS8.3AI score0.05387EPSS
In wild
CVE
CVE
added 2020/01/14 11:11 p.m.1364 views

CVE-2020-0601

The CVE-2020-0601 issue affects Windows CryptoAPI (Crypt32.dll) and its ECC certificate validation, enabling a spoofing attack where a forged code-signing certificate could make malware appear trusted. Affected platforms include Windows 10 and Windows Server 2016/2019, with the vulnerability tied...

8.1CVSS7.6AI score0.89436EPSS
In wild
CVE
CVE
added 2020/06/09 7:43 p.m.1301 views

CVE-2020-0986

Technical details about CVE-2020-0986 are not publicly available in the provided connected documents. Please monitor for updates; current materials mention malware references in related EUVD entries but do not disclose affected products, vulnerable components, impact, or fixes.

7.8CVSS7.7AI score0.15932EPSS
In wild
CVE
CVE
added 2020/04/15 3:13 p.m.1243 views

CVE-2020-1020

CVE-2020-1020 describes a remote code execution in Microsoft Windows via the Windows Adobe Font Manager Library when handling specially crafted Adobe Type 1 PostScript fonts. The flaw affects Windows versions other than Windows 10, with exploitation enabling code execution remotely after processi...

8.8CVSS8.2AI score0.65037EPSS
In wild
CVE
CVE
added 2020/02/11 9:22 p.m.1228 views

CVE-2020-0683

CVE-2020-0683 is a Windows Installer Elevation of Privilege vulnerability. The issue occurs when MSI packages process symbolic links, allowing a local attacker to bypass access restrictions and add or remove files. Technical details across connected sources confirm the affected component (Windows...

7.8CVSS8AI score0.07667EPSS
In wild
CVE
CVE
added 2020/05/21 10:52 p.m.1210 views

CVE-2020-1054

CVE-2020-1054 is a Win32k kernel-mode elevation of privilege vulnerability in Windows where the Windows kernel-driver mishandles memory objects. The CVE entry is distinct from CVE-2020-1143. Public references in the provided set show an exploit for CVE-2020-1054 (Out-of-bounds write in Microsoft ...

7.8CVSS7.8AI score0.52778EPSS
In wild
CVE
CVE
added 2020/08/17 7:13 p.m.1151 views

CVE-2020-1464

CVE-2020-1464 is a Windows spoofing vulnerability where improper validation of code-signing signatures allows bypassing security features and loading improperly signed files. It affects Windows and was actively exploited in the wild, per reports linked to the August 2020 Patch Tuesday. The core i...

7.8CVSS7.1AI score0.41131EPSS
In wild
CVE
CVE
added 2021/04/13 7:32 p.m.1148 views

CVE-2021-28310

CVE-2021-28310 is a Win32k Elevation of Privilege vulnerability in Microsoft Windows. Project Zero’s 2021 review notes Win32k 0-day activity among in-the-wild exploits, with CVE-2021-28310 listed as one of the Windows 0-days targeted in 2021 (alongside other Win32k issues). The CVE entry is suppo...

7.8CVSS8.2AI score0.0833EPSS
In wild
CVE
CVE
added 2020/04/15 3:12 p.m.1098 views

CVE-2020-0938

CVE-2020-0938 affects the Windows Adobe Font Manager Library by improperly handling specially crafted multi-master Font 1 PostScript fonts. The root cause is a vulnerability in the font parser that can allow remote code execution when processing crafted documents. For all Windows versions except ...

7.8CVSS8.2AI score0.69166EPSS
In wild
CVE
CVE
added 2020/04/15 3:13 p.m.1089 views

CVE-2020-1027

CVE-2020-1027 is a Windows privilege-escalation vulnerability affecting Windows kernel memory handling and the CSRSS subsystem. The Windows kernel path (memory object handling) enabled local privilege escalation via write-what-where style abuse in kernel fault paths, while the CSRSS path allowed ...

7.8CVSS8AI score0.04447EPSS
In wild
CVE
CVE
added 2020/01/14 11:11 p.m.1071 views

CVE-2020-0638

CVE-2020-0638 is a Windows Update Notification Manager elevation-of-privilege vulnerability. An attacker who already has code execution on the target could exploit the flaw by running a crafted program to elevate privileges, due to how the Update Notification Manager handles files. The issue is l...

7.8CVSS8.6AI score0.02928EPSS
In wild
CVE
CVE
added 2023/02/03 4:53 p.m.70 views

CVE-2022-38396

CVE-2022-38396 concerns HP factory preinstalled Windows 10 images (20H2 and earlier). The issue is described as elevation of privilege by executing certain files outside the restricted path. The remediation is noted as implemented starting with Windows 10 21H2 (Oct 31, 2021). HP’s advisory refere...

7.8CVSS7.9AI score0.00407EPSS