2198 matches found
CVE-2015-1769
CVE-2015-1769 is a Windows privilege-escalation issue in the Mount Manager where symbolic link handling can be abused by inserting a malicious USB device. The vulnerability affects multiple Windows client/server releases (Vista SP2, 2008 SP2/R2, 7 SP1, 8/8.1, 2012/2012 R2, RT/RT 8.1, 10) and is c...
CVE-2015-2426
CVE-2015-2426 is a Windows OpenType Font Driver vulnerability (ATMFD.DLL) that causes a pool/heap overflow when processing OpenType fonts, allowing remote code execution. The issue arises from a flawed handling of font data (notably the Class1Count field in the GPOS/CFF paths) where an invalid ze...
CVE-2018-3639
CVE-2018-3639 is a speculative execution side‑channel vulnerability (SSB) that can leak memory via speculative stores. The Connected ALMA doc notes a mitigation: SSB is disabled by the new alt-java launcher, reducing impact at the cost of performance, and it references OpenJDK 8u282 as part of th...
CVE-2018-5391
CVE-2018-5391 affects the Linux kernel (3.9+) via FragmentSmack: IP fragment reassembly can be exploited to exhaust CPU and cause DoS. Citrix/Arista/CentOS advisories describe affected products and kernel updates; CentOS/RH advisories list patched versions and note the vulnerability stems from fr...
CVE-2022-26809
CVE-2022-26809 is a Windows RPC Runtime Remote Code Execution vulnerability. Public material in the connected documents indicates an unauthenticated remote attacker can trigger code execution by sending a crafted RPC call, with the real vulnerability located in OSF_CASSOCIATION::ProcessBindAckOrN...
CVE-2019-1125
CVE-2019-1125 is a Linux kernel local information-disclosure vulnerability related to SWAPGS speculation (Spectre variant 1). The issue allows a local attacker to read kernel/privileged memory through speculative execution on most x86 processors; mitigation relies on memory barriers to limit spec...
CVE-2023-21752
CVE-2023-21752 is a Windows Backup Service Elevation of Privilege vulnerability affecting Windows 11 (build 10.0.22000). Exploitation is possible to gain SYSTEM privileges, potentially delete data or render the service unavailable. A public PoC and details exist (Exploit-DB entry: Windows 11 10.0...
CVE-2022-29130
Technical details about CVE-2022-29130 are not provided in the connected documents. Publicly available information in the initial entry is limited to high‑level descriptors; no product/version/impact/fix specifics are included here. Monitor for official updates.
CVE-2020-24588
The CVE-2020-24588 entry relates to the 802.11 Wi‑Fi fragmentation/ A‑MSDU handling issue where the plaintext QoS header flag isn’t authenticated, enabling an attacker to inject packets by sending non‑SSP A‑MSDU frames (FragAttacks). Connected Astra Linux advisories describe this as a variant of ...
CVE-2022-30209
Technical details (affected products, exploit vector, root cause, and remediation) are not provided in the supplied documents. Monitor for updates from official sources.
CVE-2020-12695
CVE-2020-12695 (CallStranger) concerns UPnP SUBSCRIBE handling in the Open Connectivity Foundation specification prior to 2020-04-17. The root cause is a controllable Callback header that can trigger HTTP connections to arbitrary URLs, enabling SSRF-like behavior and potentially leading to amplif...
CVE-2018-0886
CVE-2018-0886 denotes a CredSSP remote code execution vulnerability in Windows authentication flows (Credential Security Support Provider protocol). The core issue is how CredSSP validates requests during authentication, enabling potential code execution via an RDP-related interaction. Public adv...
CVE-2019-1181
CVE-2019-1181 is a remote code execution vulnerability in Windows Remote Desktop Services (RDS/Terminal Services). The Huawei advisory confirms the issue as one of four RC vulnerabilities in RDS where an unauthenticated, network-based attacker can exploit by sending specially crafted RDP requests...
CVE-2016-0128
Technical details about CVE-2016-0128 are not provided in the connected documents. The initial description mentions Badlock affecting Windows SAM/LSAD, but no explicit exploit vectors, affected products, or fixes are given here. Monitor for updates.
CVE-2022-22012
Technical details about CVE-2022-22012 are not publicly provided in the connected documents. The materials mention updates and mitigations but do not specify affected products/versions or remediation for this CVE. Monitor for updates.
CVE-2022-21990
CVE-2022-21990 — Remote Desktop Client RCE . The connected sources confirm a remote code execution vulnerability in the Windows Remote Desktop Client triggered when a user connects to a malicious RDP server. This is a client-side flaw exploited via a crafted server, enabling code execution on the...
CVE-2020-0645
CVE-2020-0645 corresponds to a tampering vulnerability in Microsoft IIS Server due to improper handling of malformed HTTP request headers. Affected component: IIS Server within Microsoft Windows Server/Windows. Impact (as stated in connected sources): an attacker could tamper with responses retur...
CVE-2019-0836
CVE-2019-0836 is a Windows local privilege-escalation vulnerability tied to the LUAFV driver (luafv.sys). CIRCL sightings confirm in-the-wild exploitation, with exploits documented (e.g., exploit-db entries 46718). The CVE entry identifies an elevation-of-privilege flaw when Windows improperly ha...
CVE-2022-21894
CVE-2022-21894 is a Secure Boot security feature bypass exploited by the BlackLotus UEFI bootkit. It bypasses Secure Boot to load malicious EFI components, enabling persistence, disabling HVCI and Defender, and prior to OS load. Attack requires elevated privileges or physical access; bootkit impl...
CVE-2022-22048
Technical details about CVE-2022-22048 are not publicly provided in the supplied documents. No affected products, root cause, impact, or fixes are included here. Monitor for updates.
CVE-2022-24481
CVE-2022-24481 is a Windows Common Log File System Driver elevation-of-privilege vulnerability. The connected exploit reports describe a memory/counterpart corruption involving CLFS_CONTAINER_CONTEXT.pContainer that can be triggered from CClfsContainer::Close by modifying CLFS_BASE_RECORD_HEADER....
CVE-2021-1648
CVE-2021-1648 is a Windows splwow64 Elevation of Privilege vulnerability. The affected component is splwow64 (Printer subsystem interaction with 32-bit print path). The CVE is publicly documented with a high-severity CVSS, reflecting local access and privilege escalation potential. The connected ...
CVE-2021-34481
CVE-2021-34481 is a Windows Print Spooler remote code execution vulnerability. A low-privilege user could stage and install vulnerable printer drivers into the driver store and then escalate to SYSTEM by exploiting the spooler’s driver-install path. Affected scope includes Windows 8.1 and newer; ...
CVE-2022-26928
Technical details about CVE-2022-26928 are not publicly provided in the supplied documents. The entries only label it as a Windows Photo Import API elevation-of-privilege issue. Monitor for updates from Microsoft/NVD for remediation and impact.
CVE-2021-26414
CVE-2021-26414 is a Windows DCOM Server Security Feature Bypass. Connected docs confirm a DCOM hardening series (phase 3) and note mitigations: after applying relevant updates, DCOM hardening changes are permanent and cannot be disabled via registry. Microsoft guidance recommends enabling DCOM au...
CVE-2017-0055
CVE-2017-0055 refers to a cross-site scripting (XSS) elevation-of-privilege vulnerability in Microsoft Internet Information Services (IIS). The issue affects IIS on multiple Windows platforms (Vista through Windows Server 2016) and allows a remote attacker to craft a request that can execute scri...
CVE-2017-8628
CVE-2017-8628 concerns a spoofing vulnerability in Microsoft’s Bluetooth driver stack for Windows platforms. The flaw allows an attacker within physical proximity and with Bluetooth enabled to initiate a Bluetooth connection and perform a man-in-the-middle attack, potentially forcing traffic thro...
CVE-2020-15707
CVE-2020-15707 is a GRUB2 bootloader vulnerability (initrd size handling) causing a heap-based buffer overflow via integer overflow in initrd processing. The flaw affects GRUB2 2.04 and earlier as deployed in multiple distros (Debian, Red Hat, Ubuntu) and can enable arbitrary code execution durin...
CVE-2020-1269
Technical details for CVE-2020-1269 are not provided in the supplied documents. Monitor for updates from official sources.
CVE-2022-34721
CVE-2022-34721 is a Windows Internet Key Exchange (IKE) Protocol Extensions remote code execution vulnerability. The issue affects Windows systems with IPSec enabled and is exploitable via specially crafted IP packets targeting IKEv1 (IKEv2 is not affected). The flaw could allow an unauthenticate...
CVE-2022-30133
Technical details about CVE-2022-30133 (affected product, exploit, impact, fix) are not provided in the supplied documents. Monitor for official updates from Microsoft for patch information and vulnerable components.
CVE-2020-15706
CVE-2020-15706 affects GRUB2 (2.04 and earlier) and is a race-condition/use-after-free in grub_script_function_create() triggered by redefining a function during execution, leading to arbitrary code execution and Secure Boot restriction bypass. Remediation is to upgrade to patched GRUB2 packages ...
CVE-2021-34514
CVE-2021-34514 is identified as a Windows Kernel elevation-of-privilege vulnerability. The available connected documents confirm a Windows Kernel issue with elevation of privilege but do not provide concrete technical details (root cause, affected component/version, exploit specifics, or a remedi...
CVE-2018-8641
CVE-2018-8641 is a Windows Win32k kernel-mode privilege-escalation vulnerability. The Win32k component fails to properly handle objects in memory, enabling local privilege escalation. Affected products include multiple Windows versions (Windows 7, Windows 8.1, Windows 10 and corresponding Server ...
CVE-2022-30170
Technical details about CVE-2022-30170 are not provided in the supplied documents. The connected sources reference related Credential Roaming issues and general Windows security updates, but no specific vulnerability details, affected products, or fixes are disclosed here. Monitor for updates.
CVE-2020-15705
GRUB2 ≤ 2.04 fails to validate kernel signatures when booting directly without shim, allowing Secure Boot bypass if the kernel signing certificate is in the Secure Boot DB. The issue affects GRUB2 2.04 and earlier; upgrades to patched grub2/shim combinations are advised (e.g., 2.06+ and related s...
CVE-2019-1182
CVE-2019-1182 is a remote code execution vulnerability in Microsoft Windows Remote Desktop Services (RDS) caused by a heap overflow in the server’s dynamic channel handling when processing RDP requests. The flaw is pre-authentication and exploitable by an unauthenticated attacker who connects to ...
CVE-2022-22049
CVE-2022-22049 is a Windows CSRSS (Client Server Run-time Subsystem) Elevation of Privilege vulnerability. The entry lists a CVSS v2 base score of 7.2 (HIGH) and CVSS v3.1 base score of 7.8 (HIGH), with LOCAL attack vector, LOW attack complexity, and privileges required as LOW; no user interactio...
CVE-2019-1006
CVE-2019-1006 corresponds to an authentication bypass vulnerability in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF) that allows signing SAML tokens with arbitrary symmetric keys. The connected Nessus entries reiterate this issue as part of Microsoft SharePoint serv...
CVE-2022-21972
CVE-2022-21972 is a Windows PPTP VPN component remote code execution vulnerability caused by use-after-free handling of PPTP packets. The connected advisory states a remote code execution vulnerability exists in Windows VPN due to improper PPTP packet handling, i.e., PPTP protocol use after free....
CVE-2023-21746
CVE-2023-21746 is a Windows NTLM elevation of privilege vulnerability. A GitHub exploit module for LocalPotato CVE-2023-21746 suggests a Windows-based target, with hints of buffer overflow/memory corruption as the likely root cause and that the exploit may be invoked via an exploit.py script in a...
CVE-2018-0952
CVE-2018-0952 is a local Elevation of Privilege vulnerability in Diagnostics Hub Standard Collector (used by Windows Diagnostics Hub and Visual Studio components). The root cause, as documented, is the ability to create arbitrary files due to lack of proper client impersonation in DiagnosticsHub....
CVE-2022-24500
CVE-2022-24500 is a Windows SMB Remote Code Execution vulnerability. Connected exploit posts provide concrete steps and code to launch a Windows SMB-based RCE, requiring the target to interact with a malicious server/share over SMB (port 445). The GitHub exploits illustrate an end-to-end chain (d...
CVE-2021-38633
CVE-2021-38633 affects Windows CLFS driver (Common Log File System). Connected sources provide concrete technical detail: the vulnerability is a local privilege escalation in clfs.sys, related to CLFS container/file creation paths and privilege checks (e.g., CClfsBaseFilePersisted::CreateContaine...
CVE-2018-8124
CVE-2018-8124 is a Win32k privilege-escalation vulnerability in Windows where the Win32k component fails to properly handle objects in memory. Affected: Windows 7, Windows Server 2008/2008 R2, Windows 8.1, Windows 10 and corresponding Server editions listed in the description; root cause is impro...
CVE-2021-26424
The CVE-2021-26424 issue is a Windows TCP/IP remote code execution vulnerability. According to the NCSC advisory, it can be remotely triggered by a malicious IPv6 ping from a Hyper‑V guest to the Hyper‑V host, with exploitation achieved by sending a specially crafted TCP/IP packet to the host usi...
CVE-2021-36963
Technical details about CVE-2021-36963 are not provided in the supplied documents. Public disclosures among the connected items do not specify affected products, root cause, impact, or fixes beyond the general vendor advisory; monitor for official updates.
CVE-2020-1013
Technical details specific to CVE-2020-1013 are not provided in the supplied documents. The connected KB articles reference other updates and vulnerabilities but do not reveal CVE-2020-1013 specifics. Monitor for updates.
CVE-2020-1048
CVE-2020-1048 is a Windows Print Spooler elevation of privilege vulnerability. It arises from improper handling that allows arbitrary writing to the file system, enabling local privilege escalation. Public exploits/public PoCs exist (notably PrintDemon) and have been discussed alongside patch cir...
CVE-2022-24491
CVE-2022-24491 is a Remote Code Execution flaw in Windows Network File System (NFS) that is exploitable only on systems with the NFS role enabled. Affected component is the Windows NFS protocol handling; the root cause is remote code execution via specially crafted NFS network messages. Public pa...