Lucene search
K

2198 matches found

CVE
CVE
added 2015/08/15 12:0 a.m.929 views

CVE-2015-1769

CVE-2015-1769 is a Windows privilege-escalation issue in the Mount Manager where symbolic link handling can be abused by inserting a malicious USB device. The vulnerability affects multiple Windows client/server releases (Vista SP2, 2008 SP2/R2, 7 SP1, 8/8.1, 2012/2012 R2, RT/RT 8.1, 10) and is c...

7.2CVSS7.3AI score0.04339EPSS
In wild
CVE
CVE
added 2015/07/20 6:0 p.m.923 views

CVE-2015-2426

CVE-2015-2426 is a Windows OpenType Font Driver vulnerability (ATMFD.DLL) that causes a pool/heap overflow when processing OpenType fonts, allowing remote code execution. The issue arises from a flawed handling of font data (notably the Class1Count field in the GPOS/CFF paths) where an invalid ze...

9.3CVSS7.4AI score0.8669EPSS
In wild
CVE
CVE
added 2018/05/22 12:0 p.m.868 views

CVE-2018-3639

CVE-2018-3639 is a speculative execution side‑channel vulnerability (SSB) that can leak memory via speculative stores. The Connected ALMA doc notes a mitigation: SSB is disabled by the new alt-java launcher, reducing impact at the cost of performance, and it references OpenJDK 8u282 as part of th...

5.5CVSS5.9AI score0.60631EPSS
In wild
CVE
CVE
added 2018/09/06 9:0 p.m.724 views

CVE-2018-5391

CVE-2018-5391 affects the Linux kernel (3.9+) via FragmentSmack: IP fragment reassembly can be exploited to exhaust CPU and cause DoS. Citrix/Arista/CentOS advisories describe affected products and kernel updates; CentOS/RH advisories list patched versions and note the vulnerability stems from fr...

7.8CVSS7.7AI score0.24575EPSS
In wild
CVE
CVE
added 2022/04/15 7:4 p.m.695 views

CVE-2022-26809

CVE-2022-26809 is a Windows RPC Runtime Remote Code Execution vulnerability. Public material in the connected documents indicates an unauthenticated remote attacker can trigger code execution by sending a crafted RPC call, with the real vulnerability located in OSF_CASSOCIATION::ProcessBindAckOrN...

10CVSS9.6AI score0.91316EPSS
CVE
CVE
added 2019/09/03 5:52 p.m.649 views

CVE-2019-1125

CVE-2019-1125 is a Linux kernel local information-disclosure vulnerability related to SWAPGS speculation (Spectre variant 1). The issue allows a local attacker to read kernel/privileged memory through speculative execution on most x86 processors; mitigation relies on memory barriers to limit spec...

5.6CVSS7AI score0.04521EPSS
CVE
CVE
added 2023/01/10 12:0 a.m.649 views

CVE-2023-21752

CVE-2023-21752 is a Windows Backup Service Elevation of Privilege vulnerability affecting Windows 11 (build 10.0.22000). Exploitation is possible to gain SYSTEM privileges, potentially delete data or render the service unavailable. A public PoC and details exist (Exploit-DB entry: Windows 11 10.0...

7.1CVSS7AI score0.05327EPSS
CVE
CVE
added 2022/05/10 8:34 p.m.632 views

CVE-2022-29130

Technical details about CVE-2022-29130 are not provided in the connected documents. Publicly available information in the initial entry is limited to high‑level descriptors; no product/version/impact/fix specifics are included here. Monitor for official updates.

9.8CVSS9.4AI score0.03696EPSS
CVE
CVE
added 2021/05/11 12:0 a.m.619 views

CVE-2020-24588

The CVE-2020-24588 entry relates to the 802.11 Wi‑Fi fragmentation/ A‑MSDU handling issue where the plaintext QoS header flag isn’t authenticated, enabling an attacker to inject packets by sending non‑SSP A‑MSDU frames (FragAttacks). Connected Astra Linux advisories describe this as a variant of ...

3.5CVSS6.4AI score0.03537EPSS
CVE
CVE
added 2022/07/12 10:37 p.m.609 views

CVE-2022-30209

Technical details (affected products, exploit vector, root cause, and remediation) are not provided in the supplied documents. Monitor for updates from official sources.

7.4CVSS7.9AI score0.02408EPSS
CVE
CVE
added 2020/06/08 4:45 p.m.588 views

CVE-2020-12695

CVE-2020-12695 (CallStranger) concerns UPnP SUBSCRIBE handling in the Open Connectivity Foundation specification prior to 2020-04-17. The root cause is a controllable Callback header that can trigger HTTP connections to arbitrary URLs, enabling SSRF-like behavior and potentially leading to amplif...

7.8CVSS7.6AI score0.15193EPSS
Web
CVE
CVE
added 2018/03/14 5:0 p.m.572 views

CVE-2018-0886

CVE-2018-0886 denotes a CredSSP remote code execution vulnerability in Windows authentication flows (Credential Security Support Provider protocol). The core issue is how CredSSP validates requests during authentication, enabling potential code execution via an RDP-related interaction. Public adv...

7.6CVSS7AI score0.82334EPSS
CVE
CVE
added 2019/08/14 8:55 p.m.529 views

CVE-2019-1181

CVE-2019-1181 is a remote code execution vulnerability in Windows Remote Desktop Services (RDS/Terminal Services). The Huawei advisory confirms the issue as one of four RC vulnerabilities in RDS where an unauthenticated, network-based attacker can exploit by sending specially crafted RDP requests...

10CVSS9.2AI score0.75194EPSS
CVE
CVE
added 2016/04/12 11:0 p.m.483 views

CVE-2016-0128

Technical details about CVE-2016-0128 are not provided in the connected documents. The initial description mentions Badlock affecting Windows SAM/LSAD, but no explicit exploit vectors, affected products, or fixes are given here. Monitor for updates.

6.8CVSS6.4AI score0.20877EPSS
CVE
CVE
added 2022/05/10 8:33 p.m.430 views

CVE-2022-22012

Technical details about CVE-2022-22012 are not publicly provided in the connected documents. The materials mention updates and mitigations but do not specify affected products/versions or remediation for this CVE. Monitor for updates.

9.8CVSS9.4AI score0.03926EPSS
CVE
CVE
added 2022/03/09 5:6 p.m.414 views

CVE-2022-21990

CVE-2022-21990 — Remote Desktop Client RCE . The connected sources confirm a remote code execution vulnerability in the Windows Remote Desktop Client triggered when a user connects to a malicious RDP server. This is a client-side flaw exploited via a crafted server, enabling code execution on the...

8.8CVSS8.8AI score0.18842EPSS
CVE
CVE
added 2020/03/12 3:48 p.m.408 views

CVE-2020-0645

CVE-2020-0645 corresponds to a tampering vulnerability in Microsoft IIS Server due to improper handling of malformed HTTP request headers. Affected component: IIS Server within Microsoft Windows Server/Windows. Impact (as stated in connected sources): an attacker could tamper with responses retur...

7.5CVSS8.2AI score0.03809EPSS
CVE
CVE
added 2019/04/09 8:16 p.m.406 views

CVE-2019-0836

CVE-2019-0836 is a Windows local privilege-escalation vulnerability tied to the LUAFV driver (luafv.sys). CIRCL sightings confirm in-the-wild exploitation, with exploits documented (e.g., exploit-db entries 46718). The CVE entry identifies an elevation-of-privilege flaw when Windows improperly ha...

7.8CVSS6.7AI score0.04139EPSS
In wild
CVE
CVE
added 2022/01/11 8:22 p.m.403 views

CVE-2022-21894

CVE-2022-21894 is a Secure Boot security feature bypass exploited by the BlackLotus UEFI bootkit. It bypasses Secure Boot to load malicious EFI components, enabling persistence, disabling HVCI and Defender, and prior to OS load. Attack requires elevated privileges or physical access; bootkit impl...

4.9CVSS6.2AI score0.05979EPSS
In wild
CVE
CVE
added 2022/07/12 10:37 p.m.393 views

CVE-2022-22048

Technical details about CVE-2022-22048 are not publicly provided in the supplied documents. No affected products, root cause, impact, or fixes are included here. Monitor for updates.

6.6CVSS7.2AI score0.00759EPSS
In wild
CVE
CVE
added 2022/04/15 7:3 p.m.385 views

CVE-2022-24481

CVE-2022-24481 is a Windows Common Log File System Driver elevation-of-privilege vulnerability. The connected exploit reports describe a memory/counterpart corruption involving CLFS_CONTAINER_CONTEXT.pContainer that can be triggered from CClfsContainer::Close by modifying CLFS_BASE_RECORD_HEADER....

7.8CVSS8.6AI score0.17108EPSS
In wild
CVE
CVE
added 2021/01/12 7:42 p.m.378 views

CVE-2021-1648

CVE-2021-1648 is a Windows splwow64 Elevation of Privilege vulnerability. The affected component is splwow64 (Printer subsystem interaction with 32-bit print path). The CVE is publicly documented with a high-severity CVSS, reflecting local access and privilege escalation potential. The connected ...

7.8CVSS7.7AI score0.01229EPSS
In wild
CVE
CVE
added 2021/07/16 8:19 p.m.378 views

CVE-2021-34481

CVE-2021-34481 is a Windows Print Spooler remote code execution vulnerability. A low-privilege user could stage and install vulnerable printer drivers into the driver store and then escalate to SYSTEM by exploiting the spooler’s driver-install path. Affected scope includes Windows 8.1 and newer; ...

9.8CVSS9AI score0.45423EPSS
In wild
CVE
CVE
added 2022/09/13 6:41 p.m.367 views

CVE-2022-26928

Technical details about CVE-2022-26928 are not publicly provided in the supplied documents. The entries only label it as a Windows Photo Import API elevation-of-privilege issue. Monitor for updates from Microsoft/NVD for remediation and impact.

7CVSS8.1AI score0.00697EPSS
In wild
CVE
CVE
added 2021/06/08 10:46 p.m.353 views

CVE-2021-26414

CVE-2021-26414 is a Windows DCOM Server Security Feature Bypass. Connected docs confirm a DCOM hardening series (phase 3) and note mitigations: after applying relevant updates, DCOM hardening changes are permanent and cannot be disabled via registry. Microsoft guidance recommends enabling DCOM au...

6.5CVSS6.9AI score0.4997EPSS
CVE
CVE
added 2017/03/17 12:0 a.m.351 views

CVE-2017-0055

CVE-2017-0055 refers to a cross-site scripting (XSS) elevation-of-privilege vulnerability in Microsoft Internet Information Services (IIS). The issue affects IIS on multiple Windows platforms (Vista through Windows Server 2016) and allows a remote attacker to craft a request that can execute scri...

6.1CVSS5.4AI score0.16369EPSS
CVE
CVE
added 2017/09/13 1:0 a.m.351 views

CVE-2017-8628

CVE-2017-8628 concerns a spoofing vulnerability in Microsoft’s Bluetooth driver stack for Windows platforms. The flaw allows an attacker within physical proximity and with Bluetooth enabled to initiate a Bluetooth connection and perform a man-in-the-middle attack, potentially forcing traffic thro...

6.8CVSS7AI score0.02307EPSS
CVE
CVE
added 2020/07/29 5:45 p.m.349 views

CVE-2020-15707

CVE-2020-15707 is a GRUB2 bootloader vulnerability (initrd size handling) causing a heap-based buffer overflow via integer overflow in initrd processing. The flaw affects GRUB2 2.04 and earlier as deployed in multiple distros (Debian, Red Hat, Ubuntu) and can enable arbitrary code execution durin...

6.4CVSS7.6AI score0.01588EPSS
CVE
CVE
added 2020/06/09 7:43 p.m.337 views

CVE-2020-1269

Technical details for CVE-2020-1269 are not provided in the supplied documents. Monitor for updates from official sources.

7.8CVSS7.7AI score0.00946EPSS
In wild
CVE
CVE
added 2022/09/13 6:41 p.m.336 views

CVE-2022-34721

CVE-2022-34721 is a Windows Internet Key Exchange (IKE) Protocol Extensions remote code execution vulnerability. The issue affects Windows systems with IPSec enabled and is exploitable via specially crafted IP packets targeting IKEv1 (IKEv2 is not affected). The flaw could allow an unauthenticate...

9.8CVSS9.7AI score0.75711EPSS
In wild
CVE
CVE
added 2022/08/09 7:48 p.m.334 views

CVE-2022-30133

Technical details about CVE-2022-30133 (affected product, exploit, impact, fix) are not provided in the supplied documents. Monitor for official updates from Microsoft for patch information and vulnerable components.

9.8CVSS9.6AI score0.02247EPSS
CVE
CVE
added 2020/07/29 5:45 p.m.333 views

CVE-2020-15706

CVE-2020-15706 affects GRUB2 (2.04 and earlier) and is a race-condition/use-after-free in grub_script_function_create() triggered by redefining a function during execution, leading to arbitrary code execution and Secure Boot restriction bypass. Remediation is to upgrade to patched GRUB2 packages ...

6.4CVSS7.7AI score0.00977EPSS
CVE
CVE
added 2021/07/14 5:54 p.m.325 views

CVE-2021-34514

CVE-2021-34514 is identified as a Windows Kernel elevation-of-privilege vulnerability. The available connected documents confirm a Windows Kernel issue with elevation of privilege but do not provide concrete technical details (root cause, affected component/version, exploit specifics, or a remedi...

7.8CVSS8.2AI score0.00668EPSS
In wild
CVE
CVE
added 2018/12/12 12:0 a.m.322 views

CVE-2018-8641

CVE-2018-8641 is a Windows Win32k kernel-mode privilege-escalation vulnerability. The Win32k component fails to properly handle objects in memory, enabling local privilege escalation. Affected products include multiple Windows versions (Windows 7, Windows 8.1, Windows 10 and corresponding Server ...

7.8CVSS8.5AI score0.01116EPSS
In wild
CVE
CVE
added 2022/09/13 6:41 p.m.322 views

CVE-2022-30170

Technical details about CVE-2022-30170 are not provided in the supplied documents. The connected sources reference related Credential Roaming issues and general Windows security updates, but no specific vulnerability details, affected products, or fixes are disclosed here. Monitor for updates.

7.3CVSS8.3AI score0.0147EPSS
In wild
CVE
CVE
added 2020/07/29 5:45 p.m.321 views

CVE-2020-15705

GRUB2 ≤ 2.04 fails to validate kernel signatures when booting directly without shim, allowing Secure Boot bypass if the kernel signing certificate is in the Secure Boot DB. The issue affects GRUB2 2.04 and earlier; upgrades to patched grub2/shim combinations are advised (e.g., 2.06+ and related s...

6.4CVSS7.1AI score0.01434EPSS
CVE
CVE
added 2019/08/14 8:55 p.m.315 views

CVE-2019-1182

CVE-2019-1182 is a remote code execution vulnerability in Microsoft Windows Remote Desktop Services (RDS) caused by a heap overflow in the server’s dynamic channel handling when processing RDP requests. The flaw is pre-authentication and exploitable by an unauthenticated attacker who connects to ...

10CVSS9.2AI score0.12934EPSS
In wild
CVE
CVE
added 2022/07/12 10:37 p.m.314 views

CVE-2022-22049

CVE-2022-22049 is a Windows CSRSS (Client Server Run-time Subsystem) Elevation of Privilege vulnerability. The entry lists a CVSS v2 base score of 7.2 (HIGH) and CVSS v3.1 base score of 7.8 (HIGH), with LOCAL attack vector, LOW attack complexity, and privileges required as LOW; no user interactio...

7.8CVSS8.2AI score0.01055EPSS
In wild
CVE
CVE
added 2019/07/15 6:56 p.m.312 views

CVE-2019-1006

CVE-2019-1006 corresponds to an authentication bypass vulnerability in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF) that allows signing SAML tokens with arbitrary symmetric keys. The connected Nessus entries reiterate this issue as part of Microsoft SharePoint serv...

7.5CVSS7.8AI score0.06024EPSS
CVE
CVE
added 2022/05/10 8:33 p.m.312 views

CVE-2022-21972

CVE-2022-21972 is a Windows PPTP VPN component remote code execution vulnerability caused by use-after-free handling of PPTP packets. The connected advisory states a remote code execution vulnerability exists in Windows VPN due to improper PPTP packet handling, i.e., PPTP protocol use after free....

9.3CVSS9AI score0.80933EPSS
CVE
CVE
added 2023/01/10 12:0 a.m.304 views

CVE-2023-21746

CVE-2023-21746 is a Windows NTLM elevation of privilege vulnerability. A GitHub exploit module for LocalPotato CVE-2023-21746 suggests a Windows-based target, with hints of buffer overflow/memory corruption as the likely root cause and that the exploit may be invoked via an exploit.py script in a...

7.8CVSS7.7AI score0.02517EPSS
CVE
CVE
added 2018/08/15 5:0 p.m.303 views

CVE-2018-0952

CVE-2018-0952 is a local Elevation of Privilege vulnerability in Diagnostics Hub Standard Collector (used by Windows Diagnostics Hub and Visual Studio components). The root cause, as documented, is the ability to create arbitrary files due to lack of proper client impersonation in DiagnosticsHub....

7.8CVSS7.9AI score0.06232EPSS
In wild
CVE
CVE
added 2022/04/15 7:3 p.m.303 views

CVE-2022-24500

CVE-2022-24500 is a Windows SMB Remote Code Execution vulnerability. Connected exploit posts provide concrete steps and code to launch a Windows SMB-based RCE, requiring the target to interact with a malicious server/share over SMB (port 445). The GitHub exploits illustrate an end-to-end chain (d...

8.8CVSS9.4AI score0.38049EPSS
CVE
CVE
added 2021/09/15 11:23 a.m.299 views

CVE-2021-38633

CVE-2021-38633 affects Windows CLFS driver (Common Log File System). Connected sources provide concrete technical detail: the vulnerability is a local privilege escalation in clfs.sys, related to CLFS container/file creation paths and privilege checks (e.g., CClfsBaseFilePersisted::CreateContaine...

7.8CVSS8AI score0.00887EPSS
In wild
CVE
CVE
added 2018/05/09 7:0 p.m.296 views

CVE-2018-8124

CVE-2018-8124 is a Win32k privilege-escalation vulnerability in Windows where the Win32k component fails to properly handle objects in memory. Affected: Windows 7, Windows Server 2008/2008 R2, Windows 8.1, Windows 10 and corresponding Server editions listed in the description; root cause is impro...

7CVSS7.4AI score0.01154EPSS
In wild
CVE
CVE
added 2021/08/12 6:11 p.m.296 views

CVE-2021-26424

The CVE-2021-26424 issue is a Windows TCP/IP remote code execution vulnerability. According to the NCSC advisory, it can be remotely triggered by a malicious IPv6 ping from a Hyper‑V guest to the Hyper‑V host, with exploitation achieved by sending a specially crafted TCP/IP packet to the host usi...

9.9CVSS8.8AI score0.58898EPSS
CVE
CVE
added 2021/09/15 11:23 a.m.295 views

CVE-2021-36963

Technical details about CVE-2021-36963 are not provided in the supplied documents. Public disclosures among the connected items do not specify affected products, root cause, impact, or fixes beyond the general vendor advisory; monitor for official updates.

7.8CVSS8AI score0.00977EPSS
In wild
CVE
CVE
added 2020/09/11 5:8 p.m.293 views

CVE-2020-1013

Technical details specific to CVE-2020-1013 are not provided in the supplied documents. The connected KB articles reference other updates and vulnerabilities but do not reveal CVE-2020-1013 specifics. Monitor for updates.

9.3CVSS7.5AI score0.06405EPSS
CVE
CVE
added 2020/05/21 10:52 p.m.292 views

CVE-2020-1048

CVE-2020-1048 is a Windows Print Spooler elevation of privilege vulnerability. It arises from improper handling that allows arbitrary writing to the file system, enabling local privilege escalation. Public exploits/public PoCs exist (notably PrintDemon) and have been discussed alongside patch cir...

7.8CVSS7.7AI score0.16502EPSS
In wild
CVE
CVE
added 2022/04/15 7:3 p.m.292 views

CVE-2022-24491

CVE-2022-24491 is a Remote Code Execution flaw in Windows Network File System (NFS) that is exploitable only on systems with the NFS role enabled. Affected component is the Windows NFS protocol handling; the root cause is remote code execution via specially crafted NFS network messages. Public pa...

9.8CVSS9.6AI score0.33474EPSS
Total number of security vulnerabilities2198