913 matches found
CVE-2020-24588
The CVE-2020-24588 entry relates to the 802.11 Wi‑Fi fragmentation/ A‑MSDU handling issue where the plaintext QoS header flag isn’t authenticated, enabling an attacker to inject packets by sending non‑SSP A‑MSDU frames (FragAttacks). Connected Astra Linux advisories describe this as a variant of ...
CVE-2020-1206
CVE-2020-1206 is an information disclosure vulnerability in SMBv3 (Microsoft Server Message Block 3.1.1) that affects the SMBv3 client/server handling of certain requests. The connected documents describe an information disclosure in SMBv3 and note that attackers can chain SMBleed with SMBGhost t...
CVE-2021-1648
CVE-2021-1648 is a Windows splwow64 Elevation of Privilege vulnerability. The affected component is splwow64 (Printer subsystem interaction with 32-bit print path). The CVE is publicly documented with a high-severity CVSS, reflecting local access and privilege escalation potential. The connected ...
CVE-2021-34481
CVE-2021-34481 is a Windows Print Spooler remote code execution vulnerability. A low-privilege user could stage and install vulnerable printer drivers into the driver store and then escalate to SYSTEM by exploiting the spooler’s driver-install path. Affected scope includes Windows 8.1 and newer; ...
CVE-2021-26414
CVE-2021-26414 is a Windows DCOM Server Security Feature Bypass. Connected docs confirm a DCOM hardening series (phase 3) and note mitigations: after applying relevant updates, DCOM hardening changes are permanent and cannot be disabled via registry. Microsoft guidance recommends enabling DCOM au...
CVE-2020-15707
CVE-2020-15707 is a GRUB2 bootloader vulnerability (initrd size handling) causing a heap-based buffer overflow via integer overflow in initrd processing. The flaw affects GRUB2 2.04 and earlier as deployed in multiple distros (Debian, Red Hat, Ubuntu) and can enable arbitrary code execution durin...
CVE-2020-1269
Technical details for CVE-2020-1269 are not provided in the supplied documents. Monitor for updates from official sources.
CVE-2020-15706
CVE-2020-15706 affects GRUB2 (2.04 and earlier) and is a race-condition/use-after-free in grub_script_function_create() triggered by redefining a function during execution, leading to arbitrary code execution and Secure Boot restriction bypass. Remediation is to upgrade to patched GRUB2 packages ...
CVE-2021-34514
CVE-2021-34514 is identified as a Windows Kernel elevation-of-privilege vulnerability. The available connected documents confirm a Windows Kernel issue with elevation of privilege but do not provide concrete technical details (root cause, affected component/version, exploit specifics, or a remedi...
CVE-2020-15705
GRUB2 ≤ 2.04 fails to validate kernel signatures when booting directly without shim, allowing Secure Boot bypass if the kernel signing certificate is in the Secure Boot DB. The issue affects GRUB2 2.04 and earlier; upgrades to patched grub2/shim combinations are advised (e.g., 2.06+ and related s...
CVE-2021-38633
CVE-2021-38633 affects Windows CLFS driver (Common Log File System). Connected sources provide concrete technical detail: the vulnerability is a local privilege escalation in clfs.sys, related to CLFS container/file creation paths and privilege checks (e.g., CClfsBaseFilePersisted::CreateContaine...
CVE-2021-26424
The CVE-2021-26424 issue is a Windows TCP/IP remote code execution vulnerability. According to the NCSC advisory, it can be remotely triggered by a malicious IPv6 ping from a Hyper‑V guest to the Hyper‑V host, with exploitation achieved by sending a specially crafted TCP/IP packet to the host usi...
CVE-2021-36963
Technical details about CVE-2021-36963 are not provided in the supplied documents. Public disclosures among the connected items do not specify affected products, root cause, impact, or fixes beyond the general vendor advisory; monitor for official updates.
CVE-2020-1013
Technical details specific to CVE-2020-1013 are not provided in the supplied documents. The connected KB articles reference other updates and vulnerabilities but do not reveal CVE-2020-1013 specifics. Monitor for updates.
CVE-2020-1337
CVE-2020-1337 is a local privilege-escalation vulnerability in the Windows Print Spooler. It results from a bypass of the CVE-2020-1048 patch via a Junction Directory, allowing an unprivileged user to achieve elevation by abusing how the spooler writes to the file system. The risk is local (no ne...
CVE-2020-1599
CVE-2020-1599 is referenced in connected material (notably Microsoft ZLoader defense-evasion coverage) as a vulnerability used to aid attacker techniques (e.g., signing/validating files to mask malice). The documents do not provide concrete technical details on the root cause, affected products/v...
CVE-2020-1307
Technical details for CVE-2020-1307 are not publicly provided in the supplied documents. Monitor for updates from official sources for affected products, impact, and remediation if available.
CVE-2021-31167
CVE-2021-31167 is a Windows vulnerability in the Container Manager Service that enables Elevation of Privilege. It is a local, low-attack-complexity issue with high impact (confidentiality/ integrity/ availability), allowing an attacker with low privileges to escalate. Public exploits are noted f...
CVE-2021-1678
CVE-2021-1678 affects the Windows Print Spooler service and is described in Connected documents as an arbitrary code execution vulnerability. The available connected document provides a PoC exploit (Exploit for CVE-2021-1678) hosted on Gitee, contained in a Docker container with a Python script s...
CVE-2021-43217
CVE-2021-43217 is a Windows Encrypting File System (EFS) remote code execution vulnerability. The connected exploit document documents a practical demonstration of an EFS bypass on Windows 10 and shows use of Kali Linux, Metasploit and reverse TCP payloads, indicating an attacker could achieve co...
CVE-2021-28476
CVE-2021-28476 is a Hyper-V vmswitch.sys vulnerability enabling guest-to-host access via an out-of-bounds read in VmsIfrInfoParams_OID_SWITCH_NIC_REQUEST when processing OID_SWITCH_NIC_REQUEST. Public PoC/exploit code exists (e.g., 0vercl0k and LaCeeKa repos) and prior reports describe guest-trig...
CVE-2021-34487
Technical details for CVE-2021-34487 are not publicly available in the provided connected documents. Monitor for updates from Microsoft and CVE records; no concrete affected products, root cause, or fixes are described here.
CVE-2020-1274
Technical details for CVE-2020-1274 are not publicly available in the provided documents. No affected products, root cause, or remediation are specified here. Monitor for updates from official advisories and EUVD entries for any new information.
CVE-2021-26432
CVE-2021-26432 is a remote code execution vulnerability in the Windows Services for NFS ONCRPC XDR Driver. The issue allows an attacker to execute arbitrary code on a vulnerable system via the ONCRPC XDR Driver component, with high impact (C/H/I/A = HIGH) and network access (CVSS scores reflect r...
CVE-2020-16916
CVE-2020-16916 is a Windows elevation-of-privilege flaw in the COM server object creation path. The root cause is Windows handling of COM object creation, allowing an attacker who can log on to run a specially crafted application that exploits the vulnerability to gain elevated code execution. Mi...
CVE-2020-1275
Technical details for CVE-2020-1275 are not publicly available in the provided documents. Monitor for updates from official advisories; no confirmed affected products, impact, or remediation are stated here.
CVE-2020-1237
Technical details for CVE-2020-1237 are not publicly available in the provided documents. The connected EUVD entries do not supply product/version/impact specifics. Monitor for updates.
CVE-2020-1276
Technical details for CVE-2020-1276 are not publicly available in the provided documents. Monitoring for updates is recommended.
CVE-2021-43883
CVE-2021-43883 is a Windows Installer Elevation of Privilege vulnerability. The Windows Installer component can be abused when a user is tricked into installing a malicious package, enabling an attacker to gain elevated privileges on the system. The CVSS details in the provided data show a local ...
CVE-2020-1316
CVE-2020-1316 is a Windows kernel elevation of privilege vulnerability where the Windows kernel fails to properly handle objects in memory. This can allow a local attacker with low privileges to achieve high integrity/critical impact (confidentiality, integrity, and availability), as indicated by...
CVE-2020-1262
Technical details for CVE-2020-1262 are not publicly available in the provided documents. Monitor for updates from official advisories.
CVE-2020-1246
Technical details for CVE-2020-1246 are not publicly provided in the supplied documents. Monitor for updates from official advisories and connected sources.
CVE-2021-26868
Technical details about CVE-2021-26868 are not publicly provided in the supplied documents; monitor for updates.
CVE-2020-1266
CVE-2020-1266 is a Windows kernel elevation-of-privilege vulnerability. The description attributes the issue to improper handling of objects in memory, enabling local privilege escalation with high impact (local access, minimal authentication). The provided metrics show a high base score (CVSS v3...
CVE-2020-1301
CVE-2020-1301 is a SMBv1 remote code execution vulnerability that requires authentication on the target network. Publicly available guidance and advisories confirm SMBv1 handling flaws can allow code execution when a specially crafted packet is processed by an SMBv1 server. Connected advisories (...
CVE-2020-1273
Technical details for CVE-2020-1273 are not provided in the connected documents. Monitor official advisories for updates; no validated exploit, affected products, or remediation information are included here.
CVE-2020-1264
Technical details for CVE-2020-1264 are not publicly available in the provided documents; no affected products, impact, exploit information, or remediation are specified here. Monitor for updates.
CVE-2020-1300
CVE-2020-1300 is a Windows remote code execution vulnerability that arises when Cabinet (.cab) files are not handled securely. The vulnerability can be exploited by convincing a user to open a specially crafted CAB file or by spoofing a network printer and tricking the user into installing a mali...
CVE-2021-43207
Technical details (affected component, root cause, exploitability, and fixes) for CVE-2021-43207 are not provided in the connected documents. Only the vulnerability name and CVSS metrics are present. Monitor official disclosures for specifics.
CVE-2020-1299
CVE-2020-1299 is a Windows remote code execution vulnerability that occurs when a malicious or specially crafted .LNK file is processed. The available connected document explicitly states it is an RCE in LNK file processing and that exploitation would grant the attacker the same user rights as th...
CVE-2021-28455
Technical details about CVE-2021-28455 (affected components, root cause, impact, and fixes) are not publicly provided in the supplied documents; monitor for updates.
CVE-2021-36936
Technical details about CVE-2021-36936 are not publicly provided in the connected documents. No vendor/product/version specifics or remediation steps are present here. Monitor for updates from official advisories and trusted security trackers.
CVE-2020-16938
CVE-2020-16938 is a Windows Kernel information-disclosure vulnerability where the kernel improperly handles objects in memory, enabling a locally logged-on attacker to obtain information that could aid further compromise. The issue is targeted at the Windows kernel memory handling (information di...
CVE-2020-16891
Technical details for CVE-2020-16891 are not provided in the connected documents. Public details appear limited to the initial description; monitor for updates and additional disclosures.
CVE-2021-26899
Technical details for CVE-2021-26899, including affected product/version, root cause, impact, and fix, are not provided in the connected documents. Monitor for updates from official sources.
CVE-2021-34535
CVE-2021-34535 is a Remote Desktop Client remote code execution vulnerability in Windows. According to the connected sources, it affects the Windows Remote Desktop Client component and is rated High (CVSS v3.1 base 8.8). Exploitation was addressed in Microsoft’s August 2021 Patch Tuesday updates;...
CVE-2021-41335
Technical details for CVE-2021-41335 are not publicly available in the provided documents. Monitor for updates.
CVE-2021-38671
Technical details about CVE-2021-38671 are not publicly available in the provided documents; monitor for updates and cross-check with official advisories for affected products and fixes.
CVE-2021-26441
CVE-2021-26441 is a local-elevation vulnerability in the Storage Spaces Controller. CVSSv3.1 base 7.8 (HIGH): LOCAL vector, LOW privileges required, no user interaction; impacts on confidentiality, integrity, and availability are High. The provided documents do not specify affected product/versio...
CVE-2021-34480
Technical details about CVE-2021-34480 are not provided in the connected documents. Public descriptions exist, but no specifics on affected products, root cause, impact, or fixes are included here. Monitor for updates.