273 matches found
CVE-2022-21907
CVE-2022-21907 concerns the HTTP Protocol Stack (http.sys) in Windows, enabling remote code execution via specially crafted packets. Public documentation and PoCs indicate impact on Windows 10 (notably 2004) and Windows Server variants, with multiple exploits and PoCs surfacing publicly. Mitigati...
CVE-2022-29130
Technical details about CVE-2022-29130 are not provided in the connected documents. Publicly available information in the initial entry is limited to high‑level descriptors; no product/version/impact/fix specifics are included here. Monitor for official updates.
CVE-2022-24508
CVE-2022-24508 is a Windows SMBv3 client/server remote code execution vulnerability. The issue resides in the SMBv3 compression feature introduced in newer Windows builds and can enable code execution on a vulnerable system when exploited over a network. Exploitation requires authentication and c...
CVE-2022-22012
Technical details about CVE-2022-22012 are not publicly provided in the connected documents. The materials mention updates and mitigations but do not specify affected products/versions or remediation for this CVE. Monitor for updates.
CVE-2022-21990
CVE-2022-21990 — Remote Desktop Client RCE . The connected sources confirm a remote code execution vulnerability in the Windows Remote Desktop Client triggered when a user connects to a malicious RDP server. This is a client-side flaw exploited via a crafted server, enabling code execution on the...
CVE-2022-21894
CVE-2022-21894 is a Secure Boot security feature bypass exploited by the BlackLotus UEFI bootkit. It bypasses Secure Boot to load malicious EFI components, enabling persistence, disabling HVCI and Defender, and prior to OS load. Attack requires elevated privileges or physical access; bootkit impl...
CVE-2022-24503
CVE-2022-24503 is a Remote Desktop Protocol Client Information Disclosure vulnerability. Connected sources indicate it affects Windows Remote Desktop Client and can be triggered over the network with no authentication and no user interaction, exposing partial confidentiality (C:L). The issue is t...
CVE-2021-42291
Technical details (affected product, root cause, impact, or fix) are not publicly available in the provided connected documents. Monitor for updates from official advisories.
CVE-2022-26937
CVE-2022-26937 is a Windows Network File System (NFS) remote code execution vulnerability. Exploitation could occur over the network via an unauthenticated, specially crafted call to an NFS service. NFSv4.1 is not affected; the patch addresses the vulnerability in NFS versions 2.0 and 3.0. In the...
CVE-2022-23288
CVE-2022-23288 is a Windows vulnerability in the DWM Core Library identified as an elevation of privilege (local) issue affecting the Windows DWM Core Library. The connected documents confirm the affected component as the Windows DWM Core Library and describe the impact as elevation of privileges...
CVE-2021-26414
CVE-2021-26414 is a Windows DCOM Server Security Feature Bypass. Connected docs confirm a DCOM hardening series (phase 3) and note mitigations: after applying relevant updates, DCOM hardening changes are permanent and cannot be disabled via registry. Microsoft guidance recommends enabling DCOM au...
CVE-2022-21972
CVE-2022-21972 is a Windows PPTP VPN component remote code execution vulnerability caused by use-after-free handling of PPTP packets. The connected advisory states a remote code execution vulnerability exists in Windows VPN due to improper PPTP packet handling, i.e., PPTP protocol use after free....
CVE-2022-24505
CVE-2022-24505 is a Windows ALPC Elevation of Privilege vulnerability. The connected sources confirm a local privilege escalation in the Windows ALPC mechanism, enabling an attacker with local access to obtain high/ SYSTEM-like privileges. The NVD/CVSS data show a CVSS 3.1 base score of 7.0 (HIGH...
CVE-2022-26931
CVE-2022-26931 is a Windows Kerberos elevation-of-privilege issue tied to certificate-to-account mapping changes in Active Directory. Microsoft KBs and Citrix documents describe remediation via certificate-mapping updates (e.g., KB5014754 and related out‑of‑band mitigations) to address how certif...
CVE-2022-21977
Technical details about CVE-2022-21977 (Media Foundation Information Disclosure Vulnerability) are not provided in the supplied documents. No concrete affected products, versions, or remediation are stated here; monitor official sources for updates and disclosures.
CVE-2021-43217
CVE-2021-43217 is a Windows Encrypting File System (EFS) remote code execution vulnerability. The connected exploit document documents a practical demonstration of an EFS bypass on Windows 10 and shows use of Kali Linux, Metasploit and reverse TCP payloads, indicating an attacker could achieve co...
CVE-2022-23284
Technical details for CVE-2022-23284 (affected product, root cause, impact, and fix) are not publicly available in the provided Connected documents. Monitor for updates from official sources.
CVE-2022-23293
Technical details for CVE-2022-23293 are not publicly available in the provided Connected documents. Monitor for updates.
CVE-2022-26939
CVE-2022-26939 is a Storage Spaces Direct elevation of privilege vulnerability in Microsoft Windows. The root cause is improper handling of concurrent access in the Storage Spaces Controller driver, enabling local privilege escalation. CVSS v3.1 base score is 7.0 (HIGH) with LOCAL attack vector, ...
CVE-2021-43883
CVE-2021-43883 is a Windows Installer Elevation of Privilege vulnerability. The Windows Installer component can be abused when a user is tricked into installing a malicious package, enabling an attacker to gain elevated privileges on the system. The CVSS details in the provided data show a local ...
CVE-2022-29120
Technical details (affected product/component/version/root cause/fix) are not provided in the initial or connected documents. Monitor for official updates; no explicit remediation, exploit status, or CVE-risk details are present in the supplied sources.
CVE-2022-21849
CVE-2022-21849 is a remote code execution vulnerability in Windows IKE Extension. The IDS/attack surface centers on the IPSec/IKE service; a remote attacker could trigger multiple vulnerabilities when the IPSec service is running, without authentication. Public details in connected documents iden...
CVE-2022-24459
CVE-2022-24459 is an Elevation of Privilege in Windows Fax and Scan service. Connected sources note a PoC exploit exists and that Microsoft patched vulnerabilities in March 2022 Patch Tuesday, but no concrete product/version/fix details are provided in the documents.
CVE-2022-21974
CVE-2022-21974 corresponds to Microsoft Roaming Security Rights Management Services remote code execution. Connected sources corroborate a user-assisted scenario where exploitation involves opening a malicious RTF file in Microsoft Word, implying phishing-like delivery. The AVLEONOV post explicit...
CVE-2022-23281
CVE-2022-23281 corresponds to a Windows Common Log File System Driver information-disclosure vulnerability. Connected sources describe it as an information leak in the CLFS driver, with CNVD noting “excessive data output” as the underlying issue. Impact is a confidentiality risk; CVSS metrics in ...
CVE-2022-24507
CVE-2022-24507 concerns the Windows Ancillary Function Driver for WinSock, describing an elevation of privilege vulnerability. The connected records indicate the issue is tied to WinSock’s ancillary driver and classify the vulnerability with a high-impact profile (CVSS 3.1: LOCAL, LOW privileges ...
CVE-2022-24525
CVE-2022-24525 is a Windows Update Stack Elevation of Privilege vulnerability affecting the Windows Update Stack. The available connected documents confirm a local, privilege-escalation flaw with a CVSSv3.1 base score of 7.0 (High) and Local attack vector, Independent of user interaction. Publicl...
CVE-2021-43207
Technical details (affected component, root cause, exploitability, and fixes) for CVE-2021-43207 are not provided in the connected documents. Only the vulnerability name and CVSS metrics are present. Monitor official disclosures for specifics.
CVE-2022-21989
CVE-2022-21989 is a Windows Kernel elevation-of-privilege vulnerability. A local attacker can exploit it to escalate privileges and execute code at a higher integrity level, as indicated by Microsoft’s advisory and related coverage. Exploitation requires local access and may depend on additional ...
CVE-2022-24460
Technical details for CVE-2022-24460 are not publicly provided in the supplied documents; no concrete affected product versions or remediation are specified. Monitor for updates.
CVE-2022-22019
Technical details for CVE-2022-22019 are not provided in the connected documents. Public details (affected products, exploit info, impact, remediation) are not present here. Monitor for official updates.
CVE-2022-23287
CVE-2022-23287 is described in connected documents as a Windows ALPC elevation of privilege vulnerability. The core issue involves Local privilege escalation via ALPC in Windows; impact is reported as high for confidentiality, integrity, and availability (C/I/A). The CVSS data (3.1) from NVD indi...
CVE-2022-23294
Technical details about CVE-2022-23294 are not publicly provided in the supplied documents. Monitor for updates.
CVE-2022-22010
Technical details for CVE-2022-22010 are not publicly provided in the supplied documents. No concrete exploit vectors, affected products, or remediation are present here. Monitor for updates from official sources as more information becomes available.
CVE-2022-29142
Technical details (affected components, root cause, impacted versions, exploit info) are not publicly provided in the supplied documents. Monitor for updates from Microsoft/NVD for concrete details and remediation.
CVE-2022-26938
CVE-2022-26938 is described as a Storage Spaces Direct Elevation of Privilege vulnerability. The connected data confirms a local-attack vector (CVSS3.1: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H) with high impact on confidentiality, integrity, and availability. The CVSS v2 metrics also indicate local a...
CVE-2022-26932
CVE-2022-26932 is a Storage Spaces Direct Elevation of Privilege vulnerability in Windows Storage Spaces Controller. The connected documents confirm the issue and cite the root cause as an incorrect program call to a high‑level native procedure, enabling local elevation of privileges. Affected pr...
CVE-2022-29123
Technical details for CVE-2022-29123 (Windows Clustered Shared Volume Information Disclosure) are not provided in the connected documents. The initial entry includes general descriptions, but no product/version/root-cause/impact/fix details are available here. Monitor for official updates.
CVE-2022-24454
Technical details for CVE-2022-24454 are not publicly provided in the supplied documents. No affected product/version/impact/fix details are present here. Monitor for updates.
CVE-2022-22015
Technical details about CVE-2022-22015 are not provided in the connected documents. The MSKB entries listed pertain to OS/security updates but do not disclose affected RDP components, exploit specifics, or patch details for this CVE. Monitor for updates.
CVE-2022-22013
Technical details about CVE-2022-22013 are not provided in the connected documents; no affected products, root cause, or fixes are specified here. Monitor for updates.
CVE-2022-21975
CVE-2022-21975 is a Windows Hyper-V Denial of Service vulnerability. The NVD entry indicates the affected component is Windows Hyper-V and that exploitation requires local access with high attack complexity and low privileges, resulting in a high availability impact (A: HIGH) while confidentialit...
CVE-2022-26913
CVE-2022-26913 is a Windows authentication information-disclosure vulnerability. The available connected data identifies affected software broadly as Windows operating systems and notes exploitation would involve information disclosure through the Windows authentication process. Public documentat...
CVE-2022-29132
Technical details about CVE-2022-29132 (Windows Print Spooler elevation) are not provided in the supplied documents. No affected product/version or remediation is specified here. Monitor for official updates.
CVE-2022-21893
Technical details about CVE-2022-21893 are not provided in the connected documents. The supplied sources include high-level vulnerability descriptions and update references, but no specifics on affected products/versions or fixes. Monitor for updated, concrete disclosures.
CVE-2022-29126
Technical details for CVE-2022-29126 are not provided in the supplied documents; no affected products, root cause, or remediation are specified here. Monitor for updates from the referenced sources.
CVE-2021-26441
CVE-2021-26441 is a local-elevation vulnerability in the Storage Spaces Controller. CVSSv3.1 base 7.8 (HIGH): LOCAL vector, LOW privileges required, no user interaction; impacts on confidentiality, integrity, and availability are High. The provided documents do not specify affected product/versio...
CVE-2022-21874
CVE-2022-21874 is a Windows Security Center API RCE vulnerability. Public details in the connected documents describe it as an RCE in the Windows Security Center API with a CVSS v3.1 base score of 7.8 (High) and a Local attack vector requiring user interaction for exploitation. Exploitation conte...
CVE-2022-29122
Technical details for CVE-2022-29122 (affected product, root cause, exploit scope) are not provided in the supplied documents. Monitor official Microsoft advisories and the CVE entry for updates and remediation guidance.
CVE-2022-22713
CVE-2022-22713 is a Windows Hyper-V Denial of Service vulnerability. Details in connected docs show it stems from a race condition in Hyper-V that can allow a local attacker to trigger a DoS on affected systems. Affected products include Windows Server 20H2 and Windows 10 x64 editions in 20H2/21H...