1829 matches found
CVE-2024-21338
CVE-2024-21338 is a Windows kernel local privilege escalation caused by an exposed IOCTL with insufficient access control in the appid.sys component. The vulnerability enables local attackers with LOW privileges and no user interaction to escalate to kernel to access high-privilege operations (CV...
CVE-2025-29824
CVE-2025-29824 is a Use-After-Free vulnerability in the Windows Common Log File System Driver (CLFS) kernel driver, caused by a race condition in W32PROCESS handling via WaitForInputIdle that enables local privilege escalation to SYSTEM. Microsoft patched this in April 2025 (KB5044284). Public ex...
CVE-2022-44698
CVE-2022-44698 is a Windows SmartScreen security feature bypass that enables bypass of Mark-of-the-Web protections via specially crafted files. The public data confirms exploitation in the wild and active exploitation historically cited by multiple sources (CISA KEV, KrebsOnSecurity). The underly...
CVE-2023-35355
CVE-2023-35355 is a Windows elevation-of-privilege vulnerability affecting the Windows Cloud Files Mini Filter Driver. The CVE is rated CVSSv3.1 base 7.8 (LOCAL exploit, LOW privileges required, no user interaction, HIGH impact to confidentiality, integrity, and availability) per Microsoft. Conne...
CVE-2023-23376
CVE-2023-23376 is a Windows Common Log File System Driver elevation-of-privilege vulnerability. The flaw in the CLFS driver could allow a local attacker to gain SYSTEM privileges, potentially enabling a chain with other bugs. Public exploitation and in-the-wild activity are discussed in Patch Tue...
CVE-2025-59287
CVE-2025-59287 is a deserialization vulnerability in Windows Server Update Services (WSUS) that enables unauthenticated, remote code execution over the network via crafted data (notably SOAP requests to WSUS endpoints such as Client.asmx). Connected exploit analyses confirm the root cause as unsa...
CVE-2023-36805
Technical details for CVE-2023-36805 are not publicly provided in the supplied documents. Monitor for updates from official advisories.
CVE-2023-38142
CVE-2023-38142 is a Windows kernel elevation-of-privilege vulnerability that can be exploited locally by an attacker with low privileges and no user interaction, with a high impact on confidentiality, integrity and availability (CVSS 3.1 base score 7.8). The provided documents confirm the vulnera...
CVE-2024-21412
CVE-2024-21412 is a Windows SmartScreen security feature bypass that lets a downloaded file, marked by the Mark of the Web (MoTW), execute without SmartScreen prompts when dealing with Internet Shortcut files. Connected sources cite in-the-wild activity (Water Hydra) and exploitation via spearphi...
CVE-2024-43572
CVE-2024-43572 is a Microsoft Windows Management Console Remote Code Execution vulnerability. Connected sources confirm a patch was released in the October 2024 updates, and Microsoft/Elastic Security Labs notes mitigations such as blocking untrusted MSC files to prevent code execution via MMC. T...
CVE-2023-38160
CVE-2023-38160 is described as a Windows TCP/IP Information Disclosure vulnerability. The provided initial entry includes CVSS v3.1 metrics (base score 5.5, Medium) with local attack vector, low attack complexity, and privileges required, and a confidentiality impact of High while integrity/avail...
CVE-2023-36874
CVE-2023-36874 is a Windows Error Reporting Service privilege-escalation vulnerability. The root cause described in the sources is a filesystem/relative-path handling flaw: WER may invoke wermgr.exe using a relative path and does not validate symbolic links, allowing a non-system executable to be...
CVE-2023-36584
CVE-2023-36584 concerns a Windows Mark of the Web (MOTW) security feature bypass vulnerability. The MOTW bypass can cause a limited loss of integrity and availability of security features, as described by CISA KEV entries. The vulnerability is listed among known exploited vulnerabilities catalog ...
CVE-2024-21302
Microsoft has fixed CVE-2024-21302 for Windows systems with Virtualization-Based Security (VBS). The elevation-of-privilege vulnerability allowed an administrator to replace current Windows system files with older versions, potentially reintroducing mitigated VBS vulnerabilities and exfiltrating ...
CVE-2025-53799
CVE-2025-53799 affects the Windows Imaging Component. The vulnerability arises from use of an uninitialized resource in Imaging Component code, enabling local attackers to disclose information. The NCSC entry confirms the impact as Access to sensitive data with a CVSS-like rating around 5.5 (Medi...
CVE-2024-30051
CVE-2024-30051 is an Elevation of Privilege in the Windows Desktop Window Manager (DWM) core library dwmcore.dll. The root cause is a heap-based buffer overflow in CCommandBuffer::Initialize caused by a size miscalculation (integer division) that can overflow the heap during a heap spray, allowin...
CVE-2025-53803
CVE-2025-53803 affects the Windows Kernel. Reported as: error message generation could disclose sensitive information to an authorized local attacker. According to the available connected sources, the vulnerability is categorized under Windows Kernel with a documented impact of accessing sensitiv...
CVE-2024-30088
CVE-2024-30088 is a Windows Kernel TOCTOU race condition that can lead to local privilege escalation via AuthzBasepCopyoutInternalSecurityAttributes. Publicly discussed exploits and PoCs exist (Windows kernel LPE PoCs and Metasploit module), and CISA lists it as a known-exploited vulnerability; a...
CVE-2024-38203
Technical details for CVE-2024-38203 are not publicly available in the supplied documents. No specifics on affected products, root cause, or remediation are provided here; monitor the feeds for updates from Microsoft and vulnerability trackers.
CVE-2024-38077
CVE-2024-38077 is a heap-based buffer overflow in the Windows Remote Desktop Licensing Service. The vulnerability occurs in CDataCoding::DecodeData() due to an incorrect calculation of the buffer size for Base64 data, enabling a remote attacker to trigger a heap overflow and achieve remote code e...
CVE-2024-26169
CVE-2024-26169 is a Windows Error Reporting Service Elevation of Privilege vulnerability (improper privilege management) that allows a local attacker with user permissions to gain SYSTEM privileges. Public exploits exist; the vulnerability has been added to CISA’s Known Exploited Vulnerabilities ...
CVE-2023-36025
CVE-2023-36025 is a Windows SmartScreen Security Feature Bypass vulnerability. Affected product context is Microsoft Windows (SmartScreen). Root cause and impact are described as bypass of SmartScreen with high severity (CVSS v3.1: 8.8, HIGH) affecting confidentiality, integrity, and availability...
CVE-2026-44815
CVE-2026-44815 is a stack-based buffer overflow in the Windows DHCP Client that enables remote code execution over the network. Affected component: Windows DHCP Client; root cause is a stack-based overflow. Consequences are remote code execution with high impact, as indicated by the CVSS vector (...
CVE-2023-38144
CVE-2023-38144 is a Windows elevation-of-privilege flaw in the Common Log File System (CLFS) driver . The provided description confirms a local, privilege-escalation condition affecting the Windows CLFS driver, with a CVSS v3.1 base score 7.8 (LOCAL, LOW attack complexity, LOW privileges required...
CVE-2023-36033
CVE-2023-36033 is a local elevation-of-privilege flaw in the Windows DWM Core Library. Reported exploits in the wild and public disclosures indicate that an attacker with low privileges and no user interaction could escalate to SYSTEM on affected Windows 10/11 and server platforms. The vulnerabil...
CVE-2024-49138
Summary (CVE-2024-49138): A heap-based buffer overflow in the Windows Common Log File System Driver (CLFS.sys) enables local Elevation of Privilege on Windows 11/23h2 (and other supported builds). Public PoCs and exploits exist (GitHub PoC repos and exploits referenced in multiple sources), with ...
CVE-2025-59230
CVE-2025-59230 describes an improper access control flaw in the Windows Remote Access Connection Manager (RasMan). The vulnerability allows an authenticated local user to elevate privileges to SYSTEM by manipulating RasMan’s IPC handling/ACLs, as reported in multiple sources. Exploitation activit...
CVE-2025-62215
CVE-2025-62215 is a Windows Kernel race condition that enables local privilege escalation to SYSTEM by exploiting a concurrency window over kernel object handles, causing a double-free. A PoC exploit repository demonstrates a multithreaded trigger and heap spraying to achieve token elevation. Pub...
CVE-2023-38039
CVE-2023-38039 affects curl; the vulnerability arises from unbounded header handling in HTTP responses, allowing an attacker to stream an endless header sequence and exhaust curl’s heap memory. The issue is caused by not enforcing a limit on the number/size of headers; impact is heap memory exhau...
CVE-2025-21391
CVE-2025-21391 (Windows Storage Elevation of Privilege) describes a local privilege escalation in Windows Storage. The vulnerability allows an attacker with low privileges and no user interaction to elevate to SYSTEM by exploiting a link-following flaw in Windows Storage (root cause described as ...
CVE-2023-20569
CVE-2023-20569 concerns a side-channel vulnerability in some AMD CPUs where an attacker may influence the return-address predictor, enabling speculative execution at attacker-controlled addresses and potential information disclosure. The vulnerability is discussed across multiple connected source...
CVE-2024-38014
CVE-2024-38014 is a Windows Installer privilege-escalation vulnerability (local, CVSSv3.1: 7.8) that could allow an attacker with low privileges to gain SYSTEM-level access. The issue targets the Windows Installer component and is described in sources as an improper privilege-management flaw. Pub...
CVE-2025-24071
CVE-2025-24071 affects Windows File Explorer via the .library-ms mechanism. When a user opens or extracts ZIP/RAR contents containing a crafted .library-ms, Explorer can trigger an SMB authentication to a remote server, leaking the user’s NTLM hash. No user interaction beyond extraction is requir...
CVE-2023-36036
CVE-2023-36036 is a Windows Elevation of Privilege in the Windows Cloud Files Mini Filter Driver. The flaw is a local, privilege-escalation bug (privileges required: low) that can grant SYSTEM-level access and has high impact on confidentiality, integrity, and availability. Public analyses report...
CVE-2023-38149
CVE-2023-38149 is a Windows TCP/IP Denial of Service vulnerability. The CVE entry describes a network-based issue with impact limited to Availability (I:H) and no Confidentiality/Integrity impact (C:N, I:N) per CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, base score 7.5 (HIGH). Connected docume...
CVE-2023-29360
CVE-2023-29360 is a Microsoft Streaming Service untrusted pointer dereference vulnerability that enables local elevation of privilege (attack vector: local, no user interaction; impact: confidentiality, integrity, and availability HIGH). The CVSSv3.1 score is 8.4 (HIGH). Connected materials inclu...
CVE-2024-43573
CVE-2024-43573 is a Windows MSHTML Platform Spoofing vulnerability. Public sources confirm it affects MSHTML in Windows and that patches were released (Microsoft Update Guide). There is evidence of exploitation in the wild for MSHTML-related spoofing vulnerabilities, including references noting a...
CVE-2025-59184
CVE-2025-59184 is listed in CVE records as a storage spaces direct information disclosure vulnerability. Connected data links this CVE to Storage Spaces Direct in Windows High Availability Services, implying an information disclosure risk to an unauthorized (local) actor. The core concern shown i...
CVE-2025-55695
CVE-2025-55695 describes an out-of-bounds read vulnerability in the Windows WLAN Auto Config Service that enables an authorized local attacker to disclose information. The description in the initial document confirms the root cause (out-of-bounds read) and the impact (local information disclosure...
CVE-2025-59294
CVE-2025-59294 affects Windows Taskbar Live. The description indicates exposure of sensitive information to an unauthorized actor under physical access, enabling information disclosure. Connected documents provide limited details: the exact vulnerable component context and remediation are not spe...
CVE-2025-59513
Technical details about CVE-2025-59513 are not publicly available in the provided documents. Monitor for updates from Microsoft and the CVE entry for affected components, impact, and remediation.
CVE-2023-38143
Technical details for CVE-2023-38143 are not publicly provided in the supplied documents. Affected product/version, root cause, exploitability, and remediation are not specified here; monitor for official disclosures and vendor advisory updates.
CVE-2025-59211
CVE-2025-59211 concerns exposure of sensitive information to an unauthorized actor in Windows Push Notification Core, enabling an attacker with local access to disclose information. The initial entry identifies a local attack vector with a medium base score (CVSS 3.1: AV=L, AC=L, PR=L, UI=N, S=U,...
CVE-2023-38139
CVE-2023-38139 is a Windows kernel vulnerability tied to registry hive refcount handling, contributing to hive memory corruption. The connected docs note refcount overflow risks in CM_KEY_SECURITY descriptors (and related loader logic), describing how overflow can trigger use-after-free and enabl...
CVE-2023-38141
Technical details for CVE-2023-38141 are not provided in the connected documents. The sources discuss Windows Registry/VRegDriver context but do not specify affected products/versions, root cause, impact, or fixes for this CVE. Monitor for official disclosures.
CVE-2024-21351
CVE-2024-21351 is a Windows SmartScreen Security Feature Bypass vulnerability. Public exploits exist; attackers could bypass SmartScreen and inject code, potentially gaining code execution, exposing data, or impacting availability. Relevant advisories note active exploitation and focus on applyin...
CVE-2023-38140
CVE-2023-38140 is a Windows kernel/registry vulnerability tied to the VRegDriver callback path. The issue arises in the VrpPostEnumerateKey handler, which allocates a kernel-pool buffer using a length controlled by the user, fills it with data (potentially shorter than the allocation), and copies...
CVE-2025-59204
CVE-2025-59204 concerns Windows Management Services and is triggered by use of an uninitialized resource, leading to local information disclosure. The impact is confidentiality loss with local attack vector (required local access, no user interaction). The connected documents confirm Windows secu...
CVE-2025-54917
CVE-2025-54917 is a network-exploitable issue in Windows MapUrlToZone that enables circumvention of a security mechanism. The CVSS v3.1 base score is 4.3 (NETWORK, LOW attack complexity, NONE privileges, UI required) with a LOW confidentiality impact. The Connected documents indicate this CVE map...
CVE-2024-35250
CVE-2024-35250 is a Windows kernel‑mode driver LPE in ks.sys (Kernel Streaming core) caused by an untrusted pointer dereference. PoCs and exploits exist (e.g., PoCs on GitHub; KS driver) with active demonstrations, and exploitation has been observed in public material. Microsoft addressed the iss...