2701 matches found
CVE-2023-44487
CVE-2023-44487 – HTTP/2 Rapid Reset DoS Root cause: HTTP/2 stream resets can cause servers to continue processing, leading to unbounded resource consumption and potential DoS when clients rapidly cancel streams. What’s affected: Various HTTP/2 implementations and deployments, including servers, p...
CVE-2020-1472
CVE-2020-1472 (Zerologon) is referenced in connected records as affecting Samba packages. Two advisories note affected versions and fixes: CVE-2020-1472 in Samba for versions < 4.18.3-1 (CBLMARINER:36991) and
CVE-2023-50387
CVE-2023-50387 (KeyTrap) affects DNSSEC processing in DNS resolvers. Multiple advisories note excessive CPU/DoS risk when validating DNSKEY/RRSIG in zones with many records. Affected products include Bind (bind9) and Unbound across Linux distributions (e.g., AL2, AlmaLinux) with patches/released ...
CVE-2013-3900
CVE-2013-3900 describes a remote code execution in the WinVerifyTrust Authenticode verification for PE files. An attacker could modify a signed executable to execute code without invalidating the signature, potentially gaining full control of the system. Microsoft republished this CVE in the Secu...
CVE-2020-1350
CVE-2020-1350 (SIGRed) is a remote code execution vulnerability in Windows DNS Server caused by improper handling of requests, allowing an unauthenticated attacker to execute code with Local System privileges via DNS queries. Exploitation could be wormable, enabling propagation to other DNS serve...
CVE-2020-0787
CVE-2020-0787 is a privilege-escalation flaw in Microsoft Windows BITS (Background Intelligent Transfer Service) caused by improper handling of symbolic links. The issue can allow an attacker who can run code on a vulnerable host to escalate to system-level privileges and execute arbitrary code. ...
CVE-2021-1732
CVE-2021-1732 is a Windows Win32k local privilege escalation vulnerability. The root cause is a flaw in how the WndExtra field is handled as an offset, enabling an out-of-bounds write that grants SYSTEM privileges. Public exploit activity exists in multiple GitHub repos that demonstrate a local p...
CVE-2020-17087
CVE-2020-17087 is a Windows Kernel Local Privilege Escalation vulnerability tied to a heap-based overflow in cng.sys. Connected exploit sources describe a local-vector attack requiring initial code execution, then abusing an IOCTL to .\\.GLOBALROOT\Device\Cng with a crafted size parameter that ca...
CVE-2020-0601
The CVE-2020-0601 issue affects Windows CryptoAPI (Crypt32.dll) and its ECC certificate validation, enabling a spoofing attack where a forged code-signing certificate could make malware appear trusted. Affected platforms include Windows 10 and Windows Server 2016/2019, with the vulnerability tied...
CVE-2023-21554
The CVE-2023-21554 vulnerability is an RCE in Microsoft Message Queuing (MSMQ) due to improper input validation (CWE-20) in the MSMQ service. When MSMQ is enabled, a crafted MSMQ packet over TCP port 1801 can trigger an out-of-bounds/overflow condition, potentially allowing remote code execution....
CVE-2019-0841
CVE-2019-0841 is a Windows privilege-escalation vulnerability in the AppXSVC service caused by improper handling of hard links. The issue enables local elevation of privilege (from a low-privilege context to SYSTEM) and has public exploitation references (Exploits listed on Exploit-DB; CIRCL sigh...
CVE-2023-28252
CVE-2023-28252 – Windows CLFS driver local privilege escalation : The vulnerability stems from CLFS.sys handling of file blocks in memory (m_rgBlocks) and associated metadata, enabling an out-of-bounds access that lets an unprivileged user hijack the SYSTEM token. Public PoCs and in-the-wild acti...
CVE-2020-0986
Technical details about CVE-2020-0986 are not publicly available in the provided connected documents. Please monitor for updates; current materials mention malware references in related EUVD entries but do not disclose affected products, vulnerable components, impact, or fixes.
CVE-2019-1322
CVE-2019-1322 is a Windows local privilege escalation vulnerability, arising from improper handling of authentication requests that can allow an attacker to execute with SYSTEM privileges. Public references and connected items show explicit exploitation tooling and modules (e.g., COMahawk and Ere...
CVE-2020-1020
CVE-2020-1020 describes a remote code execution in Microsoft Windows via the Windows Adobe Font Manager Library when handling specially crafted Adobe Type 1 PostScript fonts. The flaw affects Windows versions other than Windows 10, with exploitation enabling code execution remotely after processi...
CVE-2020-0683
CVE-2020-0683 is a Windows Installer Elevation of Privilege vulnerability. The issue occurs when MSI packages process symbolic links, allowing a local attacker to bypass access restrictions and add or remove files. Technical details across connected sources confirm the affected component (Windows...
CVE-2020-1054
CVE-2020-1054 is a Win32k kernel-mode elevation of privilege vulnerability in Windows where the Windows kernel-driver mishandles memory objects. The CVE entry is distinct from CVE-2020-1143. Public references in the provided set show an exploit for CVE-2020-1054 (Out-of-bounds write in Microsoft ...
CVE-2019-0880
CVE-2019-0880 is a local privilege-escalation in Windows where splwow64.exe mishandles certain calls, allowing a low-privilege user to elevate to medium integrity. Public details in the Initial and connected documents confirm the vulnerability class and affected component, and Microsoft’s MSRC en...
CVE-2019-1405
CVE-2019-1405 is a local privilege-escalation flaw in the Windows UPnP service where improper handling allows COM object creation. Root cause per the connected CISA KEV entry is improper COM object creation by the UPnP service, enabling elevation of privileges. The CVSSv3.1 metrics in the initial...
CVE-2019-0859
CVE-2019-0859 (Windows Win32k Privilege Escalation) : A local privilege escalation vulnerability in the Win32k component of Microsoft Windows arises from Win32k failing to properly handle objects in memory, enabling an attacker to run code in kernel mode. Several connected sources corroborate thi...
CVE-2018-8453
CVE-2018-8453 is a Windows Win32k local privilege escalation vulnerability. The flaw arises when Win32k fails to properly handle memory objects, allowing an attacker to escalate privileges via local code execution. Affected products include Windows 7, Windows 8.1, Windows 10 (and server variants ...
CVE-2019-0803
CVE-2019-0803 is a Windows Win32k elevation of privilege vulnerability. Root cause: Win32k fails to properly handle objects in memory, enabling local kernel-mode code execution. Affected software: Microsoft Windows Win32k component (privilege escalation). Impact: local privilege escalation with k...
CVE-2019-1064
CVE-2019-1064 is a Windows elevation-of-privilege flaw in the AppXSVC (Windows AppX Deployment Service) due to improper handling of hard links. The root cause allows a locally authenticated attacker to run processes in an elevated context, potentially installing programs or modifying data. Micros...
CVE-2019-1130
CVE-2019-1130 is a Windows privilege-escalation vulnerability in the AppX Deployment Service (AppXSVC) caused by improper handling of hard links. The CVE notes an elevation of privilege from a local user, with a CVSSv3.1 base score of 7.8 (LOCAL attack, LOW complexity, Privileges Required: LOW; U...
CVE-2020-1464
CVE-2020-1464 is a Windows spoofing vulnerability where improper validation of code-signing signatures allows bypassing security features and loading improperly signed files. It affects Windows and was actively exploited in the wild, per reports linked to the August 2020 Patch Tuesday. The core i...
CVE-2021-28310
CVE-2021-28310 is a Win32k Elevation of Privilege vulnerability in Microsoft Windows. Project Zero’s 2021 review notes Win32k 0-day activity among in-the-wild exploits, with CVE-2021-28310 listed as one of the Windows 0-days targeted in 2021 (alongside other Win32k issues). The CVE entry is suppo...
CVE-2019-1069
CVE-2019-1069 is a Windows Task Scheduler Privilege Escalation vulnerability in which the Task Scheduler Service inadequately validates certain file operations. The issue enables local privilege escalation when an attacker with unprivileged code execution on a victim system exploits the flaw. Mic...
CVE-2019-1253
CVE-2019-1253 describes a local privilege-escalation in Microsoft Windows AppX Deployment Server caused by improper handling of junctions. The vulnerability allows an attacker who already has code execution on the target system to elevate privileges (local attack, low integrity/login requirements...
CVE-2020-0610
CVE-2020-0610 is a Windows RD Gateway vulnerability (BlueGate) that enables unauthenticated remote code execution over UDP/3391. The RD Gateway role with UDP transport enabled is affected; exploitation targets the gateway service via specially crafted UDP traffic, enabling full compromise (per th...
CVE-2019-1215
CVE-2019-1215 describes a local privilege-escalation in Windows via ws2ifsl.sys (Winsock) where improper handling of memory-resident objects enables code execution with elevated privileges. Affected component is Winsock’s ws2ifsl.sys; root cause is memory handling of objects within the Winsock su...
CVE-2019-1315
CVE-2019-1315 describes a local privilege-escalation in Windows Error Reporting Manager, triggered when hard links are mishandled. Affected: Windows OS components involving Error Reporting; root cause is improper handling leading to unauthorized file manipulation and elevation. CVSSv3.1 base scor...
CVE-2019-0703
CVE-2019-0703 is described in the initial doc as an information-disclosure vulnerability in the Windows SMB Server’s handling of certain requests, distinct from CVE-2019-0704 and CVE-2019-0821. Connected sources add concrete context: FireEye/Mandiant notes this CVE was used in targeted attacks du...
CVE-2019-1214
CVE-2019-1214 is a Windows privilege-escalation vulnerability in the Windows Common Log File System (CLFS) Driver. It stems from improper handling of objects in memory, enabling a local attacker to escalate privileges on a vulnerable system. Public references consistently describe the CLFS driver...
CVE-2019-0863
CVE-2019-0863 is a Windows Elevation of Privilege vulnerability in Windows Error Reporting (WER) where the vulnerability stems from the way WER handles files. The underlying issue allows local attackers to escalate to kernel-level privileges (CVE-2019-0863). Microsoft patched this in the May 2019...
CVE-2019-0543
Technical details about CVE-2019-0543 are not publicly provided in the supplied documents. Monitor for updates.
CVE-2019-1385
CVE-2019-1385 is a local privilege-escalation vulnerability in Windows AppX Deployment Extensions (AppXSVC). The issue arises from improper privilege management within the AppX Deployment Extensions, enabling an authenticated attacker who runs a specially crafted application to elevate privileges...
CVE-2019-0797
CVE-2019-0797 is a Windows Win32k privilege-escalation vulnerability caused by the Win32k component failing to properly handle objects in memory, enabling local code execution with kernel privileges. Affected: Windows Win32k subsystem (Win32k.sys). Impact: elevated privileges to SYSTEM with poten...
CVE-2020-0938
CVE-2020-0938 affects the Windows Adobe Font Manager Library by improperly handling specially crafted multi-master Font 1 PostScript fonts. The root cause is a vulnerability in the font parser that can allow remote code execution when processing crafted documents. For all Windows versions except ...
CVE-2020-1027
CVE-2020-1027 is a Windows privilege-escalation vulnerability affecting Windows kernel memory handling and the CSRSS subsystem. The Windows kernel path (memory object handling) enabled local privilege escalation via write-what-where style abuse in kernel fault paths, while the CSRSS path allowed ...
CVE-2022-21907
CVE-2022-21907 concerns the HTTP Protocol Stack (http.sys) in Windows, enabling remote code execution via specially crafted packets. Public documentation and PoCs indicate impact on Windows 10 (notably 2004) and Windows Server variants, with multiple exploits and PoCs surfacing publicly. Mitigati...
CVE-2019-0903
Technical details about CVE-2019-0903 (affected component/version/root cause/impact) are not publicly provided in the supplied documents. Monitor for updates.
CVE-2020-0638
CVE-2020-0638 is a Windows Update Notification Manager elevation-of-privilege vulnerability. An attacker who already has code execution on the target could exploit the flaw by running a crafted program to elevate privileges, due to how the Update Notification Manager handles files. The issue is l...
CVE-2019-1129
CVE-2019-1129 is a Windows AppX Deployment Service (AppXSVC) privilege-escalation vulnerability caused by improper handling of hard links. The issue enables local Privilege Escalation with high impact; CVSS 3.1 base score 7.8 (LOCAL, LOW complexity, no user interaction) as documented by NVD, and ...
CVE-2020-17049
CVE-2020-17049 is a Kerberos KDC service-ticket delegation bypass in IBM Application Gateway, enabling a compromised service using Kerberos Constrained Delegation to tamper with service tickets and force KDC acceptance. The vulnerability affects IBM Application Gateway versions 19.12–24.06. IBM’s...
CVE-2018-8611
CVE-2018-8611 – Windows kernel elevation of privilege . The vulnerability arises because the Windows kernel fails to properly handle objects in memory, enabling a local attacker to run arbitrary code in kernel mode and perform actions such as installing programs, changing data, or creating accoun...
CVE-2019-1388
CVE-2019-1388 is a Windows local privilege-escalation vulnerability in the Certificate Dialog caused by improper enforcement of user privileges. Public data shows CVSS v3.1 base score 7.8 (HIGH) with LOCAL attack vector, LOW privilege requirements, no user interaction, and high impact to confiden...
CVE-2022-38023
CVE-2022-38023 (NetLogon RC4-HMAC vulnerability) affects Samba and related packages (samba, samba-client, libsmbclient, libwbclient, etc.). Technical detail: the issue stems from allowing RC4/HMAC-MD5 in the NetLogon Secure Channel, weakening authentication between clients and servers. Affected p...
CVE-2023-21823
CVE-2023-21823 (Windows Graphics Component RCE) : A Windows Graphics Component remote code execution vulnerability that can give an attacker SYSTEM-level code execution when exploited. Public discussion across sources notes exploitation risk and active exploitation in the wild around Patch Tuesda...
CVE-2023-24932
CVE-2023-24932 is a Secure Boot bypass vulnerability. It involves a Microsoft-signed UEFI application using the IhisiParamBuffer NVRAM variable to bypass Security2 verification, potentially allowing execution of unsigned binaries during early boot. Affected components include DT Research’s DtBios...
CVE-2023-36434
Technical details about CVE-2023-36434 are not provided in the connected documents. The materials mention the vulnerability in Windows IIS (Elevation of Privilege) but do not disclose affected products, root cause, exploit info, or fixes. Monitor for updates.