CVSS: 7.0EPSS: 0%CPEs: 15EXPL: 1CVE-2023-28229 – Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-28229
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Microsoft Windows Cryptographic Next Generation (CNG) Key Isolation Service contains an unspecified vulnerability that allows an attacker to gain specific limited SYSTEM privileges. • https://github.com/Y3A/CVE-2023-28229 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28229 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0CVE-2023-28228 – Windows Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-28228
Windows Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28228 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 5.3EPSS: 0%CPEs: 8EXPL: 0CVE-2023-28226 – Windows Enroll Engine Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-28226
Windows Enroll Engine Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28226 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2023-28225 – Windows NTLM Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-28225
Windows NTLM Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28225 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.1EPSS: 0%CPEs: 13EXPL: 0CVE-2023-28224 – Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-28224
Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28224 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •