CVE-2023-36402 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36402
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36402 • CWE-122: Heap-based Buffer Overflow •
CVE-2023-36403 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36403
Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows. The Microsoft Windows Kernel has an issue with bad locking in registry virtualization that can result in race conditions. • http://packetstormsecurity.com/files/176209/Windows-Kernel-Race-Conditions.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36403 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVE-2023-36404 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36404
Windows Kernel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del kernel de Windows. The Microsoft Windows Kernel has a time-of-check / time-of-use issue in verifying layered key security which may lead to information disclosure from privileged registry keys. • http://packetstormsecurity.com/files/176110/Windows-Kernel-Information-Disclosure.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36404 • CWE-284: Improper Access Control •
CVE-2023-36405 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36405
Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36405 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2023-36406 – Windows Hyper-V Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36406
Windows Hyper-V Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Windows Hyper-V. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36406 • CWE-20: Improper Input Validation •