Page 108 of 3007 results (0.017 seconds)

CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0

Windows Group Policy Preference Client Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Group Policy Preference Client. Este ID de CVE es diferente de CVE-2022-37993, CVE-2022-37994 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37999 •

CVSS: 6.6EPSS: 0%CPEs: 20EXPL: 0

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability Una Vulnerabilidad de Omisión de la Funcionalidades de Seguridad en Windows Portable Device Enumerator Service • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38032 •

CVSS: 7.8EPSS: 0%CPEs: 33EXPL: 0

Windows Win32k Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Win32k This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute code at low integrity on the target system in order to exploit this vulnerability. The specific flaw exists within the user-mode print driver host process. The issue results from insufficient validation of the origin of commands. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the current user at medium integrity. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37986 •

CVSS: 8.1EPSS: 0%CPEs: 33EXPL: 0

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Windows Point-to-Point Tunneling Protocol. Este ID de CVE es diferente de CVE-2022-22035, CVE-2022-24504, CVE-2022-33634, CVE-2022-38000, CVE-2022-38047, CVE-2022-41081 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30198 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Client Server Run-time Subsystem (CSRSS). Este ID de CVE es diferente de CVE-2022-37987 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CSRSS.exe process. By sending a crafted message to CSRSS, an attacker can cause an arbitrary DLL to be loaded. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37989 •