CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49088 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49088
10 Dec 2024 — Windows Common Log File System Driver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49088 • CWE-126: Buffer Over-read •
CVSS: 7.1EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49082 – Windows File Explorer Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-49082
10 Dec 2024 — Windows File Explorer Information Disclosure Vulnerability This vulnerability allows remote attackers to delete arbitrary files or disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability. The specific flaw exists within the handling of filenames. The issue results from the lack of proper validation of filenames originating from untrusted sources, which may contain path traversal characters. An attacker can leverage this vulner... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49082 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.0EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49080 – Windows IP Routing Management Snapin Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49080
10 Dec 2024 — Windows IP Routing Management Snapin Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49080 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2024-49079 – Input Method Editor (IME) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49079
10 Dec 2024 — Input Method Editor (IME) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49079 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49072 – Windows Task Scheduler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49072
10 Dec 2024 — Windows Task Scheduler Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49072 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2024-49129 – Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-49129
10 Dec 2024 — Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49129 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.1EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49126 – Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49126
10 Dec 2024 — Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49126 • CWE-416: Use After Free CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 10.0EPSS: 0%CPEs: 17EXPL: 0CVE-2024-49125 – Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49125
10 Dec 2024 — Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49125 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49124 – Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49124
10 Dec 2024 — Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49124 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.1EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49122 – Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49122
10 Dec 2024 — Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49122 • CWE-416: Use After Free •