CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2023-36594 – Windows Graphics Component Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36594
10 Oct 2023 — Windows Graphics Component Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Graphics Component This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Additionally, the target system must have multiple active monitors. The specific flaw exists within the UMPDDrvPlgBlt function i... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36594 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 5%CPEs: 20EXPL: 0CVE-2023-36596 – Remote Procedure Call Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36596
10 Oct 2023 — Remote Procedure Call Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Remote Procedure Call • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36596 • CWE-668: Exposure of Resource to Wrong Sphere CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2023-36598 – Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36598
10 Oct 2023 — Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft WDAC ODBC Driver • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36598 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2023-36602 – Windows TCP/IP Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-36602
10 Oct 2023 — Windows TCP/IP Denial of Service Vulnerability Vulnerabilidad de denegación de servicio en TCP/IP de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36602 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2023-36603 – Windows TCP/IP Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-36603
10 Oct 2023 — Windows TCP/IP Denial of Service Vulnerability Vulnerabilidad de denegación de servicio en TCP/IP de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36603 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-36605 – Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36605
10 Oct 2023 — Windows Named Pipe Filesystem Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Named Pipe Filesystem • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36605 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2023-36606 – Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-36606
10 Oct 2023 — Microsoft Message Queuing Denial of Service Vulnerability Vulnerabilidad de denegación de servicio en Microsoft Message Queuing Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36606 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.0EPSS: 1%CPEs: 16EXPL: 0CVE-2023-36697 – Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36697
10 Oct 2023 — Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Message Queue • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36697 • CWE-20: Improper Input Validation •
CVSS: 4.4EPSS: 0%CPEs: 7EXPL: 0CVE-2023-36698 – Windows Kernel Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-36698
10 Oct 2023 — Windows Kernel Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad en el kernel de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36698 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2023-36701 – Microsoft Resilient File System (ReFS) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36701
10 Oct 2023 — Microsoft Resilient File System (ReFS) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Microsoft Resilient File System (ReFS) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36701 • CWE-125: Out-of-bounds Read •