CVSS: 8.1EPSS: 2%CPEs: 14EXPL: 0CVE-2022-38023 – Netlogon RPC Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-38023
Netlogon RPC Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Netlogon RPC A flaw was found in samba. The Netlogon RPC implementations may use the rc4-hmac encryption algorithm, which is considered weak and should be avoided even if the client supports more modern encryption types. This issue could allow an attacker who knows the plain text content communicated between the samba client and server to craft data with the same MD5 calculation and replace it without being detected. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38023 https://security.gentoo.org/glsa/202309-06 https://access.redhat.com/security/cve/CVE-2022-38023 https://bugzilla.redhat.com/show_bug.cgi?id=2154362 • CWE-328: Use of Weak Hash •
CVSS: 8.1EPSS: 0%CPEs: 20EXPL: 0CVE-2022-41039 – Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41039
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del Windows Point-to-Point Tunneling Protocol • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41039 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2022-41044 – Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41044
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del Windows Point-to-Point Tunneling Protocol • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41044 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.8EPSS: 1%CPEs: 21EXPL: 0CVE-2022-41047 – Microsoft ODBC Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41047
Microsoft ODBC Driver Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del Microsoft ODBC Driver Remote • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41047 •
CVSS: 8.8EPSS: 1%CPEs: 21EXPL: 0CVE-2022-41048 – Microsoft ODBC Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41048
Microsoft ODBC Driver Remote Code Execution Vulnerability Vulnerabilidad de Ejecución de Código Remota de Microsoft ODBC Driver • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41048 •