CVSS: 7.8EPSS: 3%CPEs: 9EXPL: 18CVE-2021-1732 – Microsoft Win32k Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2021-1732
25 Feb 2021 — Windows Win32k Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Win32k de Windows. Este ID de CVE es diferente de CVE-2021-1698 A vulnerability exists within win32k that can be leveraged by an attacker to escalate privileges to those of NT AUTHORITY\SYSTEM. The flaw exists in how the WndExtra field of a window can be manipulated into being treated as an offset despite being populated by an attacker-controlled value. This can be leveraged to achieve an out of bounds writ... • https://packetstorm.news/files/id/166169 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 0CVE-2021-1731 – PFX Encryption Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2021-1731
25 Feb 2021 — PFX Encryption Security Feature Bypass Vulnerability Una Vulnerabilidad de la Característica de Seguridad de PFX Encryption • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1731 • CWE-522: Insufficiently Protected Credentials •
CVSS: 8.0EPSS: 0%CPEs: 23EXPL: 0CVE-2021-1726 – Microsoft SharePoint Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2021-1726
25 Feb 2021 — Microsoft SharePoint Server Spoofing Vulnerability Una Vulnerabilidad de Suplantación de Identidad de Microsoft SharePoint • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1726 •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2021-1727 – Windows Installer Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-1727
25 Feb 2021 — Windows Installer Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Windows Installer • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1727 • CWE-269: Improper Privilege Management •
CVSS: 9.8EPSS: 5%CPEs: 19EXPL: 0CVE-2021-1722 – Windows Fax Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-1722
25 Feb 2021 — Windows Fax Service Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota del Fax Service de Windows. Este ID de CVE es diferente de CVE-2021-24077 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1722 •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-1698 – Windows Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-1698
25 Feb 2021 — Windows Win32k Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Win32k de Windows. Este ID de CVE es diferente de CVE-2021-1732 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1698 • CWE-269: Improper Privilege Management •
CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 0CVE-2020-17162 – Microsoft Windows Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2020-17162
25 Feb 2021 — Microsoft Windows Security Feature Bypass Vulnerability Una Vulnerabilidad de omisión de la Característica de Seguridad de Microsoft Windows • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17162 •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 2CVE-2021-24084 – Windows Mobile Device Management Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-24084
10 Feb 2021 — Windows Mobile Device Management Information Disclosure Vulnerability Una Vulnerabilidad de Divulgación de Información de Mobile Device Management de Windows This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Device Management Enrollment Service. By creating a director... • https://github.com/Jeromeyoung/CVE-2021-24084 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 1%CPEs: 12EXPL: 0CVE-2021-24081 – Microsoft Windows Codecs Library Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-24081
10 Feb 2021 — Microsoft Windows Codecs Library Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota de Windows Codecs Library de Microsoft This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the camera codec pack library. The issue results from the lack of proper v... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24081 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 19EXPL: 0CVE-2021-24083 – Windows Address Book Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-24083
10 Feb 2021 — Windows Address Book Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota de Windows Address Book This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of WAB files. The issue results from the lack of proper validation of user-supplied data,... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24083 • CWE-787: Out-of-bounds Write •