CVSS: 7.5EPSS: 0%CPEs: 82EXPL: 0CVE-2023-24936 – .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-24936
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24936 https://access.redhat.com/security/cve/CVE-2023-24936 https://bugzilla.redhat.com/show_bug.cgi?id=2192438 •
CVSS: 6.5EPSS: 0%CPEs: 15EXPL: 0CVE-2023-24937 – Windows CryptoAPI Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-24937
Windows CryptoAPI Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24937 • CWE-20: Improper Input Validation •
CVSS: 4.7EPSS: 4%CPEs: 17EXPL: 0CVE-2023-32019 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-32019
Windows Kernel Information Disclosure Vulnerability Due to some design problems in how transactions are implemented in the registry, it is possible for a low-privileged local attacker to force a non-atomic outcome of a transaction used by another high-privileged process in the system. • http://packetstormsecurity.com/files/173310/Windows-Kernel-KTM-Registry-Transactions-Non-Atomic-Outcomes.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32019 • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2023-32017 – Microsoft PostScript Printer Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-32017
Microsoft PostScript Printer Driver Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32017 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0CVE-2023-32016 – Windows Installer Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-32016
Windows Installer Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32016 • CWE-668: Exposure of Resource to Wrong Sphere CWE-908: Use of Uninitialized Resource •