CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2023-36393 – Windows User Interface Application Core Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36393
14 Nov 2023 — Windows User Interface Application Core Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Windows User Interface Application Core. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36393 • CWE-426: Untrusted Search Path •
CVSS: 7.0EPSS: 0%CPEs: 18EXPL: 0CVE-2023-36394 – Windows Search Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36394
14 Nov 2023 — Windows Search Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Search Service. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36394 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 10.0EPSS: 1%CPEs: 26EXPL: 0CVE-2023-36397 – Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36397
14 Nov 2023 — Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Pragmatic General Multicast (PGM) de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36397 • CWE-126: Buffer Over-read •
CVSS: 6.5EPSS: 0%CPEs: 24EXPL: 0CVE-2023-36398 – Windows NTFS Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36398
14 Nov 2023 — Windows NTFS Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Windows NTFS. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36398 • CWE-908: Use of Uninitialized Resource •
CVSS: 8.8EPSS: 0%CPEs: 22EXPL: 0CVE-2023-36400 – Windows HMAC Key Derivation Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36400
14 Nov 2023 — Windows HMAC Key Derivation Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de derivación de clave HMAC de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36400 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.3EPSS: 1%CPEs: 26EXPL: 0CVE-2023-36401 – Microsoft Remote Registry Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36401
14 Nov 2023 — Microsoft Remote Registry Service Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del servicio de registro remoto de Microsoft. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36401 • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 2%CPEs: 26EXPL: 0CVE-2023-36402 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36402
14 Nov 2023 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36402 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.0EPSS: 0%CPEs: 20EXPL: 1CVE-2023-36403 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36403
14 Nov 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows. The Microsoft Windows Kernel has an issue with bad locking in registry virtualization that can result in race conditions. • https://packetstorm.news/files/id/176209 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 1CVE-2023-36404 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36404
14 Nov 2023 — Windows Kernel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del kernel de Windows. The Microsoft Windows Kernel has a time-of-check / time-of-use issue in verifying layered key security which may lead to information disclosure from privileged registry keys. • https://packetstorm.news/files/id/176110 • CWE-284: Improper Access Control •
CVSS: 7.0EPSS: 0%CPEs: 14EXPL: 0CVE-2023-36405 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36405
14 Nov 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36405 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •