CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2024-20697 – Windows libarchive Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-20697
09 Jan 2024 — Windows Libarchive Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Windows Libarchive Windows libarchive Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of libarchive. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RAR files. The issue results from the lack of ... • http://www.openwall.com/lists/oss-security/2024/06/04/2 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.3EPSS: 0%CPEs: 9EXPL: 1CVE-2024-20696 – Windows libarchive Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-20696
09 Jan 2024 — Windows Libarchive Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Windows Libarchive Windows libarchive Remote Code Execution Vulnerability It was discovered that libarchive incorrectly handled certain RAR archive files. If a user or automated system were tricked into processing a specially crafted RAR archive, an attacker could use this issue to cause libarchive to crash, resulting in a denial of service, or possibly execute arbitrary code. • https://github.com/clearbluejar/CVE-2024-20696 • CWE-122: Heap-based Buffer Overflow •
CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 0CVE-2024-20694 – Windows CoreMessaging Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-20694
09 Jan 2024 — Windows CoreMessaging Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Windows CoreMessaging • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20694 • CWE-668: Exposure of Resource to Wrong Sphere CWE-908: Use of Uninitialized Resource •
CVSS: 4.7EPSS: 0%CPEs: 19EXPL: 0CVE-2024-20691 – Windows Themes Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-20691
09 Jan 2024 — Windows Themes Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en temas de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20691 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-20690 – Windows Nearby Sharing Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-20690
09 Jan 2024 — Windows Nearby Sharing Spoofing Vulnerability Vulnerabilidad de Nearby Sharing Spoofing de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20690 • CWE-310: Cryptographic Issues •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2024-20683 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-20683
09 Jan 2024 — Win32k Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Win32k • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20683 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2024-20682 – Windows Cryptographic Services Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-20682
09 Jan 2024 — Windows Cryptographic Services Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de los servicios criptográficos de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20682 • CWE-822: Untrusted Pointer Dereference •
CVSS: 6.8EPSS: 0%CPEs: 26EXPL: 0CVE-2024-20680 – Windows Message Queuing Client (MSMQC) Information Disclosure
https://notcve.org/view.php?id=CVE-2024-20680
09 Jan 2024 — Windows Message Queuing Client (MSMQC) Information Disclosure Divulgación de información de Message Queuing Client (MSMQC) de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20680 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 24EXPL: 0CVE-2024-20658 – Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-20658
09 Jan 2024 — Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del disco duro virtual de Microsoft • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20658 • CWE-125: Out-of-bounds Read •
CVSS: 7.0EPSS: 0%CPEs: 26EXPL: 0CVE-2024-20657 – Windows Group Policy Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-20657
09 Jan 2024 — Windows Group Policy Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la política de grupo de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20657 • CWE-284: Improper Access Control •