CVSS: 7.0EPSS: 0%CPEs: 12EXPL: 0CVE-2023-35360 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35360
11 Jul 2023 — Windows Kernel Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35360 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 1CVE-2023-35358 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35358
11 Jul 2023 — Windows Kernel Elevation of Privilege Vulnerability The Microsoft Windows Kernel may reference rolled-back transacted keys through differencing hives. • https://packetstorm.news/files/id/174117 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 1CVE-2023-35357 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35357
11 Jul 2023 — Windows Kernel Elevation of Privilege Vulnerability The Microsoft Windows Kernel may reference unbacked layered keys through registry virtualization. • https://packetstorm.news/files/id/174116 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 3CVE-2023-35356 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35356
11 Jul 2023 — Windows Kernel Elevation of Privilege Vulnerability The Microsoft Windows Kernel CmDeleteLayeredKey may delete predefined tombstone keys, leading to security descriptor use-after-free. • https://packetstorm.news/files/id/174118 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-35353 – Connected User Experiences and Telemetry Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35353
11 Jul 2023 — Connected User Experiences and Telemetry Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35353 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-35352 – Windows Remote Desktop Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-35352
11 Jul 2023 — Windows Remote Desktop Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35352 • CWE-693: Protection Mechanism Failure •
CVSS: 6.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-35351 – Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-35351
11 Jul 2023 — Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35351 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 8.3EPSS: 0%CPEs: 7EXPL: 0CVE-2023-35350 – Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-35350
11 Jul 2023 — Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35350 • CWE-122: Heap-based Buffer Overflow •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-35348 – Active Directory Federation Service Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-35348
11 Jul 2023 — Active Directory Federation Service Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35348 • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2023-35347 – Microsoft Install Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35347
11 Jul 2023 — Microsoft Install Service Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35347 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •