CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 1CVE-2024-49114 – Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49114
10 Dec 2024 — Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability The Microsoft Windows kernel is susceptible to a false file immutability attack on registry hives via the Cloud Filter API. • https://packetstorm.news/files/id/183324 • CWE-820: Missing Synchronization •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 6CVE-2024-49113 – Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-49113
10 Dec 2024 — Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability • https://packetstorm.news/files/id/183329 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 26EXPL: 6CVE-2024-49112 – Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49112
10 Dec 2024 — Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability • https://packetstorm.news/files/id/183317 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.2EPSS: 0%CPEs: 12EXPL: 0CVE-2024-49110 – Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49110
10 Dec 2024 — Windows Mobile Broadband Driver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49110 • CWE-125: Out-of-bounds Read •
CVSS: 6.8EPSS: 0%CPEs: 12EXPL: 0CVE-2024-49109 – Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49109
10 Dec 2024 — Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49109 • CWE-125: Out-of-bounds Read •
CVSS: 7.0EPSS: 0%CPEs: 13EXPL: 0CVE-2024-49095 – Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49095
10 Dec 2024 — Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49095 • CWE-415: Double Free CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49090 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49090
10 Dec 2024 — Windows Common Log File System Driver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49090 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49088 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49088
10 Dec 2024 — Windows Common Log File System Driver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49088 • CWE-126: Buffer Over-read •
CVSS: 7.2EPSS: 0%CPEs: 12EXPL: 0CVE-2024-49083 – Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-49083
10 Dec 2024 — Windows Mobile Broadband Driver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49083 • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 26EXPL: 0CVE-2024-49082 – Windows File Explorer Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-49082
10 Dec 2024 — Windows File Explorer Information Disclosure Vulnerability This vulnerability allows remote attackers to delete arbitrary files or disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability. The specific flaw exists within the handling of filenames. The issue results from the lack of proper validation of filenames originating from untrusted sources, which may contain path traversal characters. An attacker can leverage this vulner... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49082 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •