CVE-2024-43532 – Remote Registry Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-43532
08 Oct 2024 — Remote Registry Service Elevation of Privilege Vulnerability • https://github.com/HazeLook/CVE-2024-43532 • CWE-636: Not Failing Securely ('Failing Open') •
CVE-2024-43519 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-43519
08 Oct 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43519 • CWE-197: Numeric Truncation Error •
CVE-2024-43518 – Windows Telephony Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-43518
08 Oct 2024 — Windows Telephony Server Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43518 • CWE-122: Heap-based Buffer Overflow •
CVE-2024-43515 – Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-43515
08 Oct 2024 — Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43515 • CWE-400: Uncontrolled Resource Consumption •
CVE-2024-43513 – BitLocker Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-43513
08 Oct 2024 — BitLocker Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43513 • CWE-693: Protection Mechanism Failure •
CVE-2024-43506 – BranchCache Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-43506
08 Oct 2024 — BranchCache Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43506 • CWE-400: Uncontrolled Resource Consumption •
CVE-2024-43516 – Windows Secure Kernel Mode Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-43516
08 Oct 2024 — Windows Secure Kernel Mode Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43516 • CWE-822: Untrusted Pointer Dereference •
CVE-2024-43556 – Windows Graphics Component Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-43556
08 Oct 2024 — Windows Graphics Component Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage th... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43556 • CWE-416: Use After Free •
CVE-2024-43491 – Microsoft Windows Update Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-43491
10 Sep 2024 — Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released July 2015). This means that an attacker could exploit these previously mitigated vulnerabilities on Windows 10, version 1507 (Windows 10 Enterprise 2015 LTSB and Windows 10 IoT Enterprise 2015 LTSB) systems that have installed the Windows security update released on March 12, 2024—KB5035858 (OS Build 10240.20526) ... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43491 • CWE-416: Use After Free •
CVE-2024-43487 – Windows Mark of the Web Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-43487
10 Sep 2024 — Windows Mark of the Web Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43487 • CWE-693: Protection Mechanism Failure •