CVSS: 7.1EPSS: 0%CPEs: 22EXPL: 0CVE-2023-21760 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21760
Windows Print Spooler Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la cola de impresión de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21760 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2023-21558 – Windows Error Reporting Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21558
Windows Error Reporting Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del servicio de informes de errores de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21558 • CWE-20: Improper Input Validation •
CVSS: 3.3EPSS: 0%CPEs: 8EXPL: 0CVE-2023-21759 – Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-21759
Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21759 •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2023-21757 – Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21757
Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del protocolo de túnel de capa 2 de Windows (L2TP) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21757 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0CVE-2023-21758 – Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21758
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de extensión de intercambio de claves de Internet (IKE) de Windows This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Windows. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IKEEXT service, which listens on UDP ports 500 and 4500. A crafted Vendor ID payload can cause a null pointer dereference. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21758 • CWE-476: NULL Pointer Dereference •