CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 1CVE-2023-36404 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36404
14 Nov 2023 — Windows Kernel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del kernel de Windows. The Microsoft Windows Kernel has a time-of-check / time-of-use issue in verifying layered key security which may lead to information disclosure from privileged registry keys. • https://packetstorm.news/files/id/176110 • CWE-284: Improper Access Control •
CVSS: 7.0EPSS: 0%CPEs: 14EXPL: 0CVE-2023-36405 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36405
14 Nov 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36405 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-36406 – Windows Hyper-V Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36406
14 Nov 2023 — Windows Hyper-V Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Windows Hyper-V. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36406 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 15%CPEs: 5EXPL: 2CVE-2023-36407 – Windows Hyper-V Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36407
14 Nov 2023 — Windows Hyper-V Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Hyper-V. • https://github.com/pwndorei/CVE-2023-36407 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2023-36408 – Windows Hyper-V Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36408
14 Nov 2023 — Windows Hyper-V Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Hyper-V. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36408 • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 2%CPEs: 25EXPL: 0CVE-2023-36017 – Windows Scripting Engine Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2023-36017
14 Nov 2023 — Windows Scripting Engine Memory Corruption Vulnerability Vulnerabilidad de corrupción de memoria del motor de secuencias de comandos de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36017 • CWE-787: Out-of-bounds Write CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 1%CPEs: 26EXPL: 0CVE-2023-36036 – Microsoft Windows Cloud Files Mini Filter Driver Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-36036
14 Nov 2023 — Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del controlador del minifiltro de archivos en Windows Cloud. Microsoft Windows Cloud Files Mini Filter Driver contains a privilege escalation vulnerability that could allow an attacker to gain SYSTEM privileges. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36036 • CWE-122: Heap-based Buffer Overflow •
CVSS: 9.0EPSS: 0%CPEs: 21EXPL: 0CVE-2023-36423 – Microsoft Remote Registry Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36423
14 Nov 2023 — Microsoft Remote Registry Service Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del servicio de registro remoto de Microsoft. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36423 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 18%CPEs: 21EXPL: 2CVE-2023-36424 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36424
14 Nov 2023 — Windows Common Log File System Driver Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del controlador del sistema de archivos de registro común de Windows. • https://github.com/Nassim-Asrir/CVE-2023-36424 • CWE-125: Out-of-bounds Read •
CVSS: 8.0EPSS: 0%CPEs: 21EXPL: 0CVE-2023-36425 – Windows Distributed File System (DFS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36425
14 Nov 2023 — Windows Distributed File System (DFS) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del sistema de archivos distribuido (DFS) de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36425 • CWE-122: Heap-based Buffer Overflow •