CVSS: 8.8EPSS: 0%CPEs: 22EXPL: 0CVE-2023-36400 – Windows HMAC Key Derivation Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36400
14 Nov 2023 — Windows HMAC Key Derivation Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de derivación de clave HMAC de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36400 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.3EPSS: 1%CPEs: 26EXPL: 0CVE-2023-36401 – Microsoft Remote Registry Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36401
14 Nov 2023 — Microsoft Remote Registry Service Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del servicio de registro remoto de Microsoft. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36401 • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 2%CPEs: 26EXPL: 0CVE-2023-36402 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36402
14 Nov 2023 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36402 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.0EPSS: 0%CPEs: 20EXPL: 1CVE-2023-36403 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36403
14 Nov 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows. The Microsoft Windows Kernel has an issue with bad locking in registry virtualization that can result in race conditions. • https://packetstorm.news/files/id/176209 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 1CVE-2023-36404 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36404
14 Nov 2023 — Windows Kernel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del kernel de Windows. The Microsoft Windows Kernel has a time-of-check / time-of-use issue in verifying layered key security which may lead to information disclosure from privileged registry keys. • https://packetstorm.news/files/id/176110 • CWE-284: Improper Access Control •
CVSS: 7.0EPSS: 0%CPEs: 14EXPL: 0CVE-2023-36405 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36405
14 Nov 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36405 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-36406 – Windows Hyper-V Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36406
14 Nov 2023 — Windows Hyper-V Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Windows Hyper-V. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36406 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 2CVE-2023-36407 – Windows Hyper-V Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36407
14 Nov 2023 — Windows Hyper-V Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Hyper-V. • https://github.com/pwndorei/CVE-2023-36407 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2023-36408 – Windows Hyper-V Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36408
14 Nov 2023 — Windows Hyper-V Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Hyper-V. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36408 • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 25EXPL: 0CVE-2023-36017 – Windows Scripting Engine Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2023-36017
14 Nov 2023 — Windows Scripting Engine Memory Corruption Vulnerability Vulnerabilidad de corrupción de memoria del motor de secuencias de comandos de Windows. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36017 • CWE-787: Out-of-bounds Write CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •