CVSS: 10.0EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21233 – Windows Telephony Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21233
14 Jan 2025 — Windows Telephony Service Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21233 • CWE-122: Heap-based Buffer Overflow •
CVSS: 4.9EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21215 – Secure Boot Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-21215
14 Jan 2025 — Secure Boot Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21215 • CWE-125: Out-of-bounds Read •
CVSS: 4.2EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21214 – Windows BitLocker Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-21214
14 Jan 2025 — Windows BitLocker Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21214 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.2EPSS: 0%CPEs: 26EXPL: 0CVE-2025-21210 – Windows BitLocker Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-21210
14 Jan 2025 — Windows BitLocker Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21210 • CWE-636: Not Failing Securely ('Failing Open') •
CVSS: 10.0EPSS: 4%CPEs: 26EXPL: 0CVE-2025-21413 – Windows Telephony Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21413
14 Jan 2025 — Windows Telephony Service Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21413 • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 4%CPEs: 26EXPL: 0CVE-2025-21411 – Windows Telephony Service Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21411
14 Jan 2025 — Windows Telephony Service Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21411 • CWE-122: Heap-based Buffer Overflow •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-40733
https://notcve.org/view.php?id=CVE-2022-40733
18 Dec 2024 — An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code to trigger Denial Of Service. Existe una vulnerabilidad de violación de acceso en la funcionalidad DirectComposition del controlador win32kbase.sys versión 10.0... • https://talosintelligence.com/vulnerability_reports/TALOS-2022-1515 • CWE-476: NULL Pointer Dereference •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-40732
https://notcve.org/view.php?id=CVE-2022-40732
18 Dec 2024 — An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code to trigger Denial Of Service. Existe una vulnerabilidad de violación de acceso en la funcionalidad DirectComposition del controlador win32kbase.sys versión 10.0... • https://talosintelligence.com/vulnerability_reports/TALOS-2022-1514 • CWE-476: NULL Pointer Dereference •
CVSS: 8.4EPSS: 1%CPEs: 25EXPL: 0CVE-2024-49105 – Remote Desktop Client Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49105
10 Dec 2024 — Remote Desktop Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49105 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 50%CPEs: 26EXPL: 3CVE-2024-49138 – Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2024-49138
10 Dec 2024 — Windows Common Log File System Driver Elevation of Privilege Vulnerability Microsoft Windows Common Log File System (CLFS) driver contains a heap-based buffer overflow vulnerability that allows a local attacker to escalate privileges. • https://github.com/MrAle98/CVE-2024-49138-POC • CWE-122: Heap-based Buffer Overflow •