CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2023-24483 – Privilege Escalation to NT AUTHORITY\SYSTEM on the vulnerable VDA
https://notcve.org/view.php?id=CVE-2023-24483
16 Feb 2023 — A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA. • https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483 • CWE-269: Improper Privilege Management •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-23459 – Priority Windows – Command Execution via SQL Injection
https://notcve.org/view.php?id=CVE-2023-23459
15 Feb 2023 — Priority Windows may allow Command Execution via SQL Injection using an unspecified method. • https://www.gov.il/en/Departments/faq/cve_advisories • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-22368
https://notcve.org/view.php?id=CVE-2023-22368
15 Feb 2023 — Untrusted search path vulnerability in ELECOM Camera Assistant 1.00 and QuickFileDealer Ver.1.2.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. • https://jvn.jp/en/jp/JVN60263237 • CWE-426: Untrusted Search Path •
CVSS: 7.8EPSS: 33%CPEs: 28EXPL: 1CVE-2023-21823 – Microsoft Windows Graphic Component Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-21823
14 Feb 2023 — Windows Graphics Component Remote Code Execution Vulnerability Microsoft Windows Graphic Component contains an unspecified vulnerability that allows for privilege escalation. • https://github.com/Elizarfish/CVE-2023-21823 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 96EXPL: 0CVE-2023-21808 – .NET and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21808
14 Feb 2023 — .NET and Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21808 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2023-23376 – Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-23376
14 Feb 2023 — Windows Common Log File System Driver Elevation of Privilege Vulnerability Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23376 • CWE-122: Heap-based Buffer Overflow •
CVSS: 5.0EPSS: 0%CPEs: 71EXPL: 0CVE-2023-21722 – .NET Framework Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21722
14 Feb 2023 — .NET Framework Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21722 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2023-21702 – Windows iSCSI Service Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21702
14 Feb 2023 — Windows iSCSI Service Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21702 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2023-21701 – Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21701
14 Feb 2023 — Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21701 • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2023-21700 – Windows iSCSI Discovery Service Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21700
14 Feb 2023 — Windows iSCSI Discovery Service Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21700 • CWE-476: NULL Pointer Dereference •