CVSS: 8.8EPSS: 0%CPEs: 21EXPL: 0CVE-2020-0634 – Microsoft Windows CLFS Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-0634
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'. Se presenta una vulnerabilidad de elevación de privilegios cuando el controlador Windows Common Log File System (CLFS) maneja inapropiadamente los objetos en memoria, también se conoce como "Windows Common Log File System Driver Elevation of Privilege Vulnerability". This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CLFS.SYS driver. Crafted data in a binary log file can cause a pointer to be reused after it has been freed. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0634 https://www.zerodayinitiative.com/advisories/ZDI-20-125 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2020-0631
https://notcve.org/view.php?id=CVE-2020-0631
An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628, CVE-2020-0629, CVE-2020-0630, CVE-2020-0632, CVE-2020-0633. Se presenta una vulnerabilidad de elevación de privilegios en la manera en que Windows Search Indexer maneja los objetos en memoria, también se conoce como "Windows Search Indexer Elevation of Privilege Vulnerability". Este ID de CVE es diferente de CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628, CVE- 2020-0629, CVE-2020-0630, CVE-2020-0632, CVE-2020-0633. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0631 •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2020-0632
https://notcve.org/view.php?id=CVE-2020-0632
An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628, CVE-2020-0629, CVE-2020-0630, CVE-2020-0631, CVE-2020-0633. Se presenta una vulnerabilidad de elevación de privilegios en la manera en que Windows Search Indexer maneja los objetos en memoria, también se conoce como "Windows Search Indexer Elevation of Privilege Vulnerability". Este ID de CVE es diferente de CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628, CVE- 2020-0629, CVE-2020-0630, CVE-2020-0631, CVE-2020-0633. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0632 •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2020-0630
https://notcve.org/view.php?id=CVE-2020-0630
An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628, CVE-2020-0629, CVE-2020-0631, CVE-2020-0632, CVE-2020-0633. Se presenta una vulnerabilidad de elevación de privilegios en la manera en que Windows Search Indexer maneja los objetos en memoria, también se conoce como "Windows Search Indexer Elevation of Privilege Vulnerability". Este ID de CVE es diferente de CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628, CVE- 2020-0629, CVE-2020-0631, CVE-2020-0632, CVE-2020-0633. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0630 •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2020-0628
https://notcve.org/view.php?id=CVE-2020-0628
An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0629, CVE-2020-0630, CVE-2020-0631, CVE-2020-0632, CVE-2020-0633. Se presenta una vulnerabilidad de elevación de privilegios en la manera en que Windows Search Indexer maneja los objetos en memoria, también se conoce como "Windows Search Indexer Elevation of Privilege Vulnerability". Este ID de CVE es diferente de CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0629, CVE- 2020-0630, CVE-2020-0631, CVE-2020-0632, CVE-2020-0633. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0628 •