CVSS: 8.8EPSS: 12%CPEs: 32EXPL: 0CVE-2022-22034 – Windows Graphics Component Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-22034
12 Jul 2022 — Windows Graphics Component Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Graphics Component This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. The issue results from the lack of validating the existence of an obj... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22034 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 1CVE-2022-30166 – Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-30166
15 Jun 2022 — Local Security Authority Subsystem Service Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Local Security Authority Subsystem Service On Microsoft Windows, the LsapGetClientInfo API in LSASRV will fallback and directly capture a caller's impersonation token if it fails to impersonate, leading to elevation of privilege if the impersonation level is not checked. • https://packetstorm.news/files/id/167754 •
CVSS: 8.8EPSS: 0%CPEs: 12EXPL: 1CVE-2022-30165 – Windows Kerberos Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-30165
15 Jun 2022 — Windows Kerberos Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Windows Kerberos On Windows, the buffer for redirected logon context does not protect against spoofing resulting in arbitrary code execution in the LSA leading to local elevation of privilege. • https://packetstorm.news/files/id/167711 •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 1CVE-2022-30164 – Kerberos AppContainer Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2022-30164
15 Jun 2022 — Kerberos AppContainer Security Feature Bypass Vulnerability Una Vulnerabilidad de Omisión de Funciones de Seguridad de Kerberos AppContainer On Windows 11, the Kerberos SSP's KerbRetrieveEncodedTicketMessage message can be used to get an arbitrary service ticket and session key from an AppContainer even without the enterprise authentication capability leading to elevation of privilege. • https://packetstorm.news/files/id/167716 •
CVSS: 8.5EPSS: 0%CPEs: 17EXPL: 0CVE-2022-30163 – Windows Hyper-V Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-30163
15 Jun 2022 — Windows Hyper-V Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Windows Hyper-V • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30163 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-30162 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-30162
15 Jun 2022 — Windows Kernel Information Disclosure Vulnerability Una Vulnerabilidad de Divulgación de Información en Windows Kernel • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30162 •
CVSS: 8.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-30161 – Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-30161
15 Jun 2022 — Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Windows Lightweight Directory Access Protocol (LDAP). Este ID de CVE es diferente de CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30161 •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-30160 – Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-30160
15 Jun 2022 — Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Advanced Local Procedure Call • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30160 •
CVSS: 7.1EPSS: 0%CPEs: 33EXPL: 1CVE-2022-30155 – Windows Kernel Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2022-30155
15 Jun 2022 — Windows Kernel Denial of Service Vulnerability Una Vulnerabilidad de Denegación de Servicio en Windows Kernel The Microsoft Windows kernel suffers from an invalid read in nt!MiRelocateImage while parsing a malformed PE file. • https://packetstorm.news/files/id/167755 • CWE-193: Off-by-one Error •
CVSS: 8.8EPSS: 0%CPEs: 33EXPL: 0CVE-2022-30153 – Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-30153
15 Jun 2022 — Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Windows Lightweight Directory Access Protocol (LDAP). Este ID de CVE es diferente de CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30161 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30153 •