CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2023-36718 – Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36718
10 Oct 2023 — Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Virtual Trusted Platform Module • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36718 •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2023-36720 – Windows Mixed Reality Developer Tools Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-36720
10 Oct 2023 — Windows Mixed Reality Developer Tools Denial of Service Vulnerability Vulnerabilidad de denegación de servicio en Windows Mixed Reality Developer Tools • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36720 •
CVSS: 7.0EPSS: 0%CPEs: 7EXPL: 0CVE-2023-36721 – Windows Error Reporting Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36721
10 Oct 2023 — Windows Error Reporting Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Error Reporting Service • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36721 • CWE-269: Improper Privilege Management •
CVSS: 4.6EPSS: 0%CPEs: 16EXPL: 0CVE-2023-36722 – Active Directory Domain Services Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36722
10 Oct 2023 — Active Directory Domain Services Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Active Directory Domain Services • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36722 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 1CVE-2023-36723 – Windows Container Manager Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36723
10 Oct 2023 — Windows Container Manager Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Container Manager Service • https://github.com/Wh04m1001/CVE-2023-36723 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0CVE-2023-36724 – Windows Power Management Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36724
10 Oct 2023 — Windows Power Management Service Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Windows Power Management Service • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36724 • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-36725 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36725
10 Oct 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36725 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2023-36726 – Windows Internet Key Exchange (IKE) Extension Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36726
10 Oct 2023 — Windows Internet Key Exchange (IKE) Extension Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Internet Key Exchange (IKE) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36726 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2023-36729 – Named Pipe File System Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36729
10 Oct 2023 — Named Pipe File System Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Named Pipe File System • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36729 • CWE-121: Stack-based Buffer Overflow •
CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 0CVE-2023-36731 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36731
10 Oct 2023 — Win32k Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Win32k This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the BLTRECORD::bStretch function in the win32kfull driver. The issue results from the lack of proper validation of user-supplied bitmaps... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36731 • CWE-20: Improper Input Validation •