CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-38044 – Windows CD-ROM File System Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-38044
Windows CD-ROM File System Driver Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Windows CD-ROM File System Driver This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ISO files. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An attacker can leverage this vulnerability to execute code in the context of the kernel. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38044 •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2022-41033 – Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2022-41033
Windows COM+ Event System Service Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en system service de eventos COM+ de Windows Microsoft Windows COM+ Event System Service contains an unspecified vulnerability that allows for privilege escalation. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41033 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 5.5EPSS: 0%CPEs: 33EXPL: 0CVE-2022-37985 – Windows Graphics Component Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-37985
Windows Graphics Component Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Graphics Component • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37985 •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-37996 – Windows Kernel Memory Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-37996
Windows Kernel Memory Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información en Windows Kernel Memory • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-37996 •
CVSS: 5.5EPSS: 0%CPEs: 20EXPL: 0CVE-2022-38026 – Windows DHCP Client Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-38026
Windows DHCP Client Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows DHCP Client • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38026 •