Page 274 of 14922 results (0.009 seconds)

CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0

Windows Kernel Elevation of Privilege Vulnerability The Microsoft Windows Kernel may reference unbacked layered keys through registry virtualization. • http://packetstormsecurity.com/files/174116/Microsoft-Windows-Kernel-Unsafe-Reference.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35357 • CWE-125: Out-of-bounds Read •

CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0

Windows Kernel Elevation of Privilege Vulnerability The Microsoft Windows Kernel CmDeleteLayeredKey may delete predefined tombstone keys, leading to security descriptor use-after-free. • http://packetstormsecurity.com/files/174115/Microsoft-Windows-Kernel-Arbitrary-Read.html http://packetstormsecurity.com/files/174118/Microsoft-Windows-Kernel-Security-Descriptor-Use-After-Free.html http://packetstormsecurity.com/files/176451/Microsoft-Windows-Registry-Predefined-Keys-Privilege-Escalation.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35356 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35353 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0

Windows Remote Desktop Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35352 • CWE-693: Protection Mechanism Failure •

CVSS: 6.6EPSS: 0%CPEs: 7EXPL: 0

Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35351 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •