CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2022-35746 – Windows Digital Media Receiver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35746
31 May 2023 — Windows Digital Media Receiver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35746 •
CVSS: 8.1EPSS: 2%CPEs: 19EXPL: 0CVE-2022-35745 – Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-35745
31 May 2023 — Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35745 •
CVSS: 10.0EPSS: 13%CPEs: 27EXPL: 0CVE-2022-35744 – Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-35744
31 May 2023 — Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35744 •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2022-35743 – Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-35743
31 May 2023 — Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35743 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.1EPSS: 0%CPEs: 16EXPL: 0CVE-2023-21712 – Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21712
27 Apr 2023 — Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21712 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2023-21524 – Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21524
10 Jan 2023 — Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Local Security Authority. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21524 • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.3EPSS: 0%CPEs: 30EXPL: 0CVE-2023-21525 – Remote Procedure Call Runtime Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21525
10 Jan 2023 — Remote Procedure Call Runtime Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21525 •
CVSS: 7.8EPSS: 4%CPEs: 30EXPL: 0CVE-2023-21527 – Windows iSCSI Service Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21527
10 Jan 2023 — Windows iSCSI Service Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del servicio Windows iSCSI • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21527 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 8.8EPSS: 0%CPEs: 30EXPL: 0CVE-2023-21532 – Windows GDI Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21532
10 Jan 2023 — Windows GDI Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows GDI This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of bitmap objects. The issue results from the lack of validating the existence of an object prior to performing o... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21532 • CWE-416: Use After Free •
CVSS: 8.1EPSS: 0%CPEs: 28EXPL: 0CVE-2023-21535 – Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21535
10 Jan 2023 — Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Windows Secure Socket Tunneling Protocol (SSTP). • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21535 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-591: Sensitive Data Storage in Improperly Locked Memory •