CVSS: 7.8EPSS: 12%CPEs: 16EXPL: 0CVE-2024-38054 – Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-38054
09 Jul 2024 — Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Kernel Streaming WOW Thunk Service Driver • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38054 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2024-38051 – Windows Graphics Component Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-38051
09 Jul 2024 — Windows Graphics Component Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Windows Graphics Component • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38051 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2024-38034 – Windows Filtering Platform Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-38034
09 Jul 2024 — Windows Filtering Platform Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Filtering Platform • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38034 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.3EPSS: 16%CPEs: 16EXPL: 0CVE-2024-38025 – Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-38025
09 Jul 2024 — Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de la librería Microsoft Windows Performance Data Helper • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38025 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 17EXPL: 0CVE-2024-35270 – Windows iSCSI Service Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-35270
09 Jul 2024 — Windows iSCSI Service Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del servicio Windows iSCSI • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35270 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.1EPSS: 0%CPEs: 17EXPL: 0CVE-2024-30081 – Windows NTLM Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-30081
09 Jul 2024 — Windows NTLM Spoofing Vulnerability Vulnerabilidad de suplantación de Windows NTLM • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30081 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 1%CPEs: 17EXPL: 0CVE-2024-30094 – Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-30094
11 Jun 2024 — Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del Servicio de enrutamiento y acceso remoto de Windows (RRAS) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30094 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2024-30091 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-30091
11 Jun 2024 — Win32k Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Win32k • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30091 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.8EPSS: 0%CPEs: 17EXPL: 0CVE-2024-30087 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-30087
11 Jun 2024 — Win32k Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Win32k This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. The issue results from the lack of proper input validation. An attacker can leverage this vulnerability to escala... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30087 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 17EXPL: 0CVE-2024-30084 – Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-30084
11 Jun 2024 — Windows Kernel-Mode Driver Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del controlador en modo kernel de Windows This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the UnserializePropertySet function in the ks.sys driver. The issue results from the... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30084 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •