CVSS: 8.8EPSS: 49%CPEs: 10EXPL: 2CVE-2023-29360 – Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability
https://notcve.org/view.php?id=CVE-2023-29360
13 Jun 2023 — Microsoft Streaming Service Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the mskssrv driver. • https://github.com/0xDivyanshu-new/CVE-2023-29360 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-32162 – Wacom Drivers for Windows Incorrect Permission Assignment Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-32162
26 May 2023 — Wacom Drivers for Windows Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Wacom Drivers for Windows. This vulnerability allows local attackers to escalate privileges on affected installations of Wacom Drivers for Windows. ... Controladores Wacom para Windows Asignación de permisos incorrecta Vulnerabilidad de escalada de privilegios locales. Esta vulnerabilidad ... • https://github.com/LucaBarile/ZDI-CAN-16318 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-32163 – Wacom Drivers for Windows Link Following Local Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-32163
26 May 2023 — Wacom Drivers for Windows Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Wacom Drivers for Windows. This vulnerability allows local attackers to escalate privileges on affected installations of Wacom Drivers for Windows. ... Los controladores Wacom para Windows se vinculan tras una vulnerabilidad de escalada de privilegios locales. Esta vulnerabilidad permite a atacantes locale... • https://github.com/LucaBarile/ZDI-CAN-16857 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 76%CPEs: 15EXPL: 9CVE-2023-28252 – Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-28252
11 Apr 2023 — Windows Common Log File System Driver Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios de Windows Common Log File System Driver Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation. • http://packetstormsecurity.com/files/174668/Windows-Common-Log-File-System-Driver-clfs.sys-Privilege-Escalation.html • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.0EPSS: 16%CPEs: 15EXPL: 1CVE-2023-28218 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-28218
11 Apr 2023 — Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability • https://github.com/h1bAna/CVE-2023-28218 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.3EPSS: 4%CPEs: 3EXPL: 3CVE-2022-38604
https://notcve.org/view.php?id=CVE-2022-38604
11 Apr 2023 — Wacom Driver 6.3.46-1 for Windows and lower was discovered to contain an arbitrary file deletion vulnerability. • https://github.com/LucaBarile/CVE-2022-38604 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 6.6EPSS: 1%CPEs: 2EXPL: 3CVE-2022-43293
https://notcve.org/view.php?id=CVE-2022-43293
11 Apr 2023 — Wacom Driver 6.3.46-1 for Windows was discovered to contain an arbitrary file write vulnerability via the component \Wacom\Wacom_Tablet.exe. • https://cdn.wacom.com/u/productsupport/drivers/win/professional/releasenotes/Windows_6.4.2-1.html • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 8.8EPSS: 14%CPEs: 11EXPL: 1CVE-2023-23388 – Windows Bluetooth Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-23388
14 Mar 2023 — Windows Bluetooth Driver Elevation of Privilege Vulnerability • https://github.com/ynwarcs/CVE-2023-23388 • CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 8.2EPSS: 0%CPEs: 2EXPL: 1CVE-2023-0400
https://notcve.org/view.php?id=CVE-2023-0400
01 Feb 2023 — The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. ... Loading from a local driver was correctly prevented. • https://github.com/pinpinsec/CVE-2023-0400 • CWE-427: Uncontrolled Search Path Element CWE-670: Always-Incorrect Control Flow Implementation •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 4CVE-2022-47632 – Razer Synapse Race Condition / DLL Hijacking
https://notcve.org/view.php?id=CVE-2022-47632
27 Jan 2023 — As a result, local Windows users can abuse the Razer driver installer to obtain administrative privileges on Windows. ... As a result, local Windows users can abuse the Razer driver installer to obtain administrative privileges on Windows. • https://packetstorm.news/files/id/174696 • CWE-427: Uncontrolled Search Path Element •