CVSS: 9.3EPSS: 94%CPEs: 19EXPL: 41CVE-2021-40444 – Microsoft MSHTML Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-40444
15 Sep 2021 —
Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents.
An attacker could craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine. The attacker would then have to convince the user to open the malicious document. Users whose accounts are confi... • https://packetstorm.news/files/id/165214 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2021-40447 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-40447
15 Sep 2021 — Windows Print Spooler Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios de Windows Print Spooler. Este CVE ID es diferente de CVE-2021-38667, CVE-2021-38671 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40447 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2021-38671 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-38671
15 Sep 2021 — Windows Print Spooler Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Print Spooler. Este CVE ID es diferente de CVE-2021-38667, CVE-2021-40447 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38671 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2021-38667 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-38667
15 Sep 2021 — Windows Print Spooler Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Print Spooler. Este CVE ID es diferente de CVE-2021-38671, CVE-2021-40447 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38667 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 1CVE-2021-38639 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-38639
15 Sep 2021 — Win32k Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Win32k . Este CVE ID es diferente de CVE-2021-36975 • https://github.com/DarkSprings/CVE-2021-38639 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2021-38638 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-38638
15 Sep 2021 — Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Ancillary Function Driver for WinSock. Este CVE ID es diferente de CVE-2021-38628 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38638 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 0CVE-2021-38637 – Windows Storage Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-38637
15 Sep 2021 — Windows Storage Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Storage • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38637 •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2021-38636 – Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-38636
15 Sep 2021 — Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Redirected Drive Buffering SubSystem Driver. Este CVE ID es diferente de CVE-2021-36969, CVE-2021-38635 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38636 •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2021-38635 – Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-38635
15 Sep 2021 — Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Redirected Drive Buffering SubSystem Driver. Este CVE ID es diferente de CVE-2021-36969, CVE-2021-38636 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38635 •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2021-38634 – Microsoft Windows Update Client Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-38634
15 Sep 2021 — Microsoft Windows Update Client Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Microsoft Windows Update Client This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within Windows Update Agent. By creating a directory junction, an attacker can abuse Wind... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38634 • CWE-269: Improper Privilege Management •