Page 37 of 2116 results (0.025 seconds)

CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0

Windows GPSVC Elevation of Privilege Vulnerability Una vulnerabilidad de Escalada de Privilegios en Windows GPSVC • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31973 •

CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0

Event Tracing for Windows Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información en Event Tracing para Windows • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31972 •

CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0

Windows TCP/IP Driver Security Feature Bypass Vulnerability Una vulnerabilidad de Omisión de la Característica de Seguridad en Windows TCP/IP Driver The Windows Filtering Platform does not verify the token impersonation level when checking filters allowing the bypass of firewall rules leading to elevation of privilege. • http://packetstormsecurity.com/files/163256/Microsoft-Windows-Filtering-Platform-Token-Access-Check-Privilege-Escalation.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31970 • CWE-639: Authorization Bypass Through User-Controlled Key •

CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability Una vulnerabilidad de Escalada de Privilegios en Windows Cloud Files Mini Filter Driver This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the cldflt.sys driver. The issue results from the lack of proper validation of user-supplied data, which can result in an integer underflow before writing to memory. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31969 https://www.zerodayinitiative.com/advisories/ZDI-21-797 • CWE-269: Improper Privilege Management •

CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0

Windows Remote Desktop Services Denial of Service Vulnerability Una vulnerabilidad de Denegación de Servicio en Windows Remote Desktop Services • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31968 •