CVSS: 6.0EPSS: 0%CPEs: 12EXPL: 0CVE-2022-34709 – Windows Defender Credential Guard Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2022-34709
Windows Defender Credential Guard Security Feature Bypass Vulnerability Una vulnerabilidad de Omisión de la Funcionalidad de Seguridad de Windows Defender Credential Guard On Windows, a number of Kerberos CG APIs do not verify the ASN1 PDU type when decoding and encoding Kerberos ASN1 structures leading to type confusion and elevation of privilege. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34709 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2022-34708 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-34708
Windows Kernel Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Kernel. Este ID de CVE es diferente de CVE-2022-30197 The Windows kernel suffers from an invalid read/write condition due to an unchecked Blink cell index in the root security descriptor. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34708 •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2022-34707 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-34707
Windows Kernel Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Windows Kernel. Este ID de CVE es diferente de CVE-2022-35761, CVE-2022-35768 The Windows kernel suffers from a use-after-free vulnerability due to a refcount overflow in the registry hive security descriptors. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34707 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2022-34706 – Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-34706
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios de Windows Local Security Authority (LSA) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34706 •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2022-34705 – Windows Defender Credential Guard Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-34705
Windows Defender Credential Guard Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios de Windows Defender Credential Guard. Este ID de CVE es diferente de CVE-2022-35771 On Windows, the method for allocating a context when using the CG BCrypt APIs is insecure leading to use-after-free of secure memory resulting in elevation of privilege. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34705 • CWE-416: Use After Free •