CVSS: 8.1EPSS: 0%CPEs: 19EXPL: 0CVE-2022-44676 – Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-44676
13 Dec 2022 — Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Windows Secure Socket Tunneling Protocol (SSTP) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44676 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2022-44677 – Windows Projected File System Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-44677
13 Dec 2022 — Windows Projected File System Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Projected File System • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44677 •
CVSS: 7.8EPSS: 66%CPEs: 19EXPL: 1CVE-2022-44666 – Windows Contacts Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-44666
13 Dec 2022 — Windows Contacts Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Windows Contacts This advisory ties together older research on a contact file handling flaw on Microsoft Windows as well as recent research discovered that uses the same methodologies. • https://github.com/j00sean/CVE-2022-44666 •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2022-44671 – Windows Graphics Component Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-44671
13 Dec 2022 — Windows Graphics Component Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Graphics Component This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the GreDrawStream function. Crafted data passed to this function can cause a pointer to be reuse... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44671 •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2022-44697 – Windows Graphics Component Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-44697
13 Dec 2022 — Windows Graphics Component Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Graphics Component This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull driver. The issue results from dereferencing a NULL pointer. An ... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44697 •
CVSS: 8.8EPSS: 0%CPEs: 23EXPL: 0CVE-2022-41121 – Windows Graphics Component Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-41121
13 Dec 2022 — Windows Graphics Component Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Windows Graphics Component. This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementation of the StretchBlt graphics primitive. The issue results from the lack of pro... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41121 •
CVSS: 8.1EPSS: 0%CPEs: 20EXPL: 0CVE-2022-41039 – Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41039
09 Nov 2022 — Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del Windows Point-to-Point Tunneling Protocol • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41039 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2022-41045 – Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-41045
09 Nov 2022 — Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en el Windows Advanced Local Procedure Call (ALPC) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41045 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 2%CPEs: 19EXPL: 0CVE-2022-41053 – Windows Kerberos Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2022-41053
09 Nov 2022 — Windows Kerberos Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de Windows Kerberos • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41053 •
CVSS: 7.6EPSS: 0%CPEs: 17EXPL: 0CVE-2022-41118 – Windows Scripting Languages Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41118
09 Nov 2022 — Windows Scripting Languages Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Windows Scripting Languages • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41118 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •