CVSS: 8.1EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21556 – Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21556
10 Jan 2023 — Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del protocolo de túnel de capa 2 de Windows (L2TP) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21556 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 9.1EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21557 – Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21557
10 Jan 2023 — Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del Protocolo ligero de acceso a directorios (LDAP) de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21557 • CWE-190: Integer Overflow or Wraparound CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.8EPSS: 0%CPEs: 31EXPL: 1CVE-2023-21560 – Windows Boot Manager Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-21560
10 Jan 2023 — Windows Boot Manager Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad del Administrador de arranque de Windows • https://github.com/Wack0/dubiousdisk • CWE-122: Heap-based Buffer Overflow CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21561 – Microsoft Cryptographic Services Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21561
10 Jan 2023 — Microsoft Cryptographic Services Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de los servicios criptográficos de Microsoft • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21561 • CWE-190: Integer Overflow or Wraparound CWE-269: Improper Privilege Management •
CVSS: 7.2EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21563 – BitLocker Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-21563
10 Jan 2023 — BitLocker Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21563 •
CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 1CVE-2023-21675 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21675
10 Jan 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows Microsoft Windows suffers from a kernel memory corruption due to an insufficient handling of predefined keys in registry virtualization. • https://packetstorm.news/files/id/170852 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21678 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21678
10 Jan 2023 — Windows Print Spooler Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la cola de impresión de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21678 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 8.1EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21679 – Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21679
10 Jan 2023 — Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del protocolo de túnel de capa 2 de Windows (L2TP) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21679 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21680 – Windows Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21680
10 Jan 2023 — Windows Win32k Elevation of Privilege Vulnerability Vulnerabilidad de escalada de privilegios en Windows Win32k This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the GreStartDocInternal function. By making crafted calls into this function, an attacker can overflow the reference coun... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21680 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21681 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21681
10 Jan 2023 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21681 • CWE-191: Integer Underflow (Wrap or Wraparound) •