Page 4 of 489 results (0.005 seconds)

CVSS: 7.5EPSS: 0%CPEs: 19EXPL: 0

Windows Registry Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43452 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •

CVSS: 6.5EPSS: 0%CPEs: 37EXPL: 0

NTLM Hash Disclosure Spoofing Vulnerability Microsoft Windows contains an NTLMv2 hash spoofing vulnerability that could result in disclosing a user's NTLMv2 hash to an attacker via a file open operation. The attacker could then leverage this hash to impersonate that user. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43451 • CWE-73: External Control of File Name or Path •

CVSS: 7.5EPSS: 0%CPEs: 17EXPL: 0

Windows DNS Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43450 • CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel •

CVSS: 6.8EPSS: 0%CPEs: 27EXPL: 0

Windows USB Video Class System Driver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43449 • CWE-125: Out-of-bounds Read •

CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0

Windows SMBv3 Server Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43447 • CWE-415: Double Free •