Page 42 of 2116 results (0.375 seconds)

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0

Windows Container Manager Service Elevation of Privilege Vulnerability Una vulnerabilidad de Escalada de Privilegios del servicio de Windows Container Manager. Este ID de CVE es diferente de CVE-2021-31165, CVE-2021-31167, CVE-2021-31169, CVE-2021-31208 The Container Manager Service does not impersonate the caller when granting access to virtual disk images leading to privilege escalation. • http://packetstormsecurity.com/files/162556/Windows-Container-Manager-Service-CmsRpcSrv_MapVirtualDiskToContainer-Privilege-Escalation.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31168 • CWE-269: Improper Privilege Management •

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0

Windows Container Manager Service Elevation of Privilege Vulnerability Una vulnerabilidad de Escalada de Privilegios del servicio de Windows Container Manager. Este ID de CVE es diferente de CVE-2021-31165, CVE-2021-31168, CVE-2021-31169, CVE-2021-31208 The Container Manager Service does not configure STORVSP correctly when opening mapped named pipes leading to privilege escalation. • http://packetstormsecurity.com/files/162559/Windows-Container-Manager-Service-CmsRpcSrv_MapNamedPipeToContainer-Privilege-Escalation.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31167 • CWE-732: Incorrect Permission Assignment for Critical Resource •

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0

Windows Container Manager Service Elevation of Privilege Vulnerability Una vulnerabilidad de Escalada de Privilegios del servicio de Windows Container Manager Este ID de CVE es diferente de CVE-2021-31167, CVE-2021-31168, CVE-2021-31169, CVE-2021-31208 The Container Manager Service accepts an access token provided by the user without verification allowing an arbitrary process to be created with another user identity leading to privilege escalation. • http://packetstormsecurity.com/files/162555/Windows-Container-Manager-Service-CmsRpcSrv_CreateContainer-Privilege-Escalation.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31165 • CWE-863: Incorrect Authorization •

CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0

Windows CSC Service Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows CSC Service • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28479 •

CVSS: 9.9EPSS: 11%CPEs: 18EXPL: 4

Windows Hyper-V Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Hyper-V • https://github.com/0vercl0k/CVE-2021-28476 https://github.com/bluefrostsecurity/CVE-2021-28476 https://github.com/LaCeeKa/CVE-2021-28476-tools-env https://github.com/australeo/CVE-2021-28476 http://packetstormsecurity.com/files/163497/Microsoft-Hyper-V-vmswitch.sys-Proof-Of-Concept.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28476 •