CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2024-26172 – Windows DWM Core Library Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-26172
09 Apr 2024 — Windows DWM Core Library Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de la librería principal de Windows DWM • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26172 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2024-26255 – Windows Remote Access Connection Manager Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-26255
09 Apr 2024 — Windows Remote Access Connection Manager Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del Administrador de conexión de acceso remoto de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26255 • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2024-26254 – Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-26254
09 Apr 2024 — Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del bus de máquina virtual de Microsoft (VMBus) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26254 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.2EPSS: 0%CPEs: 25EXPL: 0CVE-2024-26253 – Windows rndismp6.sys Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-26253
09 Apr 2024 — Windows rndismp6.sys Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Windows rndismp6.sys • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26253 • CWE-20: Improper Input Validation •
CVSS: 7.2EPSS: 0%CPEs: 25EXPL: 0CVE-2024-26252 – Windows rndismp6.sys Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-26252
09 Apr 2024 — Windows rndismp6.sys Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Windows rndismp6.sys • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26252 • CWE-822: Untrusted Pointer Dereference •
CVSS: 6.7EPSS: 0%CPEs: 20EXPL: 0CVE-2024-26250 – Secure Boot Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-26250
09 Apr 2024 — Secure Boot Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad de arranque seguro • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26250 • CWE-693: Protection Mechanism Failure •
CVSS: 6.7EPSS: 0%CPEs: 20EXPL: 0CVE-2024-20669 – Secure Boot Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-20669
09 Apr 2024 — Secure Boot Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad de arranque seguro • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20669 • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2024-26158 – Microsoft Install Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-26158
09 Apr 2024 — Microsoft Install Service Elevation of Privilege Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows Installer service. By creating a symbolic link, an attacker can abuse the service to write arbitrary registry values. An attacker can leverage this vulnerabil... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26158 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 1CVE-2024-26182 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-26182
12 Mar 2024 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows The Windows Kernel suffers from a subkey list use-after-free vulnerability due to a mishandling of partial success in CmpAddSubKeyEx. • https://packetstorm.news/files/id/178012 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 25EXPL: 0CVE-2024-26181 – Windows Kernel Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-26181
12 Mar 2024 — Windows Kernel Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del kernel de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26181 • CWE-20: Improper Input Validation •