CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2023-24483 – Privilege Escalation to NT AUTHORITY\SYSTEM on the vulnerable VDA
https://notcve.org/view.php?id=CVE-2023-24483
16 Feb 2023 — A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA. • https://support.citrix.com/article/CTX477616/citrix-virtual-apps-and-desktops-security-bulletin-for-cve202324483 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 0CVE-2023-24484 – A malicious user can cause log files to be written to a directory that they do not have permission to write to.
https://notcve.org/view.php?id=CVE-2023-24484
16 Feb 2023 — A malicious user can cause log files to be written to a directory that they do not have permission to write to. • https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2023-24485 – Privilege Escalation on the system running a vulnerable version of Citrix Workspace app for Windows
https://notcve.org/view.php?id=CVE-2023-24485
16 Feb 2023 — Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace app. • https://support.citrix.com/article/CTX477617/citrix-workspace-app-for-windows-security-bulletin-for-cve202324484-cve202324485 • CWE-284: Improper Access Control CWE-863: Incorrect Authorization •
CVSS: 6.8EPSS: 0%CPEs: 8EXPL: 0CVE-2022-27507 – Authenticated denial of service
https://notcve.org/view.php?id=CVE-2022-27507
24 Jan 2023 — Authenticated denial of service Denegación de servicio autenticada • https://support.citrix.com/article/CTX457048/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202227507-and-cve202227508 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-27508 – Unauthenticated denial of service
https://notcve.org/view.php?id=CVE-2022-27508
24 Jan 2023 — Unauthenticated denial of service Denegación de servicio no autenticada • https://support.citrix.com/article/CTX457048/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202227507-and-cve202227508 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.5EPSS: 0%CPEs: 28EXPL: 0CVE-2022-34680 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-34680
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an integer truncation can lead to an out-of-bounds read, which may lead to denial of service. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en el controlador de capa del modo kernel, donde un truncamiento de números enteros puede provocar una lectura fuera de los límites, lo que puede provocar una Denegación de Servicio (DoS). Multiple vulnerabilities have been discovered in NVIDIA Drivers... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-197: Numeric Truncation Error CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-42254 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42254
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, data tampering, or information disclosure. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un acceso a la matriz fuera de los límites puede provocar Denegación de Servicio (DoS), manipulación de datos o divulgación de información. Multiple vulnerabilities have been discovered in NVI... • https://nvidia.custhelp.com/app/answers/detail/a_id/5415 • CWE-125: Out-of-bounds Read CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2022-42255 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42255
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, information disclosure, or data tampering. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un acceso a la matriz fuera de los límites puede provocar Denegación de Servicio (DoS), divulgación de información o manipulación de datos. Multiple vulnerabilities have been discovered in NVI... • https://nvidia.custhelp.com/app/answers/detail/a_id/5415 • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2022-42256 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42256
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow in index validation may lead to denial of service, information disclosure, or data tampering. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un desbordamiento de enteros en la validación del índice puede provocar Denegación de Servicio (DoS), divulgación de información o manipulación de datos. Multiple vulnerabilities hav... • https://nvidia.custhelp.com/app/answers/detail/a_id/5415 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.3EPSS: 0%CPEs: 28EXPL: 0CVE-2022-42257 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42257
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure, data tampering or denial of service. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un desbordamiento de enteros puede provocar la divulgación de información, la manipulación de datos o la Denegación de Servicio (DoS). Multiple vulnerabilities have been discovered in NVIDIA Drivers, the... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-190: Integer Overflow or Wraparound •