CVE-2023-33154 – Windows Partition Management Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-33154
Windows Partition Management Driver Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33154 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVE-2023-21526 – Windows Netlogon Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-21526
Windows Netlogon Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21526 •
CVE-2023-36874 – Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-36874
Windows Error Reporting Service Elevation of Privilege Vulnerability Microsoft Windows Error Reporting Service contains an unspecified vulnerability that allows for privilege escalation. • https://github.com/d0rb/CVE-2023-36874 https://github.com/Wh04m1001/CVE-2023-36874 https://github.com/crisprss/CVE-2023-36874 http://packetstormsecurity.com/files/174843/Microsoft-Error-Reporting-Local-Privilege-Elevation.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36874 https://www.crowdstrike.com/blog/falcon-complete-zero-day-exploit-cve-2023-36874 https://github.com/Octoberfest7/CVE-2023-36874_BOF • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVE-2023-35367 – Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-35367
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35367 • CWE-20: Improper Input Validation •
CVE-2023-35366 – Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-35366
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35366 • CWE-20: Improper Input Validation •