CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2022-41095 – Windows Digital Media Receiver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-41095
09 Nov 2022 — Windows Digital Media Receiver Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del receptor de Windows Digital Media • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41095 •
CVSS: 6.8EPSS: 3%CPEs: 25EXPL: 0CVE-2022-41097 – Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41097
09 Nov 2022 — Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del protocolo RADIUS del servidor de políticas de red (NPS) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41097 •
CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 0CVE-2022-41098 – Windows GDI+ Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41098
09 Nov 2022 — Windows GDI+ Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Windows GDI+ • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41098 •
CVSS: 7.8EPSS: 6%CPEs: 19EXPL: 0CVE-2022-41109 – Windows Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-41109
09 Nov 2022 — Windows Win32k Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Windows Win32k • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41109 •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 0CVE-2022-41116 – Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2022-41116
09 Nov 2022 — Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del Windows Point-to-Point Tunneling Protocol • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41116 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.6EPSS: 0%CPEs: 17EXPL: 0CVE-2022-41118 – Windows Scripting Languages Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41118
09 Nov 2022 — Windows Scripting Languages Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Windows Scripting Languages • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41118 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.3EPSS: 2%CPEs: 14EXPL: 0CVE-2022-37967 – Windows Kerberos Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-37967
09 Nov 2022 — Windows Kerberos Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Kerberos en Windows Multiple vulnerabilities have been discovered in Samba, the worst of which could result in root remote code execution. Versions greater than or equal to 4.18.4 are affected. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37967 •
CVSS: 10.0EPSS: 0%CPEs: 19EXPL: 1CVE-2022-41073 – Microsoft Windows Print Spooler Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2022-41073
09 Nov 2022 — Windows Print Spooler Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la Cola de Impresión de Windows Windows still suffers from issues related to the replacement of the system drive letter during impersonation. This can be abused to trick privilege processes to load configuration files and other resources from untrusted locations leading to elevation of privilege. Microsoft Windows Print Spooler contains an unspecified vulnerability that allows an attacker to gain SYSTEM-... • https://packetstorm.news/files/id/174528 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 69%CPEs: 18EXPL: 0CVE-2022-41128 – Microsoft Windows Scripting Languages Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41128
09 Nov 2022 — Windows Scripting Languages Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Windows Scripting Languages Microsoft Windows contains an unspecified vulnerability in the JScript9 scripting language which allows for remote code execution. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41128 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 19EXPL: 1CVE-2022-41057 – Windows HTTP.sys Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-41057
09 Nov 2022 — Windows HTTP.sys Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios HTTP.sys en Windows The HTTP server implemented in HTTP.SYS on Windows handles authentication in a system thread which bypasses PAC verification leading to escalation of privilege. • https://packetstorm.news/files/id/170128 •