CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-24499 – Windows Installer Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-24499
Windows Installer Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Windows Installer. Este ID de CVE es diferente de CVE-2022-24530 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows Installer service. By creating a symbolic link, an attacker can abuse the service to change permissions on an arbitrary file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24499 •
CVSS: 6.5EPSS: 1%CPEs: 20EXPL: 0CVE-2022-24498 – Windows iSCSI Target Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-24498
Windows iSCSI Target Service Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows iSCSI Target Service • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24498 •
CVSS: 9.8EPSS: 4%CPEs: 17EXPL: 1CVE-2022-24497 – Windows Network File System Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-24497
Windows Network File System Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Windows Network File System. Este ID de CVE es diferente de CVE-2022-24491 • https://github.com/corelight/CVE-2022-24497 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24497 •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-24494 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-24494
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Windows Ancillary Function Driver for WinSock • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24494 •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2022-24493 – Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-24493
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Microsoft Local Security Authority (LSA) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24493 •