CVSS: 7.2EPSS: 0%CPEs: 9EXPL: 0CVE-2024-29997 – Windows Mobile Broadband Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-29997
14 May 2024 — Windows Mobile Broadband Driver Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador de banda ancha de Windows Mobile • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29997 • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 0%CPEs: 25EXPL: 0CVE-2024-29996 – Windows Common Log File System Driver Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-29996
14 May 2024 — Windows Common Log File System Driver Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del controlador del sistema de archivos de registro común de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29996 • CWE-125: Out-of-bounds Read •
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 0CVE-2024-30033 – Windows Search Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-30033
14 May 2024 — Windows Search Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del servicio de búsqueda de Windows This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows Search service. By creating a symbolic link, an attacker can abuse the service to ... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30033 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 8.4EPSS: 0%CPEs: 12EXPL: 0CVE-2024-30034 – Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-30034
14 May 2024 — Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del controlador del minifiltro de archivos en la nube de Windows This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Cloud Files Mini Filter Driver, ... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30034 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20670 – Outlook for Windows Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-20670
09 Apr 2024 — Outlook for Windows Spoofing Vulnerability Vulnerabilidad de suplantación de Outlook para Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20670 • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 16EXPL: 0CVE-2024-29062 – Secure Boot Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-29062
09 Apr 2024 — Secure Boot Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad de arranque seguro • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29062 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2024-29061 – Secure Boot Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-29061
09 Apr 2024 — Secure Boot Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad de arranque seguro • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29061 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0CVE-2024-29056 – Windows Authentication Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-29056
09 Apr 2024 — Windows Authentication Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de autenticación de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29056 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2024-29052 – Windows Storage Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-29052
09 Apr 2024 — Windows Storage Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en el almacenamiento de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29052 • CWE-269: Improper Privilege Management •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2024-28943 – Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-28943
09 Apr 2024 — Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador ODBC de Microsoft para SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28943 • CWE-122: Heap-based Buffer Overflow •