CVE-2021-38637 – Windows Storage Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-38637
Windows Storage Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Storage • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38637 •
CVE-2021-38638 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-38638
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Windows Ancillary Function Driver for WinSock. Este CVE ID es diferente de CVE-2021-38628 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38638 • CWE-269: Improper Privilege Management •
CVE-2021-38636 – Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-38636
Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Redirected Drive Buffering SubSystem Driver. Este CVE ID es diferente de CVE-2021-36969, CVE-2021-38635 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38636 •
CVE-2021-38635 – Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-38635
Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Windows Redirected Drive Buffering SubSystem Driver. Este CVE ID es diferente de CVE-2021-36969, CVE-2021-38636 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38635 •
CVE-2021-38634 – Microsoft Windows Update Client Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-38634
Microsoft Windows Update Client Elevation of Privilege Vulnerability Una Vulnerabilidad de Elevación de Privilegios en Microsoft Windows Update Client This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within Windows Update Agent. By creating a directory junction, an attacker can abuse Windows Update Agent to delete a file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38634 https://www.zerodayinitiative.com/advisories/ZDI-21-1075 • CWE-269: Improper Privilege Management •