CVE-2023-28252 – Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-28252
Windows Common Log File System Driver Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios de Windows Common Log File System Driver Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation. • https://github.com/duck-sec/CVE-2023-28252-Compiled-exe https://github.com/fortra/CVE-2023-28252 https://github.com/bkstephen/Compiled-PoC-Binary-For-CVE-2023-28252 https://github.com/Danasuley/CVE-2023-28252- https://github.com/Vulmatch/CVE-2023-28252 https://github.com/726232111/CVE-2023-28252 http://packetstormsecurity.com/files/174668/Windows-Common-Log-File-System-Driver-clfs.sys-Privilege-Escalation.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28252 - • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVE-2023-28250 – Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-28250
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28250 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVE-2023-28249 – Windows Boot Manager Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-28249
Windows Boot Manager Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28249 • CWE-863: Incorrect Authorization •
CVE-2023-28272 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-28272
Windows Kernel Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28272 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVE-2023-28271 – Windows Kernel Memory Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-28271
Windows Kernel Memory Information Disclosure Vulnerability The Windows Kernel suffers from a disclosure of kernel pointers and uninitialized memory through registry KTM transaction log files. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28271 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •