CVSS: 4.9EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21340 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-21340
13 Feb 2024 — Windows Kernel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del kernel de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21340 • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 24%CPEs: 21EXPL: 3CVE-2023-50387 – bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator
https://notcve.org/view.php?id=CVE-2023-50387
13 Feb 2024 — Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records. Ciertos aspectos DNSSEC del protocolo DNS (en RFC 4035 y RFC relacionados) permiten a ataca... • https://github.com/knqyf263/CVE-2023-50387 • CWE-400: Uncontrolled Resource Consumption CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.8EPSS: 4%CPEs: 16EXPL: 0CVE-2024-21314 – Microsoft Message Queuing Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-21314
09 Jan 2024 — Microsoft Message Queuing Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Message Queue Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21314 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 5%CPEs: 37EXPL: 0CVE-2024-21312 – .NET Framework Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-21312
09 Jan 2024 — .NET Framework Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de .NET Framework • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21312 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21311 – Windows Cryptographic Services Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-21311
09 Jan 2024 — Windows Cryptographic Services Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de servicios criptográficos de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21311 • CWE-125: Out-of-bounds Read •
CVSS: 6.8EPSS: 1%CPEs: 16EXPL: 0CVE-2024-20692 – Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-20692
09 Jan 2024 — Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del servicio del subsistema de la autoridad de seguridad local de Microsoft • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20692 • CWE-326: Inadequate Encryption Strength CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 6.8EPSS: 4%CPEs: 22EXPL: 0CVE-2024-20664 – Microsoft Message Queuing Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-20664
09 Jan 2024 — Microsoft Message Queuing Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Message Queue Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20664 • CWE-822: Untrusted Pointer Dereference •
CVSS: 6.8EPSS: 3%CPEs: 22EXPL: 0CVE-2024-20663 – Windows Message Queuing Client (MSMQC) Information Disclosure
https://notcve.org/view.php?id=CVE-2024-20663
09 Jan 2024 — Windows Message Queuing Client (MSMQC) Information Disclosure Divulgación de información de Message Queuing Client (MSMQC) de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20663 • CWE-822: Untrusted Pointer Dereference •
CVSS: 6.1EPSS: 0%CPEs: 8EXPL: 0CVE-2024-20662 – Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-20662
09 Jan 2024 — Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Online Certificate Status Protocol (OCSP) de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20662 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 6%CPEs: 20EXPL: 0CVE-2024-20661 – Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-20661
09 Jan 2024 — Microsoft Message Queuing Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de Microsoft Message Queuing Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20661 • CWE-400: Uncontrolled Resource Consumption CWE-476: NULL Pointer Dereference •