CVSS: 6.1EPSS: 0%CPEs: 8EXPL: 0CVE-2021-31961 – Windows InstallService Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-31961
Windows InstallService Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Windows InstallService This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Microsoft Store Install Service. The issue results from the lack of proper locking when performing operations on a file. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31961 https://www.zerodayinitiative.com/advisories/ZDI-21-818 • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0CVE-2021-31183 – Windows TCP/IP Driver Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2021-31183
Windows TCP/IP Driver Denial of Service Vulnerability Una vulnerabilidad Denegación de Servicio de Windows TCP/IP Driver. Este ID de CVE es diferente de CVE-2021-33772, CVE-2021-34490 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31183 •
CVSS: 8.8EPSS: 42%CPEs: 19EXPL: 0CVE-2021-33742 – Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-33742
Windows MSHTML Platform Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Windows MSHTML Platform Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for remote code execution. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-33742 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.4EPSS: 0%CPEs: 6EXPL: 1CVE-2021-33739 – Microsoft Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2021-33739
Microsoft DWM Core Library Elevation of Privilege Vulnerability Una vulnerabilidad de Escalada de Privilegios en Microsoft DWM Core Library Microsoft Desktop Window Manager (DWM) Core Library contains an unspecified vulnerability that allows for privilege escalation. • https://github.com/freeide2017/CVE-2021-33739-POC https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-33739 •
CVSS: 7.8EPSS: 5%CPEs: 15EXPL: 0CVE-2021-31976 – Server for NFS Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-31976
Server for NFS Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información en Server para NFS. Este ID de CVE es diferente de CVE-2021-31975 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31976 •