CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2024-20735 – TALOS-2023-1905 - Adobe Acrobat Reader Font CPAL numColorRecords out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2024-20735
15 Feb 2024 — Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Las versiones 20.005.30539, 23.008.20470 y anteriores de Acrobat Reader se ven afectadas por una vulnerabilidad de lectura fuera de los límites que podría provocar la... • https://helpx.adobe.com/security/products/acrobat/apsb24-07.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2024-21406 – Windows Printing Service Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-21406
13 Feb 2024 — Windows Printing Service Spoofing Vulnerability Vulnerabilidad de suplantación del servicio de impresión de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21406 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 7.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21405 – Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-21405
13 Feb 2024 — Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Microsoft Message Queuing (MSMQ) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21405 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21391 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21391
13 Feb 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21391 • CWE-197: Numeric Truncation Error •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21377 – Windows DNS Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-21377
13 Feb 2024 — Windows DNS Information Disclosure Vulnerability Vulnerabilidad de divulgación de información DNS de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21377 • CWE-197: Numeric Truncation Error •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21370 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21370
13 Feb 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21370 • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21368 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21368
13 Feb 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21368 • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21367 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21367
13 Feb 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21367 • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21365 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21365
13 Feb 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21365 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2024-21363 – Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21363
13 Feb 2024 — Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Message Queuing (MSMQ) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21363 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •