CVSS: 5.7EPSS: 0%CPEs: 7EXPL: 2CVE-2024-21306 – Microsoft Bluetooth Driver Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-21306
Microsoft Bluetooth Driver Spoofing Vulnerability Vulnerabilidad de suplantación de controladores Bluetooth de Microsoft • https://github.com/PhucHauDeveloper/BadBlue https://github.com/d4rks1d33/C-PoC-for-CVE-2024-21306 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21306 • CWE-306: Missing Authentication for Critical Function •
CVSS: 5.7EPSS: 0%CPEs: 16EXPL: 0CVE-2024-20692 – Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-20692
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del servicio del subsistema de la autoridad de seguridad local de Microsoft • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20692 • CWE-326: Inadequate Encryption Strength CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 6.1EPSS: 0%CPEs: 10EXPL: 0CVE-2024-21316 – Windows Server Key Distribution Service Security Feature Bypass
https://notcve.org/view.php?id=CVE-2024-21316
Windows Server Key Distribution Service Security Feature Bypass Omisión de la función de seguridad del servicio de distribución de claves de Windows Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21316 • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21313 – Windows TCP/IP Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-21313
Windows TCP/IP Information Disclosure Vulnerability Vulnerabilidad de divulgación de información TCP/IP de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21313 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 14EXPL: 0CVE-2024-21307 – Remote Desktop Client Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21307
Remote Desktop Client Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del cliente de escritorio remoto • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21307 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •