CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2024-29061 – Secure Boot Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-29061
09 Apr 2024 — Secure Boot Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad de arranque seguro • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29061 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 2%CPEs: 7EXPL: 1CVE-2024-29988 – Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-29988
09 Apr 2024 — SmartScreen Prompt Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad de solicitud de SmartScreen This vulnerability allows remote attackers to bypass the SmartScreen security feature to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Internet Shortcut (.URL) files. Th... • https://github.com/Sploitus/CVE-2024-29988-exploit • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 11%CPEs: 16EXPL: 0CVE-2024-26169 – Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability
https://notcve.org/view.php?id=CVE-2024-26169
12 Mar 2024 — Windows Error Reporting Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del servicio de informes de errores de Windows Microsoft Windows Error Reporting Service contains an improper privilege management vulnerability that allows a local attacker with user permissions to gain SYSTEM privileges. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26169 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2024-21408 – Windows Hyper-V Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-21408
12 Mar 2024 — Windows Hyper-V Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de Windows Hyper-V • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21408 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 8.1EPSS: 0%CPEs: 14EXPL: 0CVE-2024-21407 – Windows Hyper-V Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21407
12 Mar 2024 — Windows Hyper-V Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Windows Hyper-V • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21407 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2024-21406 – Windows Printing Service Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-21406
13 Feb 2024 — Windows Printing Service Spoofing Vulnerability Vulnerabilidad de suplantación del servicio de impresión de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21406 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 7.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21405 – Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-21405
13 Feb 2024 — Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Microsoft Message Queuing (MSMQ) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21405 • CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21391 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21391
13 Feb 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21391 • CWE-197: Numeric Truncation Error •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21377 – Windows DNS Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-21377
13 Feb 2024 — Windows DNS Information Disclosure Vulnerability Vulnerabilidad de divulgación de información DNS de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21377 • CWE-197: Numeric Truncation Error •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2024-21370 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21370
13 Feb 2024 — Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Proveedor Microsoft WDAC OLE DB para la vulnerabilidad de ejecución remota de código de SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21370 • CWE-122: Heap-based Buffer Overflow •