CVSS: 6.8EPSS: 3%CPEs: 26EXPL: 0CVE-2024-20680 – Windows Message Queuing Client (MSMQC) Information Disclosure
https://notcve.org/view.php?id=CVE-2024-20680
09 Jan 2024 — Windows Message Queuing Client (MSMQC) Information Disclosure Divulgación de información de Message Queuing Client (MSMQC) de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20680 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.0EPSS: 0%CPEs: 26EXPL: 0CVE-2024-20657 – Windows Group Policy Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-20657
09 Jan 2024 — Windows Group Policy Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la política de grupo de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20657 • CWE-284: Improper Access Control •
CVSS: 9.0EPSS: 2%CPEs: 26EXPL: 0CVE-2024-20654 – Microsoft ODBC Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-20654
09 Jan 2024 — Microsoft ODBC Driver Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador ODBC de Microsoft • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20654 • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 17%CPEs: 26EXPL: 0CVE-2024-20674 – Windows Kerberos Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-20674
09 Jan 2024 — Windows Kerberos Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad Kerberos de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20674 • CWE-290: Authentication Bypass by Spoofing CWE-305: Authentication Bypass by Primary Weakness •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-35622 – Windows DNS Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-35622
12 Dec 2023 — Windows DNS Spoofing Vulnerability Vulnerabilidad de suplantación de DNS de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35622 •
CVSS: 7.8EPSS: 3%CPEs: 5EXPL: 1CVE-2023-35633 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35633
12 Dec 2023 — Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows Predefined keys in the Microsoft Windows Registry may lead to confused deputy problems and local privilege escalation. • https://packetstorm.news/files/id/176451 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 7%CPEs: 10EXPL: 0CVE-2023-35632 – Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-35632
12 Dec 2023 — Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Controlador de función auxiliar de Windows para la vulnerabilidad de elevación de privilegios de WinSock • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35632 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 2%CPEs: 16EXPL: 0CVE-2023-35630 – Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-35630
12 Dec 2023 — Internet Connection Sharing (ICS) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de conexión compartida a Internet (ICS) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35630 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 0CVE-2023-35629 – Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-35629
12 Dec 2023 — Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador de dispositivo Microsoft USBHUB 3.0 • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35629 • CWE-125: Out-of-bounds Read •
CVSS: 8.1EPSS: 16%CPEs: 15EXPL: 0CVE-2023-35628 – Windows MSHTML Platform Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-35628
12 Dec 2023 — Windows MSHTML Platform Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en la plataforma Windows MSHTML • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35628 • CWE-416: Use After Free •