CVSS: 8.8EPSS: 1%CPEs: 15EXPL: 0CVE-2023-28275 – Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-28275
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28275 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 1%CPEs: 15EXPL: 8CVE-2023-28252 – Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-28252
Windows Common Log File System Driver Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios de Windows Common Log File System Driver Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation. • https://github.com/duck-sec/CVE-2023-28252-Compiled-exe https://github.com/fortra/CVE-2023-28252 https://github.com/bkstephen/Compiled-PoC-Binary-For-CVE-2023-28252 https://github.com/Danasuley/CVE-2023-28252- https://github.com/Vulmatch/CVE-2023-28252 https://github.com/726232111/CVE-2023-28252 http://packetstormsecurity.com/files/174668/Windows-Common-Log-File-System-Driver-clfs.sys-Privilege-Escalation.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28252 https:/ • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-28274 – Windows Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-28274
Windows Win32k Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28274 • CWE-20: Improper Input Validation •
CVSS: 7.0EPSS: 0%CPEs: 9EXPL: 0CVE-2023-28273 – Windows Clip Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-28273
Windows Clip Service Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28273 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 9.8EPSS: 2%CPEs: 15EXPL: 0CVE-2023-28250 – Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-28250
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28250 • CWE-191: Integer Underflow (Wrap or Wraparound) •