CVE-2022-35756 – Windows Kerberos Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35756
Windows Kerberos Elevation of Privilege Vulnerability The HTTP server implemented in HTTP.SYS on Windows handles authentication in a system thread which bypasses PAC verification leading to escalation of privilege. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35756 •
CVE-2022-41045 – Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-41045
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en el Windows Advanced Local Procedure Call (ALPC) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41045 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2022-41090 – Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2022-41090
Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del protocolo de túnel Point-to-Point de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41090 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2022-41064 – .NET Framework Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41064
.NET Framework Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de .NET Framework • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41064 •
CVE-2022-41098 – Windows GDI+ Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41098
Windows GDI+ Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Windows GDI+ • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41098 •