CVSS: 8.8EPSS: 0%CPEs: 16EXPL: 0CVE-2021-34446 – Windows HTML Platforms Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2021-34446
Windows HTML Platforms Security Feature Bypass Vulnerability Una vulnerabilidad de Omisión de la Funcionalidad de Seguridad en Windows HTML Platforms • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34446 •
CVSS: 7.8EPSS: 15%CPEs: 18EXPL: 0CVE-2021-34441 – Microsoft Windows Media Foundation Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-34441
Microsoft Windows Media Foundation Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Windows Media Foundation. Este ID de CVE es diferente de CVE-2021-34439, CVE-2021-34503 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34441 •
CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0CVE-2021-34440 – GDI+ Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-34440
GDI+ Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de GDI+ • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34440 •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2021-34516 – Win32k Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-34516
Win32k Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Win32k . Este ID de CVE es diferente de CVE-2021-34449 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the cdd.dll driver. The issue results from dereferencing a NULL pointer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34516 https://www.zerodayinitiative.com/advisories/ZDI-21-1004 https://www.zerodayinitiative.com/advisories/ZDI-21-1005 https://www.zerodayinitiative.com/advisories/ZDI-21-1006 https://www.zerodayinitiative.com/advisories/ZDI-21-1007 https://www.zerodayinitiative.com/advisories/ZDI-21-1008 https://www.zerodayinitiative.com/advisories/ZDI-21-1009 https://www.zerodayinitiative.com/advisories/ZDI-21-1010 https://www.zerodayinitiati • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2021-34514 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-34514
Windows Kernel Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Windows Kernel Este CVE ID es diferente de CVE-2021-31979, CVE-2021-33771 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34514 • CWE-269: Improper Privilege Management •