CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2023-21558 – Windows Error Reporting Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21558
10 Jan 2023 — Windows Error Reporting Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del servicio de informes de errores de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21558 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 43%CPEs: 21EXPL: 1CVE-2023-21746 – Windows NTLM Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21746
10 Jan 2023 — Windows NTLM Elevation of Privilege Vulnerability • https://github.com/Muhammad-Ali007/LocalPotato_CVE-2023-21746 •
CVSS: 7.1EPSS: 42%CPEs: 13EXPL: 3CVE-2023-21752 – Windows Backup Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21752
10 Jan 2023 — Windows Backup Service Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del servicio de copia de seguridad de Windows • https://www.exploit-db.com/exploits/51203 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 5%CPEs: 22EXPL: 0CVE-2023-21757 – Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21757
10 Jan 2023 — Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability Vulnerabilidad de denegación de servicio del protocolo de túnel de capa 2 de Windows (L2TP) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21757 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 55%CPEs: 15EXPL: 0CVE-2023-21758 – Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21758
10 Jan 2023 — Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de extensión de intercambio de claves de Internet (IKE) de Windows This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Windows. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IKEEXT service, which listens on UDP ports 500 and 4500. A crafted Vendor ID payload can cause a ... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21758 • CWE-476: NULL Pointer Dereference •
CVSS: 7.1EPSS: 0%CPEs: 22EXPL: 0CVE-2023-21760 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21760
10 Jan 2023 — Windows Print Spooler Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la cola de impresión de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21760 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2023-21765 – Windows Print Spooler Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21765
10 Jan 2023 — Windows Print Spooler Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en la cola de impresión de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21765 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.7EPSS: 4%CPEs: 15EXPL: 1CVE-2023-21766 – Windows Overlay Filter Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-21766
10 Jan 2023 — Windows Overlay Filter Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del filtro de superposición de Windows • https://github.com/Y3A/cve-2023-21766 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-591: Sensitive Data Storage in Improperly Locked Memory •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2023-21767 – Windows Overlay Filter Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21767
10 Jan 2023 — Windows Overlay Filter Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del filtro de superposición de Windows • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21767 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 20EXPL: 2CVE-2023-21776 – Windows Kernel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-21776
10 Jan 2023 — Windows Kernel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información del kernel de Windows The Windows kernel suffers from out-of-bounds read vulnerabilities when operating on invalid registry paths in CmpDoReDoCreateKey / CmpDoReOpenTransKey. • https://packetstorm.news/files/id/172300 • CWE-125: Out-of-bounds Read •