Autor: Peter Leibling

Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

Out-of-bounds read in Telnet Client allows an unauthorized attacker to disclose information over a network.

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Devolutions Server ausnutzen, um Administratorrechte zu erlangen, Sicherheitsmaßnahmen zu umgehen, Daten zu manipulieren oder vertrauliche Informationen offenzulegen.

Ein Angreifer kann mehrere Schwachstellen in PgBouncer ausnutzen, um einen Denial of Service Angriff durchzuführen oder nicht näher spezifizierte Angriffe durchzuführen.

Relative path traversal in Visual Studio Code allows an unauthorized attacker to disclose information locally.

Authentication bypass using an alternate path or channel in Windows TCP/IP allows an authorized attacker to bypass a security feature over a network.

Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network.

Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

Improper neutralization of input during web page generation (‚cross-site scripting‘) in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.