Autor: Peter Leibling

Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack.

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Fleet ausnutzen, um Sicherheitsvorkehrungen zu umgehen.

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in OPC Foundation OPC UA .NET Standard Stack ausnutzen, um Sicherheitsvorkehrungen zu umgehen.

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache Camel ausnutzen, um Daten zu manipulieren.