Kategorie: Allgemein

Insertion of sensitive information into sent data in Windows Speech allows an authorized attacker to disclose information locally.

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Exposure of sensitive information to an unauthorized actor in Microsoft Dynamics 365 (on-premises) allows an unauthorized attacker to disclose information over a network.

Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally.

Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a network.

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Windows DirectX allows an authorized attacker to elevate privileges locally.

Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network.

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Microsoft Wireless Provisioning System allows an authorized attacker to elevate privileges locally.

Improper limitation of a pathname to a restricted directory (‚path traversal‘) in OneDrive for Android allows an authorized attacker to elevate privileges over a network.