Kategorie: Allgemein

Concurrent execution using shared resource with improper synchronization (‚race condition‘) in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

Access of resource using incompatible type (‚type confusion‘) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network.

Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.

Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.

Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.

Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.

Use of uninitialized resource in Windows Kernel allows an authorized attacker to elevate privileges locally.

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.