Description
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
Base Score: 9.8 CRITICAL
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21803
Description
Windows Graphics Component Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21804
Description
Windows MSHTML Platform Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21805
Description
Power BI Report Server Spoofing Vulnerability
Base Score: 8.2 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21806
Description
Microsoft Defender for Endpoint Security Feature Bypass Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21809
Description
Windows Media Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21802
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21797
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21798
Description
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21799
Description
Windows Installer Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21800
CVE-2022-2196 Description A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn’t need retpolines or IBPB after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker at L2 with code […]
CVE-2022-43883 Description IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could be vulnerable to a Log Injection attack by constructing URLs from user-controlled data. This could enable attackers to make arbitrary requests to the internal network or to the local file system. IBM X-Force ID: 240266. Base Score: 7.5 HIGH https://www.ibm.com/support/pages/node/6841801 ____________________ CVE-2022-38708 Description IBM Cognos Analytics […]
CVE-2022-32749 Description Improper Check for Unusual or Exceptional Conditions vulnerability handling requests in Apache Traffic Server allows an attacker to crash the server under certain conditions. This issue affects Apache Traffic Server: from 8.0.0 through 9.1.3. Base Score: 7.5 HIGH https://lists.apache.org/thread/mrj2lg4s0hf027rk7gz8t7hbn9xpfg02 ________________________ CVE-2022-38659 Description In specific scenarios, on Windows the operator credentials may be encrypted in […]
Leave a Reply