Description
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
Base Score: 9.8 CRITICAL
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21803
Description
Windows Graphics Component Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21804
Description
Windows MSHTML Platform Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21805
Description
Power BI Report Server Spoofing Vulnerability
Base Score: 8.2 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21806
Description
Microsoft Defender for Endpoint Security Feature Bypass Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21809
Description
Windows Media Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21802
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21797
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21798
Description
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21799
Description
Windows Installer Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21800
CVE-2022-46609 Description Python3-RESTfulAPI commit d9907f14e9e25dcdb54f5b22252b0e9452e3970e and e772e0beee284c50946e94c54a1d43071ca78b74 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges. Base Score: 9.8 CRITICAL https://github.com/herry-zhang/Python3-RESTfulAPI/commit/1c2081dca357685b3180b9baeb7e761e9a10ca99 _______________________________ CVE-2022-44832 Description D-Link DIR-3040 device with firmware 120B03 was discovered to contain a […]
CVE-2023-22417 Description A Missing Release of Memory after Effective Lifetime vulnerability in the Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS). In an IPsec VPN environment, a memory leak will be seen if a DH or ECDH group is configured. Eventually the […]
CVE-2023-23560 Description In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input validation. Base Score: Critical https://support.lexmark.com/alerts/ ___________________________________ CVE-2016-9244 Description A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Tickets option enabled may leak up to 31 bytes of uninitialized memory. A remote attacker may […]
Leave a Reply