Description
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
Base Score: 9.8 CRITICAL
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21803
Description
Windows Graphics Component Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21804
Description
Windows MSHTML Platform Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21805
Description
Power BI Report Server Spoofing Vulnerability
Base Score: 8.2 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21806
Description
Microsoft Defender for Endpoint Security Feature Bypass Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21809
Description
Windows Media Remote Code Execution Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21802
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21797
Description
Microsoft ODBC Driver Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21798
Description
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Base Score: 8.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21799
Description
Windows Installer Elevation of Privilege Vulnerability
Base Score: 7.8 HIGH
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21800
CVE-2022-46609 Description Python3-RESTfulAPI commit d9907f14e9e25dcdb54f5b22252b0e9452e3970e and e772e0beee284c50946e94c54a1d43071ca78b74 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges. Base Score: 9.8 CRITICAL https://github.com/herry-zhang/Python3-RESTfulAPI/commit/1c2081dca357685b3180b9baeb7e761e9a10ca99 _______________________________ CVE-2022-44832 Description D-Link DIR-3040 device with firmware 120B03 was discovered to contain a […]
CVE-2022-47986 Description IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on the system, caused by a YAML deserialization flaw. By sending a specially crafted obsolete API call, an attacker could exploit this vulnerability to execute arbitrary code on the system. The obsolete API call was […]
CVE-2023-0138 Description Heap buffer overflow in libphonenumber in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low) Base Score: 8.8 HIGH https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html _____________________________ CVE-2023-0136 Description Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote […]
Leave a Reply