Total
3357 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-29132 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2024-02-04 | 7.2 HIGH | 7.8 HIGH |
Windows Print Spooler Elevation of Privilege Vulnerability | |||||
CVE-2022-30155 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-02-04 | 7.1 HIGH | 5.5 MEDIUM |
Windows Kernel Denial of Service Vulnerability | |||||
CVE-2022-26930 | 1 Microsoft | 8 Windows 10, Windows 11, Windows 8.1 and 5 more | 2024-02-04 | 2.1 LOW | 5.5 MEDIUM |
Windows Remote Access Connection Manager Information Disclosure Vulnerability | |||||
CVE-2022-29129 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2024-02-04 | 9.0 HIGH | 8.8 HIGH |
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||||
CVE-2022-29105 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-02-04 | 6.8 MEDIUM | 7.8 HIGH |
Microsoft Windows Media Foundation Remote Code Execution Vulnerability | |||||
CVE-2022-29113 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server and 1 more | 2024-02-04 | 4.4 MEDIUM | 7.8 HIGH |
Windows Digital Media Receiver Elevation of Privilege Vulnerability | |||||
CVE-2022-24482 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server 2016 and 2 more | 2024-02-04 | 4.4 MEDIUM | 7.0 HIGH |
Windows ALPC Elevation of Privilege Vulnerability | |||||
CVE-2022-24483 | 1 Microsoft | 8 Windows 10, Windows 11, Windows 8.1 and 5 more | 2024-02-04 | 4.9 MEDIUM | 5.5 MEDIUM |
Windows Kernel Information Disclosure Vulnerability | |||||
CVE-2022-26783 | 1 Microsoft | 3 Windows Server 2016, Windows Server 2019, Windows Server 2022 | 2024-02-04 | 6.8 MEDIUM | 6.5 MEDIUM |
Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability | |||||
CVE-2022-24494 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | |||||
CVE-2022-26913 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2024-02-04 | 5.8 MEDIUM | 7.4 HIGH |
Windows Authentication Information Disclosure Vulnerability | |||||
CVE-2022-24505 | 1 Microsoft | 6 Windows 10, Windows 11, Windows Server and 3 more | 2024-02-04 | 4.4 MEDIUM | 7.0 HIGH |
Windows ALPC Elevation of Privilege Vulnerability | |||||
CVE-2022-21977 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 8.1 and 6 more | 2024-02-04 | 4.3 MEDIUM | 3.3 LOW |
Media Foundation Information Disclosure Vulnerability | |||||
CVE-2022-23294 | 1 Microsoft | 8 Windows 10, Windows 11, Windows 8.1 and 5 more | 2024-02-04 | 6.5 MEDIUM | 8.8 HIGH |
Windows Event Tracing Remote Code Execution Vulnerability | |||||
CVE-2022-24498 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-02-04 | 4.0 MEDIUM | 6.5 MEDIUM |
Windows iSCSI Target Service Information Disclosure Vulnerability | |||||
CVE-2022-26801 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
Windows Print Spooler Elevation of Privilege Vulnerability | |||||
CVE-2022-26794 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
Windows Print Spooler Elevation of Privilege Vulnerability | |||||
CVE-2022-26808 | 1 Microsoft | 8 Windows 10, Windows 11, Windows 8.1 and 5 more | 2024-02-04 | 4.4 MEDIUM | 7.0 HIGH |
Windows File Explorer Elevation of Privilege Vulnerability | |||||
CVE-2022-26828 | 1 Microsoft | 4 Windows 10, Windows Server 2016, Windows Server 2019 and 1 more | 2024-02-04 | 4.4 MEDIUM | 7.0 HIGH |
Windows Bluetooth Driver Elevation of Privilege Vulnerability | |||||
CVE-2022-32230 | 1 Microsoft | 3 Windows 10, Windows 11, Windows Server 2019 | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot. |