Windows Network Address Translation (NAT) Remote Code Execution Vulnerability
BranchCache Remote Code Execution Vulnerability
Windows Bluetooth Driver Remote Code Execution Vulnerability
Windows Hyper-V Remote Code Execution Vulnerability
Secure Boot Security Feature Bypass Vulnerability
Azure CycleCloud Elevation of Privilege Vulnerability
Windows Hyper-V Remote Code Execution Vulnerability
Windows Bluetooth Service Remote Code Execution Vulnerability
Windows Update Stack Elevation of Privilege Vulnerability
Improper control of generation of code ('code injection') in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network.
<p>An elevation of privilege vulnerability exists when Microsoft Windows processes group policy updates. An attacker who successfully exploited this vulnerability could potentially escalate permissions or perform additional privileged actions on the target machine.</p> <p>To exploit this vulnerability, an attacker would need to launch a man-in-the-middle (MiTM) attack against the traffic passing between a domain controller and the target machine. An attacker could then create a group policy to grant administrator rights to a standard user.</p> <p>The security update addresses the vulnerability by enforcing Kerberos authentication for certain calls over LDAP.</p>
Windows Network Load Balancing Remote Code Execution Vulnerability
Microsoft Teams Remote Code Execution Vulnerability
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows OLE Remote Code Execution Vulnerability
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability
Windows Media Remote Code Execution Vulnerability
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
Microsoft PowerPoint Remote Code Execution Vulnerability
Windows DWM Core Library Elevation of Privilege Vulnerability
Microsoft Management Console Remote Code Execution Vulnerability
Windows Storage Elevation of Privilege Vulnerability
Win32k Elevation of Privilege Vulnerability
Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability
Windows Power Dependency Coordinator Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
Windows Win32k Elevation of Privilege Vulnerability
Windows GDI Elevation of Privilege Vulnerability
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
Windows Network Virtualization Remote Code Execution Vulnerability
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
Microsoft Teams Remote Code Execution Vulnerability
Win32k Elevation of Privilege Vulnerability
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
Microsoft Publisher Remote Code Execution Vulnerability
Windows DNS Server Remote Code Execution Vulnerability
.NET and Visual Studio Remote Code Execution Vulnerability
Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability
Windows Hyper-V Denial of Service Vulnerability
.NET and Visual Studio Remote Code Execution Vulnerability
Windows Layer-2 Bridge Network Driver Remote Code Execution Vulnerability
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
Microsoft DWM Core Library Elevation of Privilege Vulnerability
Windows Deployment Services Remote Code Execution Vulnerability
Windows Bluetooth Driver Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability