Total
22706 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-21768 | 1 Microsoft | 2 Windows 11, Windows Server 2022 | 2023-01-18 | N/A | 7.8 HIGH |
| Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability. | |||||
| CVE-2023-21724 | 1 Microsoft | 6 Windows 10 20h2, Windows 10 21h2, Windows 10 22h2 and 3 more | 2023-01-18 | N/A | 7.8 HIGH |
| Microsoft DWM Core Library Elevation of Privilege Vulnerability. | |||||
| CVE-2023-21683 | 1 Microsoft | 13 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 10 more | 2023-01-18 | N/A | 7.5 HIGH |
| Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2023-21677, CVE-2023-21758. | |||||
| CVE-2023-21726 | 1 Microsoft | 15 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 12 more | 2023-01-18 | N/A | 7.8 HIGH |
| Windows Credential Manager User Interface Elevation of Privilege Vulnerability. | |||||
| CVE-2023-21728 | 1 Microsoft | 15 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 12 more | 2023-01-18 | N/A | 7.5 HIGH |
| Windows Netlogon Denial of Service Vulnerability. | |||||
| CVE-2023-21732 | 1 Microsoft | 15 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 12 more | 2023-01-18 | N/A | 8.8 HIGH |
| Microsoft ODBC Driver Remote Code Execution Vulnerability. | |||||
| CVE-2023-21753 | 1 Microsoft | 2 Windows 10, Windows Server 2019 | 2023-01-18 | N/A | 5.5 MEDIUM |
| Event Tracing for Windows Information Disclosure Vulnerability. This CVE ID is unique from CVE-2023-21536. | |||||
| CVE-2023-21745 | 1 Microsoft | 1 Exchange Server | 2023-01-18 | N/A | 8.0 HIGH |
| Microsoft Exchange Server Spoofing Vulnerability. This CVE ID is unique from CVE-2023-21762. | |||||
| CVE-2023-21744 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2023-01-17 | N/A | 8.8 HIGH |
| Microsoft SharePoint Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2023-21742. | |||||
| CVE-2023-21743 | 1 Microsoft | 1 Sharepoint Server | 2023-01-17 | N/A | 5.3 MEDIUM |
| Microsoft SharePoint Server Security Feature Bypass Vulnerability. | |||||
| CVE-2023-21742 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2023-01-17 | N/A | 8.8 HIGH |
| Microsoft SharePoint Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2023-21744. | |||||
| CVE-2023-21735 | 1 Microsoft | 3 365 Apps, Office, Office Long Term Servicing Channel | 2023-01-17 | N/A | 7.8 HIGH |
| Microsoft Office Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2023-21734. | |||||
| CVE-2023-21734 | 1 Microsoft | 3 365 Apps, Office, Office Long Term Servicing Channel | 2023-01-17 | N/A | 7.8 HIGH |
| Microsoft Office Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2023-21735. | |||||
| CVE-2023-21674 | 1 Microsoft | 11 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 8 more | 2023-01-17 | N/A | 8.8 HIGH |
| Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability. | |||||
| CVE-2023-21563 | 1 Microsoft | 15 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 12 more | 2023-01-17 | N/A | 6.8 MEDIUM |
| BitLocker Security Feature Bypass Vulnerability. | |||||
| CVE-2023-21676 | 1 Microsoft | 8 Windows 10 1809, Windows 10 20h2, Windows 10 21h2 and 5 more | 2023-01-17 | N/A | 8.8 HIGH |
| Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. | |||||
| CVE-2023-21677 | 1 Microsoft | 11 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 8 more | 2023-01-17 | N/A | 7.5 HIGH |
| Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2023-21683, CVE-2023-21758. | |||||
| CVE-2023-21678 | 1 Microsoft | 15 Windows 10 1607, Windows 10 1809, Windows 10 20h2 and 12 more | 2023-01-17 | N/A | 7.8 HIGH |
| Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21760, CVE-2023-21765. | |||||
| CVE-2017-1000371 | 1 Linux | 1 Linux Kernel | 2023-01-17 | 7.2 HIGH | 7.8 HIGH |
| The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMIT_STACK is set to RLIM_INFINITY and 1 Gigabyte of memory is allocated (the maximum under the 1/4 restriction) then the stack will be grown down to 0x80000000, and as the PIE binary is mapped above 0x80000000 the minimum distance between the end of the PIE binary's read-write segment and the start of the stack becomes small enough that the stack guard page can be jumped over by an attacker. This affects Linux Kernel version 4.11.5. This is a different issue than CVE-2017-1000370 and CVE-2017-1000365. This issue appears to be limited to i386 based systems. | |||||
| CVE-2017-1000379 | 1 Linux | 1 Linux Kernel | 2023-01-17 | 7.2 HIGH | 7.8 HIGH |
| The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected. | |||||