An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network.
Improper authentication in Windows Cryptographic Services allows an unauthorized attacker to elevate privileges locally.
Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally.
Improper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally.
Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network.
Unauthorised access to the call forwarding service system in MeetMe products in versions prior to 2024-09 allows an attacker to identify multiple users and perform brute force attacks via extensions.
Improper input validation in Windows Message Queuing allows an authorized attacker to elevate privileges locally.
Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.
Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally.
Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
Use of uninitialized resource in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.
Out-of-bounds read in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally.
Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.
Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges over a network.
An unauthenticated remote attacker can use hard-coded credentials to gain full administration privileges on the affected product.
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network.
The vulnerability allows an unauthenticated attacker to access information in PAM database.
Improper input validation in Azure Local allows an authorized attacker to elevate privileges locally.
An unauthenticated attacker can hijack other users' devices and potentially control them.
Improper access control in Microsoft Management Console allows an authorized attacker to elevate privileges locally.