The StrongDM Windows service incorrectly handled input validation. Authenticated attackers could potentially exploit this leading to privilege escalation.
The StrongDM Windows service incorrectly handled communication related to system certificate management. Attackers could exploit this behavior to install untrusted root certificates or remove trusted
Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally.
Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.
The StrongDM Client insufficiently protected a pre-authentication token. Attackers could exploit this to intercept and reuse the token, potentially redeeming valid authentication credentials through a
Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.
Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network.
Improper input validation in Windows Server Update Service allows an unauthorized attacker to execute code over a network.
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.
Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network.
Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network.
Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network.
Improper input validation in Windows Hello allows an unauthorized attacker to bypass a security feature over a network.
Improper input validation in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
Improper input validation in Azure Local allows an authorized attacker to elevate privileges locally.
Improper input validation in Windows Message Queuing allows an authorized attacker to elevate privileges locally.
Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
In modem, there is a possible system crash due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed.
Improper input validation in Windows Hyper-V allows an unauthorized attacker to deny service locally.
Page 1+ Next →