Security Vulnerabilities - CVEs Published In April 2023
Windows Network Address Translation (NAT) Denial of Service Vulnerability
CVSS Score
7.5
EPSS Score
0.008
Published
2023-04-11
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.23
Published
2023-04-11
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVSS Score
8.1
EPSS Score
0.075
Published
2023-04-11
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVSS Score
8.1
EPSS Score
0.057
Published
2023-04-11
Windows Error Reporting Service Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.002
Published
2023-04-11
Windows Kernel Elevation of Privilege Vulnerability
CVSS Score
7.1
EPSS Score
0.005
Published
2023-04-11
Windows Domain Name Service Remote Code Execution Vulnerability
CVSS Score
6.6
EPSS Score
0.004
Published
2023-04-11
Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
CVSS Score
7.1
EPSS Score
0.001
Published
2023-04-11
Aten PE8108 2.4.232 is vulnerable to Incorrect Access Control. The device allows unauthenticated access to Event Notification configuration.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-04-11
OXID eShop 6.2.x before 6.4.4 and 6.5.x before 6.5.2 allows session hijacking, leading to partial access of a customer's account by an attacker, due to an improper check of the user agent.
CVSS Score
5.4
EPSS Score
0.003
Published
2023-04-11