Security Vulnerabilities - CVEs Published In September 2022
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVSS Score
8.8
EPSS Score
0.024
Published
2022-09-13
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.016
Published
2022-09-13
Windows Photo Import API Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.001
Published
2022-09-13
.NET Framework Remote Code Execution Vulnerability
CVSS Score
7.8
EPSS Score
0.019
Published
2022-09-13
Windows Credential Roaming Service Elevation of Privilege Vulnerability
CVSS Score
7.3
EPSS Score
0.008
Published
2022-09-13
Windows Secure Channel Denial of Service Vulnerability
CVSS Score
8.2
EPSS Score
0.016
Published
2022-09-13
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
CVSS Score
7.8
EPSS Score
0.005
Published
2022-09-13
Windows Kerberos Elevation of Privilege Vulnerability
CVSS Score
8.1
EPSS Score
0.006
Published
2022-09-13
Windows Kerberos Elevation of Privilege Vulnerability
CVSS Score
8.1
EPSS Score
0.784
Published
2022-09-13
A vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a low-privileged user can gain a SYSTEM level command prompt by pre-staging a file structure prior to the installation of a trusted service executable and change permissions on that file structure during a repair operation.
CVSS Score
8.8
EPSS Score
0.01
Published
2022-09-13