Microsoft: >> Windows Server 2022 >> 10.0.20348.1249 Security Vulnerabilities
An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process or rendering it unusable) and/or arbitrary code execution in the TPM context.
CVSS Score
7.8
EPSS Score
0.012
Published
2023-02-28
An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM.
CVSS Score
5.5
EPSS Score
0.01
Published
2023-02-28
CVE-2023-23376
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.201
Published
2023-02-14
CVE-2023-21674
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
Known exploited
CVSS Score
8.8
EPSS Score
0.125
Published
2023-01-10
CVE-2022-44698
Windows SmartScreen Security Feature Bypass Vulnerability
Known exploited
CVSS Score
5.4
EPSS Score
0.664
Published
2022-12-13
Windows Clustered Shared Volume Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.003
Published
2022-05-10
Windows Failover Cluster Information Disclosure Vulnerability
CVSS Score
5.5
EPSS Score
0.005
Published
2022-05-10
Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.002
Published
2022-05-10
Windows Clustered Shared Volume Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.004
Published
2022-05-10
Windows Hyper-V Security Feature Bypass Vulnerability
CVSS Score
4.1
EPSS Score
0.009
Published
2022-05-10