Microsoft: >> Windows Server 2022 >> 10.0.20348.1540 Security Vulnerabilities
CVE-2023-24880
Windows SmartScreen Security Feature Bypass Vulnerability
Known exploited
CVSS Score
4.4
EPSS Score
0.773
Published
2023-03-14
An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process or rendering it unusable) and/or arbitrary code execution in the TPM context.
CVSS Score
7.8
EPSS Score
0.012
Published
2023-02-28
An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM.
CVSS Score
5.5
EPSS Score
0.006
Published
2023-02-28
Windows Clustered Shared Volume Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.003
Published
2022-05-10
Windows Failover Cluster Information Disclosure Vulnerability
CVSS Score
5.5
EPSS Score
0.005
Published
2022-05-10
Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.002
Published
2022-05-10
Windows Clustered Shared Volume Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.004
Published
2022-05-10
Windows Hyper-V Security Feature Bypass Vulnerability
CVSS Score
4.1
EPSS Score
0.009
Published
2022-05-10
Windows Authentication Information Disclosure Vulnerability
CVSS Score
7.4
EPSS Score
0.042
Published
2022-05-10
CVE-2022-26923
Active Directory Domain Services Elevation of Privilege Vulnerability
Known exploited
CVSS Score
8.8
EPSS Score
0.914
Published
2022-05-10