Security
Headlines
HeadlinesLatestCVEs

Tag

#windows

CVE-2023-28223

Windows Domain Name Service Remote Code Execution Vulnerability

CVE
Open in Source
#vulnerability#windows#rce
CVE-2023-28221

Windows Error Reporting Service Elevation of Privilege Vulnerability

CVE-2023-28224

Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability

CVE-2023-28226

Windows Enroll Engine Security Feature Bypass Vulnerability

CVE-2023-28249

Windows Boot Manager Security Feature Bypass Vulnerability

CVE-2023-28248

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-28247

Windows Network File System Information Disclosure Vulnerability

CVE-2023-28246

Windows Registry Elevation of Privilege Vulnerability

Microsoft Patch Tuesday for April 2023 — Snort rules and prominent vulnerabilities

April is the third month in a row in which at least one of the vulnerabilities Microsoft released in a Patch Tuesday had been exploited in the wild prior to disclosure.

CVE-2023-1939: DEVO-2023-0009

No access control for the OTP key   on OTP entries in Devolutions Remote Desktop Manager Windows 2022.3.33.0 and prior versions and Remote Desktop Manager Linux 2022.3.2.0 and prior versions allows non admin users to see OTP keys via the user interface.