microsoft

windows

26 Versions 887 CVEs

Versions

Recent CVEs

CVE-2024-30164

Amazon AWS Client VPN has a buffer overflow that could potentially allow a local actor to execute arbitrary commands with elevated permissions. This is resolved in 3.11.1 on Windows, 3.9.1 on macOS, and 3.12.1 on Linux. NOTE: although the macOS resolution is the same as for CVE-2024-30165, this vulnerability on macOS is not the same as CVE-2024-30165.

MEDIUM

CVE-2022-40733

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code to trigger Denial Of Service.

MEDIUM Dec 18, 2024

windows

Versions

8.1 for 32-bit systems

10 Version 1809 for x64-based Systems

10 Version 1803 for ARM64-based Systems

10 Version 1607 for 32-bit Systems

10 for 32-bit Systems

10 Version 1703 for 32-bit Systems

7 for 32-bit Systems Service Pack 1

RT 8.1

10 Version 1703 for x64-based Systems

7 for x64-based Systems Service Pack 1

10 Version 1709 for x64-based Systems

8.1 for x64-based systems

10 Version 1607 for x64-based Systems

10 Version 1709 for ARM64-based Systems

10 Version 1803 for 32-bit Systems

Build 22000.593

10 Version 1809 for ARM64-based Systems

10 Version 1809 for 32-bit Systems

10 for x64-based Systems

10 Version 1709 for 32-bit Systems

10 Version 1803 for x64-based Systems

8

11

Multiple versions

3.11.1

multiple versions

Recent CVEs

CVE-2024-30164

CVE-2022-40733

CVE-2022-40732

CVE-2024-30031

CVE-2024-30029

CVE-2024-30023

CVE-2024-29999