BACK TO INTEL

Archives

Classification

Clear Filter
Application Security
Cloud Infrastructure
Enterprise Infrastructure
Enterprise IT Infrastructure
Enterprise Networking
Enterprise Security
Enterprise Software
ERP
Information Technology
Infrastructure
Infrastructure Security
Microsoft
Network Appliances
Network Infrastructure
Network Security
Networking
Open Source
Operating Systems
Software
Software Development
Software Security
Technology
Java Development
Microsoft Windows
Windows
Virtualization
Vulnerability
Web Hosting
Web Security
Windows Ecosystem

FeedTechnology

Verified advisories, vulnerability disclosures, and architectural research.

CVE-2022-30190

CVE-2022-30190: High-Severity MSDT Remote Code Execution (Follina) Technical Advisory

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run code with the privileges of the calling application.

Windows
View Detail
CVE-2021-45046

Critical Security Advisory: Addressing the Apache Log4j2 Incomplete Fix (CVE-2021-45046)

Apache Log4j2 contains a deserialization of untrusted data vulnerability due to the incomplete fix of CVE-2021-44228, where the Thread Context Lookup Pattern is vulnerable to remote code execution in certain non-default configurations.

Log4j2
View Detail
CVE-2024-30051

CVE-2024-30051: Mitigating the Microsoft DWM Core Library Heap Overflow and SYSTEM Escalation Risk

Microsoft DWM Core Library contains a privilege escalation vulnerability (CVE-2024-30051) that allows an attacker to gain SYSTEM privileges via a heap-based buffer overflow.

DWM Core Library
View Detail