BACK TO INTEL

Archives

Classification

Clear Filter

No categories extracted.

FeedTechnology

Verified advisories, vulnerability disclosures, and architectural research.

CVE-2022-30190

CVE-2022-30190: High-Severity MSDT Remote Code Execution (Follina) Technical Advisory

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run code with the privileges of the calling application.

Windows
View Detail
CVE-2021-45046

Critical Security Advisory: Addressing the Apache Log4j2 Incomplete Fix (CVE-2021-45046)

Apache Log4j2 contains a deserialization of untrusted data vulnerability due to the incomplete fix of CVE-2021-44228, where the Thread Context Lookup Pattern is vulnerable to remote code execution in certain non-default configurations.

Log4j2
View Detail
CVE-2024-30051

CVE-2024-30051: Mitigating the Microsoft DWM Core Library Heap Overflow and SYSTEM Escalation Risk

Microsoft DWM Core Library contains a privilege escalation vulnerability (CVE-2024-30051) that allows an attacker to gain SYSTEM privileges via a heap-based buffer overflow.

DWM Core Library
View Detail