CISA Known Exploited Vulnerabilities

Description:

A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.

Description:

A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

Description:

A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

Description:

A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.

Description:

A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.

Description:

A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory.

Description:

A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

Description:

The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application.

Description:

Mozilla Firefox contains a use-after-free vulnerability in WebGPU IPC Framework which can be exploited to perform arbitrary code execution.

Description:

Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform arbitrary code execution.

Description:

VMware vCenter Server and Cloud Foundation Server contain a SSRF vulnerability due to improper validation of URLs in a vCenter Server plugin. This allows for information disclosure.

Description:

A code injection vulnerability exists in Pulse Connect Secure that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.

Description:

Atlassian Jira Server and Data Center contain a server-side template injection vulnerability which can allow for remote code execution.

Description:

NETGEAR DGN2200 wireless routers contain a vulnerability that allows for remote code execution.

Description:

NETGEAR confirmed multiple routers allow unauthenticated web pages to pass form input directly to the command-line interface, permitting remote code execution.