Benoit Sevens

**Name of the Vulnerable Software and Affected Versions** Windows Common Log File System Driver versions prior to the fixed version **Description** The issue is related to improper input validation in the Windows Common Log File System Driver, allowing an authorized attacker to elevate privileges locally. This vulnerability has been exploited in real-world attacks, with cases reported in companies in the USA, Venezuela, Spain, and Saudi Arabia. The estimated number of potentially affected devices is not specified. **Recommendations** To resolve the issue, update the Windows Common Log File System Driver to the latest version. As a temporary workaround, consider restricting access to the vulnerable driver until a patch is available. Additionally, ensure that all security updates from Microsoft are installed, as they may include patches for this vulnerability. If no specific fix is provided for a particular version, it is recommended to follow general best practices for securing Windows systems.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to the fixed version **Description** A vulnerability in the Linux kernel's USB Video Class driver can lead to out-of-bounds writes, allowing an attacker to escalate privileges or execute arbitrary code. The vulnerability is caused by incorrect parsing of an undefined frame type in the `uvc parse format` function. This can be exploited by an attacker who can influence the format of video streams captured by a system's USB video device. **Recommendations** To resolve the issue, update the Linux kernel to the latest version that includes the fix for this vulnerability. Additionally, consider disabling or restricting the use of the vulnerable USB Video Class driver until a patch is available. Avoid using unknown or untrusted USB devices, and use trusted charging only to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** The issue is related to an elevation of privilege vulnerability in the Windows DWM Core Library. This vulnerability allows attackers to affect the system. It has been linked to cyberattacks involving QakBot, a notorious banking trojan. The vulnerability is being actively exploited by QakBot and other malware. Researchers have identified a new zero-day vulnerability in Windows, designated as this issue, and it is being used by multiple attackers. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.