Fangming Gu

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows Admin Center (affected versions not specified) **Description** The issue is related to a buffer overflow in memory, allowing an attacker to disclose protected information or cause a denial of service. There is no information about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows IP Routing Management Snapin (affected versions not specified) **Description** The issue is related to a buffer overflow in the "heap" of the Windows IP Routing Management Snapin, which can be exploited by a remote attacker to execute arbitrary code. This allows the attacker to impact the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows IP Routing Management Snapin (affected versions not specified) **Description** The vulnerability is related to a buffer overflow in the heap of the Windows IP Routing Management Snapin service. It allows remote attackers to execute arbitrary code, potentially affecting the system. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows IP Routing Management Snapin (affected versions not specified) **Description** The issue is related to a buffer overflow in the heap of the Windows IP Routing Management Snapin service. This can allow a remote attacker to execute arbitrary code, potentially impacting the system. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Performance Data Helper Library (affected versions not specified) Description: The issue is related to an integer overflow in the Performance Data Helper library of the Windows operating system. It allows a remote attacker to execute arbitrary code. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Performance Data Helper Library (affected versions not specified) Description: The issue is related to a buffer overflow in memory, allowing a remote attacker to execute arbitrary code. This can affect the system, enabling the attacker to perform unauthorized actions. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Performance Data Helper Library (affected versions not specified) Description: The issue is related to a buffer overflow in memory, which can be exploited by a remote attacker to execute arbitrary code. This can affect the system and potentially allow for unauthorized access or control. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Azure File Sync (affected versions not specified) **Description** The issue is related to an elevation of privilege vulnerability in Microsoft Azure File Sync. It involves incorrect handling of symbolic links before accessing a file, which could allow an attacker to bypass existing security restrictions and elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Routing and Remote Access Service (RRAS) (affected versions not specified) **Description** The issue is related to errors of numerical truncation in the Windows RRAS service, allowing remote attackers to execute arbitrary code and affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Routing and Remote Access Service (RRAS) (affected versions not specified) Description: The issue is related to integer truncation errors in the Windows Routing and Remote Access Service (RRAS) component of Windows operating systems. It allows remote attackers to execute arbitrary code on the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Routing and Remote Access Service (RRAS) (affected versions not specified) **Description** The issue is related to errors of numerical truncation in the Windows RRAS service of the Windows operating system. It allows a remote attacker to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Routing and Remote Access Service (RRAS) (affected versions not specified) **Description** The issue is related to numerical truncation errors in the Windows Routing and Remote Access Service (RRAS). It allows remote attackers to execute arbitrary code on the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Routing and Remote Access Service (RRAS) (affected versions not specified) **Description** The issue is related to errors in numerical truncation in the Windows RRAS service, allowing remote attackers to execute arbitrary code and affect the system. This can potentially be exploited by a remote attacker to gain unauthorized access and execute malicious code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Routing and Remote Access Service (RRAS) (affected versions not specified) **Description** The issue is related to numerical truncation errors in the Windows Routing and Remote Access Service (RRAS). It allows remote attackers to execute arbitrary code on the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Azure Monitor Agent (affected versions not specified) **Description** The issue is related to an incorrect reference count before accessing a file, which can be exploited to elevate privileges using a specially crafted link. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Azure Monitor Agent (affected versions not specified) **Description** The issue is related to an incorrect reference count before accessing a file, which can be exploited to elevate privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows File Server Resource Management Service (affected versions not specified) **Description** The issue is related to an elevation-of-privilege vulnerability in the Windows File Server Resource Management Service. It is caused by incorrect handling of symbolic links before accessing a file. Exploitation of this issue may allow an attacker to elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel HD Graphics Control Panel versions prior to 15.40.46.5144 Intel HD Graphics Control Panel versions prior to 15.36.39.5143 **Description** The issue is related to improper access control in the Intel HD Graphics Control Panel, which may allow an authenticated user to potentially enable denial of service via local access. This could result in a disruption of service. **Recommendations** For versions prior to 15.40.46.5144, update to version 15.40.46.5144 or later. For versions prior to 15.36.39.5143, update to version 15.36.39.5143 or later. As a temporary workaround, consider restricting local access to the Intel HD Graphics Control Panel until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Windows Runtime C++ Template Library (affected versions not specified) **Description** The issue is related to unsafe privilege management in the Windows Runtime C++ Template Library, which can be exploited to elevate privileges and execute arbitrary code. It allows attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Multipoint Management (affected versions not specified) Description: The issue is related to insufficient access restrictions in the Windows Multipoint Management service, which can be exploited to elevate privileges. This could allow an attacker to affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.