Florian Schweins

Name of the Vulnerable Software and Affected Versions: Microsoft Local Security Authority Server (lsasrv) (affected versions not specified) Description: The issue is related to a use after free condition in the Microsoft Local Security Authority Server, allowing an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Task Scheduler (affected versions not specified) Description: The issue is related to an elevation of privilege vulnerability in the Windows Task Scheduler. It is associated with a buffer overflow in dynamic memory. Exploitation of this issue may allow an attacker to elevate their privileges. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Kernel. It involves the use of an uninitialized resource, which can be exploited by an attacker to gain elevated privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Print Spooler (affected versions not specified) **Description** The issue is related to a pointer dereference in the Windows Print Spooler, which can allow an attacker to elevate their privileges. This can affect the system, potentially leading to unauthorized access or control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Kaspersky Anti-Virus SDK for Windows (affected versions not specified) Kaspersky Security for Virtualization Light Agent (affected versions not specified) Kaspersky Endpoint Security for Windows (affected versions not specified) Kaspersky Small Office Security (affected versions not specified) Kaspersky for Windows (Standard, Plus, Premium) (affected versions not specified) Kaspersky Free (affected versions not specified) Kaspersky Anti-Virus (affected versions not specified) Kaspersky Internet Security (affected versions not specified) Kaspersky Security Cloud (affected versions not specified) Kaspersky Safe Kids (affected versions not specified) Kaspersky Anti-Ransomware Tool (affected versions not specified) Description: The issue is related to an integer overflow that could allow an authenticated attacker to write data to a limited area outside the allocated kernel memory buffer. This may lead to arbitrary data being written and potentially cause a denial of service. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited. Recommendations: For all affected Kaspersky products, the fix was installed automatically, so no additional action is required for Kaspersky Endpoint products. As a general mitigation measure, ensure that all Kaspersky products are updated to the latest version to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability for non-Endpoint products, so users of other affected products should monitor for updates.