Guillaume André

**Name of the Vulnerable Software and Affected Versions** Windows versions (affected versions not specified) **Description** A flaw in the Windows SMB Server authentication process can allow an authorized attacker to elevate privileges locally. The issue relates to deficiencies in the authentication procedure. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows SMB Server (affected versions not specified) **Description** An improper authentication mechanism exists in Windows SMB Server. Successful exploitation could allow an attacker to elevate privileges locally. The issue relates to flaws in the authentication process. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** (affected versions not specified) **Description** Some payload elements of the messages sent between two stations in a networking architecture are not properly checked on the receiving station, potentially allowing an attacker to execute unauthorized commands in the application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** The issue is being actively exploited. No further details are available about the nature of the issue or its potential impact. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows 10 PLUGScheduler (affected versions not specified) Description: The issue is related to an elevation of privilege vulnerability in the PLUGScheduler component of Windows operating systems. This vulnerability can be exploited to allow an attacker to gain elevated privileges on the system. The vulnerability is associated with an arbitrary file write, which can be used to execute code as SYSTEM by writing a DLL file in C:WindowsSystem32SprintCSP.dll and triggering the `SvcRebootToFlashingMode` method of the `StorSvc` service. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.