Jimmy Bayne

Name of the Vulnerable Software and Affected Versions: Windows Security App (affected versions not specified) Description: The Windows Security App contains a flaw related to external control of file names or paths. This allows an authorized attacker to perform local spoofing. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Security App (affected versions not specified) **Description** The issue allows an authorized attacker to perform spoofing locally by exploiting external control of file name or path in the Windows Security App. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PowerShell (affected versions not specified) **Description** The vulnerability is related to insufficient input validation in the PowerShell command-line shell for Windows operating systems. Exploitation of the vulnerability may allow an attacker to elevate their privileges. It is associated with an elevation of privilege issue, allowing attackers to impact the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows PowerShell (affected versions not specified) **Description** The vulnerability is related to insufficient input validation in the Windows PowerShell command-line shell. It allows an attacker to elevate their privileges. The issue may be exploited to impact the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows PowerShell (affected versions not specified) **Description** The vulnerability is related to insufficient input validation in the Windows PowerShell command-line shell. It allows an attacker to elevate their privileges. The issue can be exploited to impact the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: A spoofing vulnerability affects the system, potentially allowing attackers to perform spoofing attacks due to a lack of protection of service data within the Windows NTLM authentication protocol. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows PowerShell (affected versions not specified) **Description** The issue is related to insufficient input validation in the Windows operating system's PowerShell command-line shell. It allows an attacker to elevate their privileges. There is an elevation-of-privilege vulnerability that affects the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** .NET and Visual Studio (affected versions not specified) **Description** The issue is caused by synchronization errors when using a shared resource in the .NET and Visual Studio software platform. Exploitation of this issue may allow a remote attacker to elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bitdefender Antivirus Free versions prior to 1.0.17 **Description** A vulnerability in the improper handling of junctions in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. **Recommendations** For versions prior to 1.0.17, update to version 1.0.17 or later to resolve the issue. As a temporary workaround, consider restricting access to quarantined files to prevent substitution and restoration to privileged locations.