Joe Desimone

**Name of the Vulnerable Software and Affected Versions** Desktop Window Manager (affected versions not specified) **Description** A use after free issue allows an authorized attacker to elevate privileges locally. Use after free is a condition where a program continues to use a pointer after it has been freed, which can lead to memory corruption. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Cloud Files Mini Filter Driver (affected versions not specified) **Description** A race condition occurs due to concurrent execution using a shared resource with improper synchronization. This allows an authorized attacker to elevate privileges locally on the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Common Log File System Driver (affected versions not specified) **Description** A use after free issue in the Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. Use after free is a condition where a program continues to use a pointer after it has been freed, which can lead to memory corruption. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Desktop Window Manager (affected versions not specified) **Description** A use after free issue allows an authorized attacker to elevate privileges locally. Use after free occurs when an application continues to use a pointer after it has been freed, which can lead to arbitrary code execution or privilege escalation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Desktop Window Manager (affected versions not specified) **Description** A use after free issue in Desktop Window Manager allows an authorized attacker to elevate privileges locally. Use after free is a condition where a program continues to use a pointer after it has been freed, which can lead to memory corruption. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows NTLM (affected versions not specified) **Description** A flaw exists in Windows NTLM that permits external control of file names or paths, potentially enabling a local attacker to perform spoofing. This issue allows attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows (affected versions not specified) **Description** The issue concerns a security feature bypass vulnerability in the Mark of the Web (MOTW) protection mechanism of Microsoft Windows. This vulnerability can be exploited by an attacker to bypass existing security restrictions. The exploitation involves a specially crafted LNK file that, when opened, allows the attacker to launch untrusted files. The vulnerability has been actively exploited since 2018 and was recently patched by Microsoft. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.