Lm0963

**Name of the Vulnerable Software and Affected Versions** Windows Storage (affected versions not specified) **Description** The issue is related to the use of memory after it has been freed in the Windows Storage Services, which can allow an attacker to elevate their privileges. This is an elevation-of-privilege vulnerability that affects the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Fax Service (affected versions not specified) Description: The issue is related to pointer dereference errors in the Windows Fax Service. It allows remote attackers to execute arbitrary code, affecting the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Client Server Run-Time Subsystem (CSRSS) (affected versions not specified) **Description** The vulnerability is related to a lack of protection for system data in the Windows operating system. It allows attackers to obtain sensitive information and potentially affect the system. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Client Server Run-Time Subsystem (CSRSS) (affected versions not specified) **Description** The vulnerability is related to the lack of protection for service data in the Windows operating system. It allows an attacker to obtain sensitive information. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Fax Service (affected versions not specified) **Description** The issue is related to insufficient input validation in the Windows Fax Service, which can be exploited by remote attackers to execute arbitrary code on the system. This allows for potential system compromise. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to an elevation of privilege vulnerability in the Windows Graphics Component. It is associated with a buffer overflow in memory, which could allow an attacker to execute arbitrary code. This vulnerability may enable attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Print Spooler (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows Print Spooler, which can be exploited to elevate privileges. This could allow an attacker to affect the system. No information is provided about the estimated number of potentially affected devices or real-world incidents. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows Graphics Component, which can be exploited to elevate privileges. This allows an attacker to affect the system. No information is available on the estimated number of potentially affected devices or real-world incidents. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to insufficient protection of sensitive data in the Windows Graphics component, which can be exploited to gain unauthorized access to protected information. This can allow attackers to obtain sensitive information and potentially affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to an information disclosure vulnerability in the Windows Graphics Component. It allows attackers to obtain sensitive information and potentially affect the system. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Print Spooler (affected versions not specified) **Description** The issue is related to insufficient access control in the Windows Print Spooler, which can be exploited to elevate privileges. This allows an attacker to affect the system. No information is provided about the estimated number of potentially affected devices or real-world incidents. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Print Spooler (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows Print Spooler, allowing an attacker to elevate their privileges. This can impact the system, potentially leading to unauthorized access or control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NETGEAR R6900P versions prior to 1.3.3.140 NETGEAR R7000 versions prior to 1.0.11.126 NETGEAR R7000P versions prior to 1.3.3.140 NETGEAR RS400 versions prior to 1.5.1.80 **Description** The issue is related to insecure privilege management in the embedded software of NETGEAR routers. Exploitation of this issue may allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For R6900P versions prior to 1.3.3.140, update to version 1.3.3.140 or later. For R7000 versions prior to 1.0.11.126, update to version 1.0.11.126 or later. For R7000P versions prior to 1.3.3.140, update to version 1.3.3.140 or later. For RS400 versions prior to 1.5.1.80, update to version 1.5.1.80 or later.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) Microsoft Internet Messaging API (affected versions not specified) **Description** The issue is related to insecure privilege management in the Windows Event Tracing service and incorrect code generation handling in the Internet Messaging API component. This can allow an attacker to elevate their privileges or execute arbitrary code, potentially affecting the system. **Recommendations** For Windows, consider restricting access to the Windows Event Tracing service until a patch is available. For Microsoft Internet Messaging API, avoid using the component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Raw Image Extension (affected versions not specified) Description: The issue is related to incorrect code generation management in the Raw Image Extension plugin. It can be exploited by an attacker to execute arbitrary code using a specially crafted malicious web page or a specially crafted malicious file. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: The issue is related to insufficient protection of internal data in the Windows operating system, which can allow an attacker to gain unauthorized access to protected information. This can potentially enable attackers to obtain sensitive information and affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook (affected versions not specified) **Description** The issue is related to a memory corruption vulnerability in Microsoft Outlook, which can be exploited by a remote attacker to execute arbitrary code. This vulnerability is also associated with Microsoft 365 Apps for Enterprise and Microsoft Office, and it involves a buffer overflow in memory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: The issue is related to insufficient protection of internal data in the Application Compatibility Cache component of Microsoft Windows operating systems. This can be exploited by a remote attacker to cause a denial of service. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to incorrect code generation management in the Windows Graphics Component. It allows remote attackers to execute arbitrary code, affecting the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows Graphics Component (affected versions not specified) **Description** The issue is related to the improper handling of objects in memory by the Microsoft Windows Graphics Component, which can lead to information disclosure. This could allow an attacker to obtain sensitive information. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.