Naceri

Name of the Vulnerable Software and Affected Versions: Windows Secure Kernel Mode (affected versions not specified) Description: The issue is related to improper privilege management, allowing an authorized attacker to elevate privileges locally. This can affect the system, potentially leading to unauthorized access or control. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Remote Desktop versions prior to 1.2.5807 Description: The issue is related to a remote code execution vulnerability in the Remote Desktop Client, which is associated with inadequate access control. This vulnerability can be exploited by a remote attacker to execute arbitrary code. Recommendations: For versions prior to 1.2.5807, update to version 1.2.5807 or later to resolve the issue. As a temporary workaround, consider restricting access to the Remote Desktop Client until a patch is applied. Ensure all systems are patched with the latest security updates.

Name of the Vulnerable Software and Affected Versions: Windows Common Log File System Driver (affected versions not specified) Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Common Log File System Driver. It is caused by incorrect handling of symbolic links before accessing a file. Exploitation of this issue may allow an attacker to elevate their privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to a buffer overflow in memory, which can lead to the disclosure of protected information. This can be exploited by attackers to obtain sensitive information and affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to an incorrect handling of symbolic links before accessing a file, which can be exploited to elevate privileges. This can allow an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Server (affected versions not specified) Description: The issue is related to insufficient access control in the Brokering File System (BFS) of Windows Server, allowing an attacker to elevate their privileges. This can impact the system, potentially enabling unauthorized actions. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Server (affected versions not specified) **Description** The issue is related to errors in synchronization when using a shared resource in the Brokering File System (BFS) of Windows Server, allowing an attacker to potentially elevate their privileges. This could affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Brokering File System (affected versions not specified) **Description** The issue is related to insufficient access control in the Microsoft Brokering File System, which can be exploited to elevate privileges. This can potentially allow an attacker to gain higher privileges on the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Brokering File System (affected versions not specified) **Description** The issue is related to errors in synchronization when using a shared resource in the Windows Server operating system. It allows an attacker to elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Brokering File System (affected versions not specified) Description: The issue is related to insecure privilege management in the Microsoft Brokering File System, which can be exploited to elevate privileges. This could allow an attacker to affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows Error Reporting Service versions prior to the fixed version in Microsoft's March Patch Tuesday **Description** The issue is related to improper privilege management in the Windows Error Reporting Service, allowing an attacker to elevate their privileges. The Black Basta ransomware group is suspected of exploiting this vulnerability as a zero-day before a fix was made available. Symantec researchers found an exploit for this bug compiled three months before Microsoft's official patch. The vulnerability was added to CISA KEV, and it is recommended to patch systems promptly to prevent exploitation. **Recommendations** For versions prior to the fixed version in Microsoft's March Patch Tuesday, update to the latest version to resolve the issue. As a temporary workaround, consider restricting access to the Windows Error Reporting Service to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Windows Client Server Run-time Subsystem (CSRSS) (affected versions not specified) **Description** The issue is related to insufficient access control in the Client Server Run-Time Subsystem (CSRSS) of Windows operating systems. It allows an attacker to elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Installer (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows Installer, which can be exploited to elevate privileges in the system. This allows an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Server Update Services (WSUS) (affected versions not specified) **Description** The issue is related to insufficient access restrictions in Windows Server Update Services (WSUS), which can be exploited to elevate privileges. This could allow an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Container Manager Service (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows Container Manager Service, which can be exploited to elevate privileges. This allows an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Installer (affected versions not specified) **Description** The issue is related to errors in memory object handling mechanisms in the Windows Installer component of Windows operating systems. This can allow an attacker to elevate their privileges. An elevation-of-privilege issue allows attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to errors in security settings of the Windows Lock Screen, allowing an attacker to bypass security restrictions. This can potentially enable an attacker to affect the system. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Error Reporting Service (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows Error Reporting Service, which can be exploited to elevate privileges. This allows an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to a security feature bypass in the Windows lock screen, which can be exploited due to errors in security settings. This could allow an attacker to bypass security restrictions. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.