Ryelv

**Name of the Vulnerable Software and Affected Versions** Windows Layer 2 Tunneling Protocol (L2TP) (affected versions not specified) **Description** The issue is related to a buffer overflow in the implementation of the Layer 2 Tunneling Protocol (L2TP) in Microsoft Windows. It can be exploited by sending a specially crafted connection request to a RAS server, allowing a remote attacker to execute arbitrary code. This can potentially impact the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to insufficient access control in the Windows operating system kernel. It allows an attacker to elevate privileges in the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Kernel (affected versions not specified) **Description** The issue is related to insufficient access control in the Windows operating system kernel. It allows an attacker to elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Performance Counters (affected versions not specified) **Description** The issue is related to insufficient access restrictions in Windows Performance Counters, allowing an attacker to elevate their privileges. This can affect the system, potentially leading to increased access for unauthorized users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to insufficient access control in the Win32k component of Windows operating systems. It can be exploited by an attacker to elevate their privileges using a specially crafted application. The vulnerability is associated with use-after-free local privilege escalation in various components of the Windows win32kfull, including UMPDDrvLineTo, UMPDDrvFontManagement, UMPDDrvStartBanding, UMPDDrvStrokeAndFillPath, UMPDDrvNextBand, UMPDDrvEscape, UMPDDrvFillPath, and UMPDDrvQueryPerBandInfo. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Common Log File System Driver (affected versions not specified) **Description** The issue exists due to insufficient input validation in the Windows Common Log File System Driver. This allows an attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to insufficient access control in the Win32k component of the Microsoft Windows operating system. This can be exploited to elevate privileges. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows 10 (affected versions not specified) Windows 11 (affected versions not specified) Windows Server 2019 (affected versions not specified) Windows Server 2022 (affected versions not specified) **Description** An elevation of privilege issue exists in the Win32k component (`win32k.sys`) of the Windows NT kernel due to improper access control and a use-after-free flaw. A use-after-free occurs when a program continues to use a pointer after it has been freed, which can lead to memory corruption. By manipulating window objects and their lifetime, an attacker can force the kernel to operate on a freed object under their control, enabling arbitrary kernel read/write capabilities to swap the current process token with the SYSTEM token. This issue has been actively exploited in real-world incidents, including use by ransomware for network propagation. **Recommendations** Apply the updates provided by Microsoft in the January Tuesday updates for Windows 10, Windows 11, Windows Server 2019, and Windows Server 2022.