Sergey Kornienko

Name of the Vulnerable Software and Affected Versions: Windows Cloud Files Mini Filter Driver (affected versions not specified) Description: The issue is related to type confusion errors in the Windows Cloud Files Mini Filter Driver, which can be exploited to disclose protected information. This allows attackers to obtain sensitive information and potentially affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NVIDIA GPU Display Driver for Windows (affected versions not specified) **Description** The issue is related to a null-pointer dereference in the kernel mode layer handler for `DxgkDdiEscape` in the `nvlddmkm.sys` file, which may lead to denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NVIDIA GPU Display Driver for Windows (affected versions not specified) **Description** The issue is related to a vulnerability in the kernel mode layer handler for DxgkDdiEscape, where an unprivileged regular user can cause exposure of sensitive information to an actor that is not explicitly authorized to have access to that information, which may lead to limited information disclosure. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** VMware Tools for Windows versions 10.x.y through 12.1.4 VMware Tools for Windows versions 11.x.y **Description** The issue is related to insufficient input validation in the VM3DMP driver of VMware Tools for Windows, which can lead to a denial-of-service condition. A malicious actor with local user privileges in the Windows guest OS can trigger a PANIC in the VM3DMP driver, causing the denial-of-service condition. **Recommendations** For versions 10.x.y through 12.1.4, update to version 12.1.5 or later. For versions 11.x.y, update to version 12.1.5 or later. As a temporary workaround, consider disabling the VM3DMP driver until a patch is available.