Varun Goel

**Name of the Vulnerable Software and Affected Versions** Desktop Window Manager (affected versions not specified) **Description** A use after free issue in Desktop Window Manager allows an authorized attacker to elevate privileges locally. Use after free is a memory corruption flaw that occurs when an application continues to use a pointer after it has been freed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Desktop Window Manager (affected versions not specified) **Description** A use after free issue allows an authorized attacker to elevate privileges locally. Use after free occurs when an application continues to use a pointer after it has been freed, which can lead to memory corruption. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** A use-after-free issue exists in the Windows DWM Core Library. Exploitation of this issue could allow an authorized attacker to elevate privileges locally. The issue involves utilizing memory after it has been freed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** A flaw exists in the Desktop Window Manager (DWM) component of Windows that could allow a local attacker to gain elevated privileges. The issue involves a use-after-free condition. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** A flaw exists within the Windows Win32K component, specifically in the ICOMP area. This issue allows a locally authorized attacker to gain elevated privileges. The issue is an instance of a use-after-free condition. An elevation-of-privilege outcome is possible. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Desktop Windows Manager (affected versions not specified) Description: A use after free issue exists in Desktop Windows Manager that could allow an authorized attacker to execute code locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Desktop Windows Manager (affected versions not specified) Description: A use after free issue exists in the Desktop Windows Manager that could allow an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: The issue is related to errors in access control within the Windows operating system kernel, allowing an attacker to bypass existing security restrictions. This could potentially enable an attacker to affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft DWM Core Library (affected versions not specified) **Description** The issue is related to an elevation of privilege vulnerability in the Microsoft DWM Core Library. It involves the use of memory after it has been freed, which can be exploited by an attacker to gain elevated privileges. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.