Wei

**Name of the Vulnerable Software and Affected Versions** Dataease versions 2.10.19 and earlier **Description** Dataease is a data visualization analysis tool. The static resource upload interface allows SVG uploads. Backend validation only checks if the XML is parseable and if the root node is svg, failing to sanitize active content like `onload`/`onerror` event handlers or script-capable attributes. This allows an attacker to upload a malicious SVG and trigger script execution in a browser by visiting the exposed static resource URL, resulting in a stored cross-site scripting (XSS) exploitation chain. **Recommendations** Update Dataease to version 2.10.20 or later.

Name of the Vulnerable Software and Affected Versions: WINSTAR WN572HP3 version v230525 Description: A heap overflow issue was discovered via the `CONTENT LENGTH` variable at the "/cgi-bin/upload.cgi" API endpoint. Recommendations: For WINSTAR WN572HP3 version v230525, consider disabling access to the "/cgi-bin/upload.cgi" API endpoint until a patch is available to prevent exploitation of the heap overflow issue. Avoid using the `CONTENT LENGTH` variable in the affected API endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: The issue is related to a Lightweight Directory Access Protocol (LDAP) client remote code execution. It is caused by synchronization errors when using a shared resource. This allows a remote attacker to execute arbitrary code. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows KDC Proxy (affected versions not specified) **Description** The vulnerability allows remote attackers to execute arbitrary code and affect the system. It is related to errors in the implementation of the Kerberos Key Distribution Center (KDC) Proxy Protocol in Windows operating systems. The issue is due to the function KpsSocketRecvDataIoCompletion not checking large values of the Kerberos response length, leading to a 32-bit overflow and allowing attackers to execute malicious code without authentication. The vulnerability can be exploited by sending a forged Kerberos response, forcing the proxy to connect to a fake domain controller. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue exists due to insufficient input validation in the Windows Networking component, allowing a remote attacker to cause a denial of service. This can affect the system, potentially leading to service disruption. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Network Address Translation (NAT) (affected versions not specified) **Description** The issue is related to a use-after-free vulnerability in the implementation of Network Address Translation (NAT) technology in Windows operating systems. This vulnerability can be exploited by a remote attacker to execute arbitrary code, potentially impacting the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows versions prior to Server 2022 23H2 **Description** The issue is related to a buffer overflow in the TCP/IP protocol implementation in Windows operating systems. This can be exploited by a remote attacker to execute arbitrary code, potentially leading to system compromise. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. **Recommendations** For Windows versions prior to Server 2022 23H2, patch immediately to resolve the issue. As a temporary workaround, consider restricting access to vulnerable TCP/IP functionalities until a patch is applied. Avoid using vulnerable API endpoints, such as `/api/v1/network`, in the affected Windows versions until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to a buffer overflow in the TCP/IP protocol implementation in Windows operating systems. This can be exploited by a remote attacker to execute arbitrary code. The vulnerability allows remote attackers to affect the system and execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows versions prior to the fixed version **Description** A critical vulnerability in the Windows TCP/IP stack allows for remote code execution through specially crafted IPv6 packets. This zero-click exploit affects all Windows systems with IPv6 enabled and can be exploited remotely without requiring any user interaction. The vulnerability is caused by an integer underflow in the processing of IPv6 options, which can lead to a buffer overflow and arbitrary code execution. **Recommendations** To resolve the issue, apply the latest security updates from Microsoft. If immediate patching is not feasible, consider disabling IPv6 on all systems as a temporary mitigation measure. However, note that disabling IPv6 may break certain Windows features, so it is recommended to patch systems as soon as possible. Additionally, conduct a network audit to identify any unauthorized IPv6 traffic and restrict network connectivity to minimize exposure.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to a denial-of-service vulnerability in the implementation of Network Address Translation (NAT) technology in the Windows operating system. This vulnerability is caused by a buffer overflow in memory, which can be exploited by a remote attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Layer-2 Bridge Network Driver (affected versions not specified) **Description** The issue is related to a denial-of-service vulnerability in the Windows Layer-2 Bridge Network Driver, which can be exploited by a remote attacker to cause a denial of service. The vulnerability is associated with pointer dereference errors. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Layer-2 Bridge Network Driver (affected versions not specified) **Description** The issue is related to errors in pointer dereferencing, which can be exploited by a remote attacker to cause a denial of service. This can affect the system, potentially leading to a disruption in service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to errors in pointer dereferencing in the implementation of Network Address Translation (NAT) technology in Windows operating systems. This can be exploited by a remote attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Network Driver Interface Specification (NDIS) (affected versions not specified) Description: The issue is related to a denial-of-service vulnerability in the Windows Network Driver Interface Specification (NDIS). It is caused by a buffer overflow. An attacker, acting remotely, can exploit this issue to cause a denial of service. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: The issue is related to the implementation of the TCP/IP protocol in Windows operating systems and involves the use of an uninitialized pointer. Exploitation of this issue may allow a remote attacker to access confidential information. The vulnerability can be exploited by attackers to gain access to important information and impact the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Layer-2 Bridge Network Driver (affected versions not specified) Description: The issue is related to a denial of service vulnerability. It is caused by a buffer overflow in memory, which can be exploited by a remote attacker to cause a denial of service. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Xbox (affected versions not specified) Description: The issue is related to a buffer overflow in memory, which can be exploited by a remote attacker to execute arbitrary code using a specially crafted malicious link or file. This can allow the attacker to perform actions on the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Layer-2 Bridge Network Driver (affected versions not specified) Description: The issue is related to a denial-of-service vulnerability in the Windows Layer-2 Bridge Network Driver. It is caused by a buffer overflow in memory, which can be exploited by a remote attacker to cause a denial of service. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Layer-2 Bridge Network Driver (affected versions not specified) Description: The issue is related to insufficient input validation in the Windows Layer-2 Bridge Network Driver, which can be exploited by a remote attacker to cause a denial of service. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Layer-2 Bridge Network Driver (affected versions not specified) Description: The issue is related to a memory use after free condition in the Windows Layer-2 Bridge Network Driver. This can be exploited by remote attackers to execute arbitrary code on the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.