Zhang Wangjunjie

**Name of the Vulnerable Software and Affected Versions** Windows versions (affected versions not specified) **Description** A flaw exists in the Connected Devices Platform Service (`Cdpsvc`) related to memory management, specifically a use-after-free condition. Successful exploitation of this issue could allow an authorized attacker to gain elevated privileges on a local system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Connected Devices Platform Service (affected versions not specified) Description: The Windows Connected Devices Platform Service contains a race condition due to improper synchronization during concurrent execution using a shared resource. This allows a local attacker to cause a denial of service. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Connected Devices Platform Service (affected versions not specified) Description: A use-after-free issue exists within the Windows Connected Devices Platform Service. This flaw could allow an authorized attacker to gain elevated privileges on a local system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Connected Devices Platform Service (affected versions not specified) Description: A use after free issue exists in the Windows Connected Devices Platform Service that could allow an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows Connected Devices Platform Service (affected versions not specified) Description: The issue is related to a use after free condition in the Windows Connected Devices Platform Service, which allows an authorized attacker to elevate privileges locally. This means an attacker with initial access to the system could potentially gain higher levels of access. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows RPC Endpoint Mapper Service (affected versions not specified) Description: The issue is related to a use after free vulnerability in the RPC Endpoint Mapper Service, which allows an authorized attacker to elevate privileges locally. This can affect the system, potentially leading to an elevation-of-privilege vulnerability. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft COM for Windows (affected versions not specified) **Description** An elevation-of-privilege issue affects the system, allowing attackers to elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft DWM Core Library (affected versions not specified) **Description** The issue is related to the use of memory after it has been freed, which can allow an attacker to elevate their privileges. This can affect the system, potentially leading to unauthorized access or control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** The issue is related to the use of memory after it has been freed, which can be exploited to elevate privileges. This can allow an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified) Description: The issue is related to the use of memory after it has been freed in the Win32k component (Win32k.sys) of Windows operating systems. This can allow an attacker to elevate their privileges. The vulnerability may be exploited to affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library (affected versions not specified) Description: The issue is related to the use of memory after it has been freed, which can be exploited to elevate privileges. This allows an attacker to affect the system. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library (affected versions not specified) Description: The issue is related to the use of memory after it has been freed, which can be exploited to elevate privileges. This can allow an attacker to affect the system. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Windows DWM Core Library (affected versions not specified) Description: The issue is related to an integer overflow in the Windows DWM Core Library, which can be exploited to disclose protected information. This allows attackers to obtain sensitive information and potentially affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** The issue is related to a buffer overflow in memory, which can allow an attacker to gain unauthorized access to protected information. This can lead to the disclosure of sensitive information and potentially affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Kernel (affected versions not specified) **Description** The issue is related to errors in privilege management within the Windows operating system. It allows an attacker to potentially elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to synchronization errors when using a shared resource in the Windows Graphics Component. This can allow an attacker to elevate their privileges. There is an elevation-of-privilege vulnerability that allows attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft DWM Core Library (affected versions not specified) **Description** The issue is related to insufficient access control in the Microsoft DWM Core Library of Windows operating systems. It allows an attacker to elevate their privileges, potentially affecting the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows DWM Core Library, which can be exploited to elevate privileges. This allows an attacker to affect the system. No information is provided about the estimated number of potentially affected devices or real-world incidents. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** The issue is related to insufficient access control in the Windows DWM Core Library, which can be exploited to elevate privileges. This allows an attacker to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** The issue is related to errors in security settings, allowing an attacker to elevate their privileges. This can affect the system, potentially leading to unauthorized access or control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.