The Group Policy Security Configuration policy implementation in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1,. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available.
Authentication Bypass
Microsoft
Windows 7
Windows 8
Windows 8 1
+6
NVD
Exploit-DB
CVSS 2.0
3.3
EPSS
4.1%
The CryptProtectMemory function in cng.sys (aka the Cryptography Next Generation driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2. Rated low severity (CVSS 1.9). Public exploit code available.
Authentication Bypass
Microsoft
Windows 7
Windows 8
Windows 8 1
+6
NVD
Exploit-DB
CVSS 2.0
1.9
EPSS
1.7%