Privilege escalation vulnerability in Windows products of ESET, spol. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows Kernel Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows Clustered Shared Volume Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows Push Notifications Apps Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Storage Spaces Direct Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Storage Spaces Direct Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows ALPC Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
Windows PlayToManager Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).
In ion_ioctl and related functions of ion.c, there is a possible use after free due to a race condition. Rated high severity (CVSS 7.0). No vendor patch available.
In startActivityForAttachedApplicationIfNeeded of RootWindowContainer.java, there is a possible way to overlay an app that believes it's still in the foreground, when it is not, due to a race. Rated high severity (CVSS 7.0), this vulnerability is no authentication required.
In several functions of KeyguardServiceWrapper.java and related files,, there is a possible way to briefly view what's under the lockscreen due to a race condition. Rated high severity (CVSS 7.0). No vendor patch available.