SafeBreach Labs CVE Discoveries
Browse the list of vulnerabilities uncovered by leading edge researchers on the SafeBreach Labs team. For more of their work, visit our Research Hub.
| Date | CVE ID | CVSS | CVSS (FULL) | CVE DESCRIPTION | NVD LINK | NOTES |
|---|---|---|---|---|---|---|
| 11/2023 | CVE-2023-36396 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | Windows Compressed Folder Remote Code Execution Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36396 |
| 12/2023 | CVE-2023-36010 | 7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H | Microsoft Defender Denial of Service Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36010 |
| 7/2023 | CVE-2023-32054 | 7.3 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H | Volume Shadow Copy Elevation of Privilege Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32054 |
| 4/2023 | CVE-2023-24934 | 5.5 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N | Microsoft Defender Security Feature Bypass Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24934 |
| 4/2023 | CVE-2023-24860 | 7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H | Windows Defender Denial of Service | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24860 |
| 3/2023 | CVE-2023-23411 | 6.5 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H | Windows Hyper-V Denial of Service Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23411 |
| 12/2022 | CVE-2022-45797 | 7.1 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H | Arbitrary File Deletion Local Privilege Escalation Vulnerability | Link | https://success.trendmicro.com/dcx/s/solution/000291830?language=en_US |
| 12/2022 | TBA | Arbitrary File Deletion Local Privilege Escalation Vulnerability | https://www.safebreach.com/resources/safebreach-labs-researcher-discovers-multiple-zero-day-vulnerabilities/ | |||
| 11/2022 | CVE-2022-4173 | 8.8 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | Arbitrary File Deletion Local Privilege Escalation Vulnerability | Link | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4173 |
| 11/2022 | CVE-2022-38015 | 6.5 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H | Windows Hyper-V Denial of Service Vulnerability | Link | https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-38015 |
| 10/2022 | CVE-2022-37971 | 7.1 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H | Microsoft Windows Defender Elevation of Privilege Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37971 |
| 7/2021 | CVE-2021-34507 | 6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N | Windows Remote Assistance Information Disclosure Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34507 |
| 5/2021 | CVE-2021-28476 | 9.9 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H | Hyper-V Remote Code Execution Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28476 |
| 8/2020 | CVE-2020-1337 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | Windows Print Spooler Elevation of Privilege Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1337 |
| 5/2020 | CVE-2020-1048 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | Windows Print Spooler Elevation of Privilege Vulnerability | Link | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1048 |
| 2/2020 | CVE-2019-20400 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 2/2020 | CVE-2019-20406 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 1/2020 | CVE-2019-19115 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 12/2019 | CVE-2019-19235 | 7 | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 12/2019 | CVE-2019-19705 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | https://www.realtek.com/images/safe-report/PM_Realtek_Audio_Drivers_for_Windows_DLL_preloading_and_potential_Abuses_CVE-2019-19705_20200115.pdf |
| 12/2019 | CVE-2019-18670 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 12/2019 | CVE-2019-20362 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 11/2019 | CVE-2019-15628 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 11/2019 | CVE-2019-16861 | 7.3 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link | |
| 11/2019 | CVE-2019-15689 | 6.7 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | DLL Preloading vulnerability | Link |