Improper authentication in Windows RPC API allows an unauthorized attacker to elevate privileges over an adjacent network.
Relative path traversal in Windows User Interface Core allows an authorized attacker to elevate privileges locally.
Improper link resolution before file access ('link following') in Windows Projected File System allows an authorized attacker to elevate privileges locally.
Use after free in Windows Remote Desktop Services allows an authorized attacker to elevate privileges over a network.
Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.
Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally.
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
Untrusted pointer dereference in Windows DirectX allows an authorized attacker to execute code locally.
Exposure of sensitive information to an unauthorized actor in Windows Cryptographic Services allows an authorized attacker to disclose information locally.
Improper authorization in Windows OLE allows an authorized attacker to elevate privileges locally.
Buffer over-read in Windows RDP allows an unauthorized attacker to disclose information over a network.
Exposure of sensitive information to an unauthorized actor in Windows Notification allows an authorized attacker to disclose information locally.
Stack-based buffer overflow in Windows GDI allows an authorized attacker to elevate privileges locally.
Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.
Insufficient granularity of access control in Windows Filtering Platform (WFP) allows an authorized attacker to elevate privileges locally.