A vulnerability was found in Microsoft Windows 10 2004/10 20H2/10 21H1/Server 2004/Server 20H2 (Operating System). It has been declared as critical. Affected by this vulnerability is an unknown code of the component Recovery Environment Agent. Applying a patch is able to eliminate this problem. A possible mitigation has been published immediately after the disclosure of the vulnerability.
Microsoft Windows 10 20H2/10 21H1/10 2004/Server 20H2/Server 2004 Recovery Environment Agent Privilege Escalation
- Virtual Patching
- August 10, 2021
- 8:05 pm
Contact us to get started
CVE-2022-36980 : IVANTI AVALANCHE 6.3.2.3490 ENTERPRISESERVER SERVICE TOCTOU
Description This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required
CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW
Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to
CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION
Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely