Tenable

SEPTEMBER 14, 2020

Security researchers reveal how the cryptographic authentication scheme in Netlogon can be exploited to take control of a Windows domain controller (DC). An attacker can exploit this flaw to impersonate the identity of any machine on a network when attempting to authenticate to the Domain Controller (DC). Background.

Windows 118

Windows LAN Backup Authentication 118

Tenable

FEBRUARY 13, 2024

Moderate CVE-2024-21351 | Windows SmartScreen Security Feature Bypass Vulnerability CVE-2024-21351 is a security feature bypass vulnerability in Windows SmartScreen. Since 2022, there have been five Windows SmartScreen vulnerabilities disclosed across Patch Tuesday. It was assigned a CVSSv3 score of 7.6 and is rated moderate.

LAN 128

LAN Windows Azure Internet 128

Tenable

SEPTEMBER 12, 2023

Successful exploitation of this flaw would allow for the disclosure of New Technology LAN Manager (NTLM) hashes. Successful exploitation of these vulnerabilities requires an attacker to authenticate with LAN-access and have valid credentials for an Exchange user. Each of these vulnerabilities were given CVSSv3 scores of 8.0

LAN 123

LAN Windows 3D Azure 123

Tenable

AUGUST 13, 2024

and could be abused by an authenticated attacker to bypass server-side request forgery (SSRF) protections in order to leak potentially sensitive information. This vulnerability received a CVSSv3 score of 8.5 CVE-2024-38133 and CVE-2024-38153 received CVSSv3 scores of 7.8, while CVE-2024-38106 was scored as a 7.

IPv6 126

IPv6 Windows Azure LAN 126

Tenable

OCTOBER 10, 2023

Successful exploitation could lead to the disclosure of New Technology LAN Manager (NTLM) hashes. Critical CVE-2023-35349 | Microsoft Message Queuing Remote Code Execution Vulnerability CVE-2023-35349 is a RCE vulnerability in the Microsoft Message Queuing (MSMQ) component of Windows operating systems that was assigned a CVSSv3 score of 9.8

Windows 118

Windows Software Review Azure Systems Review 118

Tenable

MAY 10, 2022

Microsoft Windows ALPC. Role: Windows Fax Service. Role: Windows Hyper-V. Tablet Windows User Interface. Windows Active Directory. Windows Address Book. Windows Authentication Methods. Windows BitLocker. Windows Cluster Shared Volume (CSV). Windows Kerberos. Windows Kernel.

Windows 100

Windows Authentication LAN Policies 100

Tenable

JANUARY 10, 2023

Windows ALPC. Windows Ancillary Function Driver for WinSock. Windows Authentication Methods. Windows Backup Engine. Windows Bind Filter Driver. Windows BitLocker. Windows Boot Manager. Windows Credential Manager. Windows Cryptographic Services. Windows DWM Core Library.

Windows 100

Windows Software Review Operating System LAN 100