Published threat advisories for May 12, 2017

A vulnerability in Microsoft Windows kernel-mode drivers allows local users to gain elevated privileges by running a crafted application. This impacts affected Windows operating systems by enabling attackers with existing local access to increase their control over a system, potentially leading to unauthorized data acc

NVD published: May 12, 2017 • CISA KEV

Microsoft Office has a memory handling vulnerability that could allow unauthorized code execution. This impacts organizations using affected versions of Office by potentially compromising systems and data. The realistic business risk involves attackers gaining control through user interaction with malicious files.

NVD published: May 12, 2017 • CISA KEV

Microsoft Office software has a memory handling vulnerability that could allow remote code execution if a user opens a specially crafted document. This poses a business risk by potentially affecting system integrity and data confidentiality.

NVD published: May 12, 2017 • CISA KEV

A memory corruption vulnerability in Internet Explorer allows attackers to execute arbitrary code. This impacts systems using the browser and poses a risk of system compromise, affecting data and operations.

NVD published: May 12, 2017 • CISA KEV

A vulnerability in Windows COM Aggregate Marshaler allows privilege elevation through a specially crafted application, potentially impacting affected systems and data. This presents a business risk of unauthorized access and system compromise.

NVD published: May 12, 2017 • CISA KEV