Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack.

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.

Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.

Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally.

Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network.

Improper link resolution before file access ('link following') in Microsoft Windows allows an authorized attacker to elevate privileges locally.