Recent N-Day Feed Updates

List of recently analysed vulnerabilities

Below is a list of vulnerabilities we have recently analysed.

CVE	Description	Target	Capability	Status	CISA KEV
CVE-2024-7965	Google Chrome Android RCE (TurboFan Engine)	Google Chrome	RCE	weaponized	True
CVE-2024-47575	Fortinet Fortimanager	Fortinet Fortiweb	pre-auth RCE	weaponized	True
CVE-2024-43572	Microsoft Windows Management Console	Microsoft Windows	RCE	weaponized	True
CVE-2024-43511	Microsoft Windows Kernel TOCTOU	Microsoft Windows	unexploitable	poc	False
CVE-2024-38077	Microsoft Windows Remote Desktop Licensing Service RCE (madlicense)	Microsoft Windows	pre-auth RCE	weaponized	False
CVE-2024-38054	Microsoft Windows Kernel Streaming WOW Thunk Service Driver	Microsoft Windows	LPE	weaponized	False
CVE-2024-30088	Microsoft Windows Kernel TOCTOU Race Condition	Microsoft Windows	LPE	weaponized	True
CVE-2024-30085	Microsoft Windows Cloud Files Mini Filter Driver	Microsoft Windows	LPE	weaponized	False
CVE-2024-30078	Microsoft Windows Wi-Fi Driver	Microsoft Windows	OOB Write	poc	False
CVE-2024-21338	Microsoft Windows Kernel appid.sys Untrusted Pointer Dereference	Microsoft Windows	LPE	weaponized	True
CVE-2023-36845	Juniper Firewall/VPN (JunOS)	Juniper	pre-auth RCE	weaponized	True
CVE-2021-40466	Microsoft Windows Common Log File System Driver clfs.sys Heap Buffer Overflow	Microsoft Windows	LPE	weaponized	False
CVE-2021-31956	Microsoft Windows NTFS ntfs.sys Heap Buffer Overflow	Microsoft Windows	LPE	weaponized	True
CVE-2020-17096	Microsoft Windows NTFS ntfs.sys	Microsoft Windows	pre-auth RCE	weaponized	False