Windows Local Security Authority
by Microsoft
CVEs (9)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-35759 | 0.02 | — | 0.02 | May 31, 2023 | Windows Local Security Authority (LSA) Denial of Service Vulnerability | |||
| CVE-2025-33057 | 0.01 | — | 0.01 | Jun 10, 2025 | Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network. | |||
| CVE-2025-21191 | 0.00 | — | 0.00 | Apr 8, 2025 | Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2025-27478 | 0.00 | — | 0.00 | Apr 8, 2025 | Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2024-43522 | 0.00 | — | 0.00 | Oct 8, 2024 | Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability | |||
| CVE-2023-21524 | 0.00 | — | 0.00 | Jan 10, 2023 | Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability | |||
| CVE-2022-38016 | 0.00 | — | 0.00 | Oct 11, 2022 | Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability | |||
| CVE-2022-34706 | 0.00 | — | 0.00 | Aug 9, 2022 | Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability | |||
| CVE-2022-24496 | 0.00 | — | 0.01 | Apr 15, 2022 | Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability |
- CVE-2022-35759May 31, 2023risk 0.02cvss —epss 0.02
Windows Local Security Authority (LSA) Denial of Service Vulnerability
- CVE-2025-33057Jun 10, 2025risk 0.01cvss —epss 0.01
Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.
- CVE-2025-21191Apr 8, 2025risk 0.00cvss —epss 0.00
Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
- CVE-2025-27478Apr 8, 2025risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
- CVE-2024-43522Oct 8, 2024risk 0.00cvss —epss 0.00
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
- CVE-2023-21524Jan 10, 2023risk 0.00cvss —epss 0.00
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
- CVE-2022-38016Oct 11, 2022risk 0.00cvss —epss 0.00
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
- CVE-2022-34706Aug 9, 2022risk 0.00cvss —epss 0.00
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
- CVE-2022-24496Apr 15, 2022risk 0.00cvss —epss 0.01
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability