Windows CNG Key Isolation Service
by Microsoft
CVEs (11)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-28229 | 0.13 | — | 0.02 | KEV | Apr 11, 2023 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | ||
| CVE-2022-41125 | 0.12 | — | 0.03 | KEV | Nov 9, 2022 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | ||
| CVE-2024-30031 | 0.00 | — | 0.00 | May 14, 2024 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | |||
| CVE-2023-35340 | 0.00 | — | 0.00 | Jul 11, 2023 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | |||
| CVE-2020-1384 | 0.00 | — | 0.01 | Jul 14, 2020 | An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359. | |||
| CVE-2020-0756 | 0.00 | — | 0.02 | Feb 11, 2020 | An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The… | |||
| CVE-2020-0755 | 0.00 | — | 0.02 | Feb 11, 2020 | An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The… | |||
| CVE-2020-0748 | 0.00 | — | 0.02 | Feb 11, 2020 | An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The… | |||
| CVE-2020-0677 | 0.00 | — | 0.02 | Feb 11, 2020 | An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The… | |||
| CVE-2020-0675 | 0.00 | — | 0.02 | Feb 11, 2020 | An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The… | |||
| CVE-2020-0676 | 0.00 | — | 0.02 | Feb 11, 2020 | An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The… |
- risk 0.13cvss —epss 0.02
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
- risk 0.12cvss —epss 0.03
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
- CVE-2024-30031May 14, 2024risk 0.00cvss —epss 0.00
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
- CVE-2023-35340Jul 11, 2023risk 0.00cvss —epss 0.00
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
- CVE-2020-1384Jul 14, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359.
- CVE-2020-0756Feb 11, 2020risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The…
- CVE-2020-0755Feb 11, 2020risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The…
- CVE-2020-0748Feb 11, 2020risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The…
- CVE-2020-0677Feb 11, 2020risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The…
- CVE-2020-0675Feb 11, 2020risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The…
- CVE-2020-0676Feb 11, 2020risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The…