Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-591

CWE-591

Sensitive Data Storage in Improperly Locked Memory

Parent: CWE-413 - Improper Resource Locking

The product stores sensitive data in memory that is not locked, or that has been incorrectly locked, which might cause the memory to be written to swap files on disk by the virtual memory manager. This can make the data more accessible to external actors.

77 vulnerabilities with CWE-591

CVE-2024-49095 HIGH

Windows PrintWorkflowUserSvc - Elevation of Privilege via Race Condition

CVE-2024-49091 HIGH

Microsoft Windows Server 2012 - Remote Code Execution

CVE-2024-43633 MEDIUM

Windows 11 22H2 < 10.0.22621.4460, 23H2 < 10.0.22631.4460, 24H2 < 10.0.26100.2314 - Denial of Service

CVE-2024-38264 MEDIUM

Windows 11/Server 2022/2025 DoS in Virtual Hard Disk

CVE-2024-43563 HIGH

Windows Ancillary Function Driver - Privilege Escalation

CVE-2024-38262 HIGH

Windows Remote Desktop Licensing Service - Remote Code Execution

CVE-2024-38263 HIGH

Windows Remote Desktop Licensing Service - Remote Code Execution

CVE-2024-38137 HIGH

Windows Resource Manager PSM Service Extension - Privilege Escalation

CVE-2024-38131 HIGH

Remote Desktop Clipboard Virtual Channel - Remote Code Execution

CVE-2024-38106 HIGH KEV

Windows Kernel - Privilege Escalation

CVE-2024-34525 MEDIUM

FileCodeBox 2.0 - Sensitive Data Storage in Cleartext Environment File

CVE-2024-26242 HIGH

Windows Telephony Server - Elevation of Privilege via Race Condition

CVE-2024-26236 HIGH

Windows Server 2022 23H2 < 10.0.25398.830 - Elevation of Privilege via Windows Update Stack Race Condition

CVE-2024-21446 HIGH

Windows NTFS - Elevation of Privilege via Sensitive Data Storage in Improperly Locked Memory

CVE-2024-21405 HIGH

Microsoft MSMQ - Privilege Escalation

CVE-2024-21355 HIGH

Microsoft MSMQ - Privilege Escalation

CVE-2024-20686 HIGH

Windows Server 2022 23H2 - Win32k Elevation of Privilege

CVE-2023-36005 HIGH

Windows Telephony Server - Privilege Escalation

CVE-2023-36403 HIGH

Windows Kernel - Privilege Escalation

CVE-2023-38159 HIGH

Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Elevation of Privilege via Graphics Component Race Condition

CVE-2023-35362 HIGH

Windows Clip Service - Elevation of Privilege via Race Condition

CVE-2023-35360 HIGH

Windows Kernel - Elevation of Privilege via Race Condition

CVE-2023-35346 MEDIUM

Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution via DNS Server Race Condition

CVE-2023-35345 MEDIUM

Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution

CVE-2023-35344 MEDIUM

Windows Server 2008, 2012, 2016, 2019, 2022 - Remote Code Execution

Previous Page 2 of 4 Next

Details

Vulnerabilities 77

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy