CWE-591
AllowedSensitive Data Storage in Improperly Locked Memory
Abstraction: Variant · Status: Draft
The product stores sensitive data in memory that is not locked, or that has been incorrectly locked, which might cause the memory to be written to swap files on disk by the virtual memory manager. This can make the data more accessible to external actors.
106 vulnerabilities reference this CWE, most recent first.
GHSA-9MW3-PVX5-Q297
Vulnerability from github – Published: 2024-02-13 18:38 – Updated: 2024-02-13 18:38Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
{
"affected": [],
"aliases": [
"CVE-2024-21405"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-02-13T18:15:59Z",
"severity": "HIGH"
},
"details": "Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability",
"id": "GHSA-9mw3-pvx5-q297",
"modified": "2024-02-13T18:38:24Z",
"published": "2024-02-13T18:38:24Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21405"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21405"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-CWPX-VH5M-58GX
Vulnerability from github – Published: 2025-01-14 18:32 – Updated: 2025-01-14 18:32Windows Remote Desktop Services Remote Code Execution Vulnerability
{
"affected": [],
"aliases": [
"CVE-2025-21309"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-01-14T18:15:54Z",
"severity": "HIGH"
},
"details": "Windows Remote Desktop Services Remote Code Execution Vulnerability",
"id": "GHSA-cwpx-vh5m-58gx",
"modified": "2025-01-14T18:32:04Z",
"published": "2025-01-14T18:32:04Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-21309"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21309"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-F2VC-G638-2WM6
Vulnerability from github – Published: 2024-11-12 18:30 – Updated: 2024-11-12 18:30Microsoft Virtual Hard Disk (VHDX) Denial of Service Vulnerability
{
"affected": [],
"aliases": [
"CVE-2024-38264"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-11-12T18:15:21Z",
"severity": "MODERATE"
},
"details": "Microsoft Virtual Hard Disk (VHDX) Denial of Service Vulnerability",
"id": "GHSA-f2vc-g638-2wm6",
"modified": "2024-11-12T18:30:58Z",
"published": "2024-11-12T18:30:58Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38264"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38264"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-H9R9-JMQ5-X5WH
Vulnerability from github – Published: 2025-04-08 18:34 – Updated: 2025-04-08 18:34Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
{
"affected": [],
"aliases": [
"CVE-2025-26686"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-04-08T18:15:53Z",
"severity": "HIGH"
},
"details": "Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.",
"id": "GHSA-h9r9-jmq5-x5wh",
"modified": "2025-04-08T18:34:49Z",
"published": "2025-04-08T18:34:49Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26686"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26686"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-HRR2-23M9-VWG9
Vulnerability from github – Published: 2024-05-06 00:30 – Updated: 2024-07-03 18:38FileCodeBox 2.0 stores a OneDrive password and AWS key in a cleartext env file.
{
"affected": [],
"aliases": [
"CVE-2024-34525"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-05-06T00:15:10Z",
"severity": "MODERATE"
},
"details": "FileCodeBox 2.0 stores a OneDrive password and AWS key in a cleartext env file.",
"id": "GHSA-hrr2-23m9-vwg9",
"modified": "2024-07-03T18:38:58Z",
"published": "2024-05-06T00:30:52Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34525"
},
{
"type": "WEB",
"url": "https://github.com/vastsa/FileCodeBox/issues/133"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"type": "CVSS_V3"
}
]
}
GHSA-HVG6-QCHW-PMPH
Vulnerability from github – Published: 2024-12-12 03:33 – Updated: 2024-12-12 03:33Windows Domain Name Service Remote Code Execution Vulnerability
{
"affected": [],
"aliases": [
"CVE-2024-49091"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-12-12T02:04:34Z",
"severity": "HIGH"
},
"details": "Windows Domain Name Service Remote Code Execution Vulnerability",
"id": "GHSA-hvg6-qchw-pmph",
"modified": "2024-12-12T03:33:05Z",
"published": "2024-12-12T03:33:05Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-49091"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49091"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-JJCH-QG3J-855W
Vulnerability from github – Published: 2024-04-09 18:30 – Updated: 2024-04-09 18:30Windows Telephony Server Elevation of Privilege Vulnerability
{
"affected": [],
"aliases": [
"CVE-2024-26242"
],
"database_specific": {
"cwe_ids": [
"CWE-362",
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-04-09T17:15:45Z",
"severity": "HIGH"
},
"details": "Windows Telephony Server Elevation of Privilege Vulnerability",
"id": "GHSA-jjch-qg3j-855w",
"modified": "2024-04-09T18:30:26Z",
"published": "2024-04-09T18:30:26Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26242"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26242"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-JJWR-7VQH-8GF4
Vulnerability from github – Published: 2025-04-08 18:34 – Updated: 2025-04-08 18:34Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally.
{
"affected": [],
"aliases": [
"CVE-2025-27475"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-04-08T18:15:57Z",
"severity": "HIGH"
},
"details": "Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally.",
"id": "GHSA-jjwr-7vqh-8gf4",
"modified": "2025-04-08T18:34:50Z",
"published": "2025-04-08T18:34:50Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27475"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27475"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-PGQ6-CMG5-GHF7
Vulnerability from github – Published: 2025-03-11 18:32 – Updated: 2025-03-11 18:32Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.
{
"affected": [],
"aliases": [
"CVE-2025-24045"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-03-11T17:16:26Z",
"severity": "HIGH"
},
"details": "Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.",
"id": "GHSA-pgq6-cmg5-ghf7",
"modified": "2025-03-11T18:32:16Z",
"published": "2025-03-11T18:32:16Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24045"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24045"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-PXWM-R9VQ-X573
Vulnerability from github – Published: 2024-09-10 18:30 – Updated: 2024-09-10 18:30Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
{
"affected": [],
"aliases": [
"CVE-2024-38263"
],
"database_specific": {
"cwe_ids": [
"CWE-591"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-09-10T17:15:32Z",
"severity": "HIGH"
},
"details": "Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability",
"id": "GHSA-pxwm-r9vq-x573",
"modified": "2024-09-10T18:30:46Z",
"published": "2024-09-10T18:30:46Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38263"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38263"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
Mitigation
Identify data that needs to be protected from swapping and choose platform-appropriate protection mechanisms.
Mitigation
Check return values to ensure locking operations are successful.
No CAPEC attack patterns related to this CWE.