Lucene search

Windows Security Vulnerabilities

cve

CVE-2023-32084

HTTP.sys Denial of Service...

7.5CVSS

7.8AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32053

Windows Installer Elevation of Privilege...

7.8CVSS

8.5AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32044

Microsoft Message Queuing Denial of Service...

7.5CVSS

8.3AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32054

Volume Shadow Copy Elevation of Privilege...

7.3CVSS

8.2AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32057

Microsoft Message Queuing Remote Code Execution...

9.8CVSS

9.4AI Score

0.082EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32055

Active Template Library Elevation of Privilege...

6.7CVSS

7.8AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32083

Microsoft Failover Cluster Information Disclosure...

4.9CVSS

5.8AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32041

Windows Update Orchestrator Service Information Disclosure...

5.5CVSS

6.1AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32049

Windows SmartScreen Security Feature Bypass...

8.8CVSS

8.5AI Score

0.01EPSS

2023-07-11 06:15 PM

331

In Wild

cve

CVE-2023-32043

Windows Remote Desktop Security Feature Bypass...

6.8CVSS

7.9AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32045

Microsoft Message Queuing Denial of Service...

7.5CVSS

8.3AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32046

Windows MSHTML Platform Elevation of Privilege...

7.8CVSS

8.1AI Score

0.001EPSS

2023-07-11 06:15 PM

327

In Wild

cve

CVE-2023-32056

Windows Server Update Service (WSUS) Elevation of Privilege...

9.8CVSS

9.3AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32042

OLE Automation Information Disclosure...

7.5CVSS

8.2AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32050

Windows Installer Elevation of Privilege...

7CVSS

7AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-21526

Windows Netlogon Information Disclosure...

7.4CVSS

8.1AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32039

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure...

5.5CVSS

6AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-21756

Windows Win32k Elevation of Privilege...

7.8CVSS

8AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-29347

Windows Admin Center Spoofing...

6.8CVSS

7.2AI Score

0.001EPSS

2023-07-11 06:15 PM

119

cve

CVE-2023-32040

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure...

5.5CVSS

6AI Score

0.0004EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32033

Microsoft Failover Cluster Remote Code Execution...

7.2CVSS

8.2AI Score

0.003EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32035

Remote Procedure Call Runtime Denial of Service...

7.5CVSS

8.4AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32037

Windows Layer-2 Bridge Network Driver Information Disclosure...

6.5CVSS

6.8AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32038

Microsoft ODBC Driver Remote Code Execution...

8.8CVSS

9.2AI Score

0.224EPSS

2023-07-11 06:15 PM

cve

CVE-2023-32034

Remote Procedure Call Runtime Denial of Service...

7.5CVSS

8.4AI Score

0.001EPSS

2023-07-11 06:15 PM

cve

CVE-2023-34116

Improper input validation in the Zoom Desktop Client for Windows before version 5.15.0 may allow an unauthorized user to enable an escalation of privilege via network...

8.8CVSS

8.8AI Score

0.0005EPSS

2023-07-11 05:15 PM

cve

CVE-2023-24490

Users with only access to launch VDA applications can launch an unauthorized...

4.3CVSS

4.6AI Score

0.0004EPSS

2023-07-10 10:15 PM

cve

CVE-2023-30446

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253361...

7.5CVSS

7.6AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-30447

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: ...

7.5CVSS

7.6AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-30448

IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: ...

7.5CVSS

7.6AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-30449

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: ...

7.5CVSS

7.6AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-30442

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 federated server is vulnerable to a denial of service as the server may crash when using a specially crafted wrapper using certain options. IBM X-Force ID: ...

7.5CVSS

7.6AI Score

0.001EPSS

2023-07-10 04:15 PM

108

cve

CVE-2023-30431

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 db2set is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow the buffer and execute arbitrary code. IBM X-Force ID: ...

7.8CVSS

8.3AI Score

0.0004EPSS

2023-07-10 04:15 PM

107

cve

CVE-2023-30445

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: ...

7.5CVSS

7.6AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-27869

IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unchecked logger injection. By sending a specially crafted request using the named traceFile property, an attacker could...

8.8CVSS

8.8AI Score

0.002EPSS

2023-07-10 04:15 PM

cve

CVE-2023-27558

IBM Db2 on Windows 10.5, 11.1, and 11.5 may be vulnerable to a privilege escalation caused by at least one installed service using an unquoted service path. A local attacker could exploit this vulnerability to gain elevated privileges by inserting an executable file in the path of the affected...

7.8CVSS

8.1AI Score

0.0004EPSS

2023-07-10 04:15 PM

cve

CVE-2023-27868

IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unchecked class instantiation when providing plugin classes. By sending a specially crafted request using the named...

8.8CVSS

8.7AI Score

0.002EPSS

2023-07-10 04:15 PM

cve

CVE-2023-29256

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to an information disclosure due to improper privilege management when certain federation features are used. IBM X-Force ID: ...

6.5CVSS

6.9AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-27867

IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code via JNDI Injection. By sending a specially crafted request using the property clientRerouteServerListJNDIName, an attacker could exploit this...

8.8CVSS

8.6AI Score

0.002EPSS

2023-07-10 04:15 PM

cve

CVE-2023-23487

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to insufficient audit logging. IBM X-Force ID: ...

4.3CVSS

5.9AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-32351

A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.9 for Windows. An app may be able to gain elevated...

7.8CVSS

6.8AI Score

0.0004EPSS

2023-06-23 06:15 PM

450

cve

CVE-2023-32353

A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.9 for Windows. An app may be able to elevate...

7.8CVSS

6.7AI Score

0.0004EPSS

2023-06-23 06:15 PM

776

cve

CVE-2023-25515

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where unexpected untrusted data is parsed, which may lead to code execution, denial of service, escalation of privileges, data tampering, or information...

7.6CVSS

7.8AI Score

0.001EPSS

2023-06-23 06:15 PM

cve

CVE-2023-32026

Microsoft ODBC Driver for SQL Server Remote Code Execution...

7.8CVSS

8AI Score

0.001EPSS

2023-06-16 01:15 AM

313

cve

CVE-2023-32027

Microsoft ODBC Driver for SQL Server Remote Code Execution...

7.8CVSS

8AI Score

0.001EPSS

2023-06-16 01:15 AM

338

cve

CVE-2023-32025

Microsoft ODBC Driver for SQL Server Remote Code Execution...

7.8CVSS

8AI Score

0.001EPSS

2023-06-16 01:15 AM

338

cve

CVE-2023-29349

Microsoft ODBC and OLE DB Remote Code Execution...

7.8CVSS

7.8AI Score

0.001EPSS

2023-06-16 01:15 AM

371

cve

CVE-2023-29356

Microsoft ODBC Driver for SQL Server Remote Code Execution...

7.8CVSS

8AI Score

0.001EPSS

2023-06-16 01:15 AM

316

cve

CVE-2023-24937

Windows CryptoAPI Denial of Service...

6.5CVSS

6.9AI Score

0.001EPSS

2023-06-14 03:15 AM

cve

CVE-2023-32015

Windows Pragmatic General Multicast (PGM) Remote Code Execution...

9.8CVSS

9.5AI Score

0.021EPSS

2023-06-14 12:15 AM

Total number of security vulnerabilities4891