CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Cvelist•added 2026/04/14 4:57 p.m.•20 views

CVE-2026-33096 HTTP.sys Denial of Service Vulnerability

...

7.5CVSS0.00189EPSS

Exploits0References1

Cvelist•added 2026/02/10 5:51 p.m.•22 views

CVE-2026-21250 Windows HTTP.sys Elevation of Privilege Vulnerability

...

7.8CVSS0.00655EPSS

Exploits3References1

CNNVD•added 2026/02/10 12:0 a.m.•3 views

Microsoft HTTP.sys 安全漏洞

Microsoft HTTP.SYS is an HTTP application protocol developed by Microsoft Corporation. There are security vulnerabilities in Microsoft HTTP.SYS. The following products and versions are affected: Windows 11 Version 26H1 for ARM64-based Systems, Windows 11 Version 26H1 for x64-based Systems, Window...

7.8CVSS5.8AI score0.00039EPSS

Exploits0References1

Kaspersky•added 2026/02/10 12:0 a.m.•5 views

KLA90878 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface, obtain sensitive information, cause denial of service. Below is a...

8.8CVSS6.5AI score0.2798EPSS

Exploits9References38

CVE•added 2025/09/09 5:1 p.m.•26 views

CVE-2025-53805

CVE-2025-53805 affects Windows Internet Information Services (IIS) via an out-of-bounds read in HTTP.sys, enabling an unauthenticated attacker to deny service over the network. The vulnerability is categorized as Denial-of-Service with network attack vector and high severity (CVSS 7.5, NETWORK/NO...

7.5CVSS6.3AI score0.00934EPSS

Exploits0References1Affected Software6

Microsoft CVE•added 2025/09/09 7:0 a.m.•3 views

HTTP.sys Denial of Service Vulnerability

Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.00934EPSS

Exploits0

CVE•added 2024/05/02 9:43 a.m.•53 views

CVE-2024-3955

CVE-2024-3955 affects CraftBeerPi 4 up to 4.4.1.a1. The issue arises when the URL parameter logtime in the downloadlog endpoint is passed from cbpi/http_endpoints/http_system.py to os.system in cbpi/controller/system_controller.py without validation, allowing arbitrary code execution. Multiple co...

9.8CVSS7.5AI score0.00463EPSS

Exploits0References3

ATTACKERKB•added 2023/07/11 6:15 p.m.•0 views

CVE-2023-32084

HTTP.sys Denial of Service Vulnerability...

7.5CVSS5.8AI score0.05433EPSS

Exploits0References2Affected Software6

CNNVD•added 2023/07/11 12:0 a.m.•4 views

Microsoft HTTP.sys 安全漏洞

Microsoft HTTP.sys is an application protocol of Microsoft Corporation USA.HTTP application protocol. A security vulnerability exists in Microsoft HTTP.sys. An attacker could exploit this vulnerability to cause a denial of service on the system. The following products and versions are affected:...

7.5CVSS7.8AI score0.00714EPSS

Exploits0References3

OSV•added 2023/05/31 7:15 p.m.•1 views

CVE-2022-35748

HTTP.sys Denial of Service Vulnerability...

7.5CVSS5.8AI score0.47414EPSS

Exploits0References1

OSV•added 2022/11/09 10:15 p.m.•1 views

CVE-2022-41057

Windows HTTP.sys Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.01136EPSS

Exploits0References1

CNNVD•added 2021/10/12 12:0 a.m.•4 views

Microsoft Windows 权限许可和访问控制问题漏洞

Microsoft HTTP.sys is an application protocol from Microsoft Corporation USA.HTTP Application Protocol. Microsoft HTTP.sys is vulnerable to privilege permission and access control issues. The following products and versions are affected: Windows Server version 20H2 Server Core Installation, Windo...

7.8CVSS7AI score0.00253EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by