PT-2023-2750 · Microsoft · Malware Protection Engine +1

Name of the Vulnerable Software and Affected Versions: Microsoft Malware Protection Engine MPE affected versions not specified Microsoft Defender affected versions not specified Description: The issue is related to a lack of protection for service data in the Microsoft Malware Protection Engine...

Security Updates for Windows Defender (April 2023)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 1.1.20200.4. It is, therefore, affected by a denial of service vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's...

KLA48556 PE vulnerability in Microsoft System Center

An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-23389 Related products Microsoft-Defender-for-Endpoint-for-Windows CVE list CVE-2023-23389 high KB list Solution Install...

PT-2023-1779 · Microsoft · Defender

Name of the Vulnerable Software and Affected Versions: Microsoft Defender affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Microsoft Defender. It is caused by synchronization errors when using a shared resource in the Microsoft Malwar...

PT-2022-5633 · Microsoft · Malware Protection Engine +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Defender affected versions not specified Description: The issue is related to the Microsoft Malware Protection Engine MPE and is associated with insufficient access control. Exploitation of this issue may allow an attacker t...

KLA20003 PE vulnerability in Microsoft System Center

An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-37971 Related products Microsoft-Defender-for-Endpoint-for-Windows CVE list CVE-2022-37971 high KB list Solution Install...

VulnCheck KEV: CVE-2017-8540

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft...

PT-2021-5003 · Microsoft · Malware Protection Engine

Name of the Vulnerable Software and Affected Versions: Microsoft Malware Protection Engine MPE affected versions not specified Description: The issue is related to errors in code generation management within the Microsoft Malware Protection Engine MPE. Exploitation of this issue may allow an...

Microsoft Windows Defender 代码注入漏洞

Microsoft Windows Defender is a suite of antivirus software that comes with Windows systems from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Windows Defender. The vulnerability arises from a network system or product not properly filtering specific elements of...

Vulnerability fixed in Microsoft Malware Protection Engine

Microsoft has fixed a vulnerability in the Microsoft Malware Protection Engine as used by Windows Defender and Microsoft System Center Endpoint Protection. The vulnerabilities allow a malicious person to execute arbitrary code. The following table lists the vulnerabilities...

Microsoft Windows Defender Multiple RCE Vulnerabilities (Jul 2021)

This host is missing a critical security update according to Microsoft Security Updates released for Microsoft Windows Defender Protection Engine dated 13-07-2021. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

Microsoft Windows Defender 权限许可和访问控制问题漏洞

Microsoft Windows Defender is a suite of antivirus software that comes with Windows systems from Microsoft Corporation USA. A vulnerability exists in Microsoft Windows Defender with privilege license and access control issues. The following products and versions are affected: Microsoft Malware...

Vulnerabilities Fixed in Microsoft Malware Protection Engine

Microsoft has fixed vulnerabilities in the Microsoft Malware Protection Engine as used by Windows Defender and Microsoft System Center Endpoint Protection. A local malicious agent could vulnerabilities potentially exploit them to execute code under elevated privileges execute code. Windows...

Microsoft Windows Defender 代码注入漏洞

Microsoft Windows Defender is a suite of antivirus software that comes with Windows systems from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Windows Defender. The following products and versions are affected: Microsoft Malware Protection Engine...

Microsoft Windows Defender 代码注入漏洞

Microsoft Windows Defender is a suite of antivirus software that comes with Windows systems from Microsoft USA. A code injection vulnerability exists in microsoft Windows Defender. The following products and versions are affected: Microsoft Malware Protection Engine...

KLA12225 Multiple vulnerabilities in Microsoft System Center

Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-34522 CVE-2021-34464 Related products Windows-Defender CVE list CVE-2021-34522 critical CVE-2021-34464 critical KB list Solution...

Security Update for Windows Defender (June 2021)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is equal or prior to 1.1.17800.5. It is, therefore, affected by multiple vulnerabilities. - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and...

Windows Defender 输入验证错误漏洞

Microsoft Defender is a threat protection software from Microsoft USA. A security vulnerability exists in Windows Defender. The following products and versions are affected: Microsoft Malware Protection Engine, Microsoft Malware Protection Engine, Microsoft Malware Protection Engine, Microsoft...

Vulnerabilities Fixed in Microsoft Malware Protection Engine

Microsoft has fixed vulnerabilities in the Microsoft Malware Protection Engine as used by Windows Defender and Microsoft System Center Endpoint Protection. A local malicious agent could vulnerabilities potentially exploit them to cause a denial-of-service cause or to execute code under elevated...

Security Update for Forefront Endpoint Protection (June 2021)

The Malware Protection Engine version of Forefront Endpoint Protection installed on the remote Windows host is equal or prior to 1.1.17800.5. It is, therefore, affected by multiple vulnerabilities. - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and...