CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

CNNVD•added 2025/09/09 12:0 a.m.•2 views

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft USA. A security vulnerability exists in Microsoft Windows. An attacker could exploit this vulnerability to cause a denial of service. The following products and versions are affected: Windows Server...

7CVSS6.2AI score0.00078EPSS

Exploits0References1

OSV•added 2022/05/13 1:18 a.m.•25 views

GHSA-H9WF-MPVF-9JQG ChakraCore RCE Vulnerability

Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834,...

7.5CVSS6.8AI score0.79299EPSS

Exploits15References7

CNNVD•added 2021/03/09 12:0 a.m.•4 views

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in the Windows Container Execution Agent. The following products and editions are affected:Windows 10 Version 1809 for 32-bit...

8.8CVSS7.9AI score0.01635EPSS

Exploits1References4

CNNVD•added 2021/02/09 12:0 a.m.•3 views

Microsoft Windows Fax Service Security Vulnerability

Microsoft Windows Fax Service is a functional component service from Microsoft Corporation USA. It is used to specify fax settings, including how to send, receive, view, and print. A security vulnerability exists in Microsoft Windows Fax Service. The following products and editions are affected:...

9.8CVSS7.4AI score0.11069EPSS

Exploits0References4

Microsoft KB•added 2020/01/27 12:0 a.m.•4 views

December 10, 2019-KB4532997 Cumulative Update for .NET Framework 4.8 for Windows 10 version 1607 and Windows Server 2016

December 10, 2019-KB4532997 Cumulative Update for .NET Framework 4.8 for Windows 10 version 1607 and Windows Server 2016 Release Date: December 10, 2019 Version: .NET Framework 4.8 The December 10, 2019 update for Windows 10 version 1607 and Windows Server 2016 includes cumulative reliability...

6.8AI score

Exploits0

NVD•added 2018/03/14 5:29 p.m.•32 views

CVE-2018-0902

The Cryptography Next Generation CNG kernel-mode driver cng.sys in Windows 10 Gold, 1511, 1607, 1703, and 1709. Windows Server 2016 and Windows Server, version 1709 allows a security feature bypass vulnerability due to the way the kernel-mode driver validates and enforces impersonation levels, ak...

7.8CVSS7.5AI score0.00487EPSS

Exploits0References3

Cvelist•added 2018/02/15 2:0 a.m.•18 views

CVE-2018-0771

Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows a security feature bypass, due to how Edge handles different-origin requests, aka "Microsoft Edge Security Feature Bypass"...

5.3AI score0.11213EPSS

Exploits0References3

OSV•added 2018/01/04 2:29 p.m.•24 views

CVE-2018-0762

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in th...

7.5CVSS7.6AI score0.3205EPSS

Exploits19References4

Prion•added 2017/11/15 3:29 a.m.•22 views

Memory corruption

Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID ...

7.6CVSS7.3AI score0.80398EPSS

Exploits19References4

Cvelist•added 2017/11/15 3:0 a.m.•24 views

CVE-2017-11836

ChakraCore, and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption...

7.5AI score0.20533EPSS

Exploits17References3

OSV•added 2017/10/13 1:29 p.m.•18 views

CVE-2017-11799

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.5CVSS7.5AI score0.78672EPSS

Exploits3References4

Cvelist•added 2017/09/13 1:0 a.m.•24 views

CVE-2017-8723

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to trick a user into loading a page containing malicious content, due to the way that the Edge Content Security Policy CSP validates certain specially crafted documents, aka "Microsoft Edge...

5.2AI score0.05818EPSS

Exploits0References3

NVD•added 2017/08/08 9:29 p.m.•21 views

CVE-2017-8633

Windows Error Reporting WER in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability, aka "Windows Error Reporting Elevation of...

8.5CVSS7.7AI score0.1398EPSS

Exploits0References3

Prion•added 2017/07/11 9:29 p.m.•9 views

Privilege escalation

Microsoft Windows 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Windows Input Method Editor IME improperly handling parameters in a method of a DCOM class, aka "Windows IME Elevation of Privilege Vulnerability"...

4.4CVSS6.9AI score0.00554EPSS

Exploits0References3Affected Software1