Security Update for Windows Defender (May 2026) (CVE-2026-41091)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 1.1.26040.8. It is, therefore, affected by a privilege escalation vulnerability: - Improper link resolution before file access 'link following' in Microsoft Defender allows an...

📄 Microsoft Malware Protection Engine Type Confusion

Microsoft Malware Protection Engine type confusion vulnerability proof of concept exploit for an older vulnerability from 2017. ================================================================================================================================== | Title : Microsoft Malware Protection...

EUVD-2017-17485

Malware in sbrugna...

EUVD-2017-17487

Malware in sbrugna...

EUVD-2011-0063

Malware in sbrugna...

CVE-2013-1346

mpengine.dll in Microsoft Malware Protection Engine before 1.1.9506.0 on x64 platforms allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

Security Updates for Windows Defender (November 2023)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 4.18.23100.2009. It is, therefore, affected by a privilege escalation vulnerability. An authenticated attacker can exploit this to gain elevated privileges. Note that Nessus has no...

Security Updates for Windows Defender (July 2023)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 1.1.23050.3. It is, therefore, affected by an elevation of privilege vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's...

KLA50772 PE vulnerability in Microsoft System Center

An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-33156 Related products Windows-Defender CVE list CVE-2023-33156 high KB list Solution Install necessary updates from the KB...

PT-2023-2750 · Microsoft · Malware Protection Engine +1

Name of the Vulnerable Software and Affected Versions: Microsoft Malware Protection Engine MPE affected versions not specified Microsoft Defender affected versions not specified Description: The issue is related to a lack of protection for service data in the Microsoft Malware Protection Engine...

Security Updates for Windows Defender (April 2023)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 1.1.20200.4. It is, therefore, affected by a denial of service vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's...

KLA48556 PE vulnerability in Microsoft System Center

An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-23389 Related products Microsoft-Defender-for-Endpoint-for-Windows CVE list CVE-2023-23389 high KB list Solution Install...

PT-2023-1779 · Microsoft · Defender

Name of the Vulnerable Software and Affected Versions: Microsoft Defender affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Microsoft Defender. It is caused by synchronization errors when using a shared resource in the Microsoft Malwar...

PT-2022-5633 · Microsoft · Malware Protection Engine +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Defender affected versions not specified Description: The issue is related to the Microsoft Malware Protection Engine MPE and is associated with insufficient access control. Exploitation of this issue may allow an attacker t...

KLA20003 PE vulnerability in Microsoft System Center

An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-37971 Related products Microsoft-Defender-for-Endpoint-for-Windows CVE list CVE-2022-37971 high KB list Solution Install...

The vulnerability of the Microsoft Malware Protection Engine’s protection module against malicious programs arises from the execution of operations beyond the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerability of the Microsoft Malware Protection Engine relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...

VulnCheck KEV: CVE-2017-8540

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft...

The vulnerability of the Microsoft Malware Protection Engine’s antivirus kernel, related to errors in code generation, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Malware Protection Engine’s antivirus kernel is related to errors in code generation management. Exploiting this vulnerability can allow a hacker to execute arbitrary code...

PT-2021-5003 · Microsoft · Malware Protection Engine

Name of the Vulnerable Software and Affected Versions: Microsoft Malware Protection Engine MPE affected versions not specified Description: The issue is related to errors in code generation management within the Microsoft Malware Protection Engine MPE. Exploitation of this issue may allow an...

Microsoft Windows Defender 代码注入漏洞

Microsoft Windows Defender is a suite of antivirus software that comes with Windows systems from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Windows Defender. The vulnerability arises from a network system or product not properly filtering specific elements of...