CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.5CVSS5.8AI score0.19955EPSS

CVE-2017-11816

The Microsoft Windows Graphics Device Interface GDI on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability in the wa...

5.5CVSS5.8AI score0.02322EPSS

CVE-2017-11784

The Microsoft Windows Kernel component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, allows an information disclosure vulnerability when it improperly handles objects in memory, aka "Windows Kerne...

Exploits2References3

4.3CVSS5.8AI score0.0556EPSS

CVE-2017-11790

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how...

5.5CVSS5.8AI score0.02322EPSS

CVE-2017-11765

The Microsoft Windows Kernel component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, allows an information disclosure vulnerability when it improperly...

7.5CVSS5.8AI score0.08299EPSS

CVE-2017-11772

The Microsoft Windows Search component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure when it fails to properly handle...

CNVD•added 2017/10/11 12:0 a.m.•2 views

Microsoft Windows Graphics Component Local Information Disclosure Vulnerability (CNVD-2017-30910)

Microsoft Windows is the popular computer operating system. An information disclosure vulnerability exists in the implementation of Windows Graphics when it does not properly handle memory objects, which can be successfully exploited to allow an attacker to obtain sensitive information...

5.5CVSS6.6AI score0.02384EPSS

Exploits0References1

CNVD•added 2017/10/11 12:0 a.m.•2 views

Microsoft Office Outlook Security Bypass Vulnerability

Microsoft Office is a suite of office software based on the Windows operating system developed by Microsoft. A security bypass vulnerability exists in the implementation of Microsoft Outlook when it does not properly handle in-memory objects, where an attacker could execute arbitrary commands via...

7.8CVSS7.7AI score0.59893EPSS

Exploits2References1

CNVD•added 2017/10/11 12:0 a.m.•2 views

Microsoft Office Remote Code Execution Vulnerability (CNVD-2017-30582)

Microsoft Office is a suite of office software based on the Windows operating system developed by Microsoft. A remote code execution vulnerability exists in the implementation of Microsoft Office when it does not properly handle memory objects, which could allow an attacker to run arbitrary code ...

9.3CVSS7.9AI score0.2207EPSS

Exploits0References1

Microsoft CVE•added 2017/10/10 7:0 a.m.•37 views

Microsoft Office Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.81627EPSS

Exploits3

Microsoft CVE•added 2017/10/10 7:0 a.m.•32 views

Internet Explorer Information Disclosure Vulnerability

An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack scenario, an...

4.3CVSS1.3AI score0.0556EPSS

Exploits0

Tenable Nessus•added 2017/10/10 12:0 a.m.•64 views

Security Update for Microsoft Office (October 2017) (macOS)

The Microsoft Office 2016 application installed on the remote macOS or Mac OS X host is missing a security update. It is, therefore, affected by a remote code execution vulnerability that exists in Microsoft Office software when it fails to properly handle objects in memory. An attacker who...

9.3CVSS8.3AI score0.2207EPSS

OSV•added 2017/09/13 1:29 a.m.•2 views

CVE-2017-8719

The Windows kernel component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability when it improperly handles objec...

4.7CVSS5.8AI score0.03487EPSS

4.7CVSS5.8AI score0.03677EPSS

CVE-2017-8708

OSV•added 2017/09/13 1:29 a.m.•2 views

CVE-2017-8709

4.7CVSS5.8AI score0.03487EPSS

5.5CVSS5.8AI score0.0423EPSS

CVE-2017-8687

5.5CVSS5.8AI score0.0423EPSS

CVE-2017-8681

5.5CVSS5.8AI score0.03661EPSS

CVE-2017-8679

NVD•added 2017/09/13 1:29 a.m.•27 views

CVE-2017-8567

A remote code execution vulnerability exists in Microsoft Excel for Mac 2011 when it fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution"...

9.3CVSS8AI score0.19589EPSS

OSV•added 2017/09/13 1:29 a.m.•2 views

CVE-2017-8678

5.5CVSS5.8AI score0.0423EPSS