CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2019/06/12 2:29 p.m.•4 views

CVE-2019-1044

A security feature bypass vulnerability exists when Windows Secure Kernel Mode fails to properly handle objects in memory. To exploit the vulnerability, a locally-authenticated attacker could attempt to run a specially crafted application on a targeted system. An attacker who successfully exploit...

5.3CVSS7.1AI score0.01014EPSS

NVD•added 2019/06/12 2:29 p.m.•30 views

CVE-2019-1044

7.8CVSS7.4AI score0.01014EPSS

CVE•added 2019/06/12 1:49 p.m.•141 views

CVE-2019-1044

CVE-2019-1044 is a Windows security feature bypass in Windows Secure Kernel Mode where improper handling of memory objects can allow a locally-authenticated attacker to violate virtual trust levels (VTL). Affects Windows client/server releases referenced in the advisory (e.g., Windows 10/Server 2...

7.8CVSS6.1AI score0.01014EPSS

Exploits0References2Affected Software2

Microsoft CVE•added 2019/06/11 7:0 a.m.•33 views

Windows Secure Kernel Mode Security Feature Bypass Vulnerability

7.8CVSS2AI score0.01014EPSS

Kaspersky•added 2019/06/11 12:0 a.m.•65 views

KLA11493 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of...

9.3CVSS9.5AI score0.48488EPSS

Exploits18References70

OSV•added 2017/06/15 1:29 a.m.•4 views

CVE-2017-8494

Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow a locally-authenticated attacker to run a specially crafted application on a targeted system when Windows Secure Kernel Mode fails to properly handle objects in memory, aka "Windows Elevation of Privilege Vulnerability...

7.3CVSS5.8AI score0.01947EPSS

NVD•added 2017/06/15 1:29 a.m.•14 views

CVE-2017-8494

7.3CVSS5.8AI score0.01947EPSS

Cvelist•added 2017/06/15 1:0 a.m.•22 views

CVE-2017-8494

5.6AI score0.01947EPSS

OpenVAS•added 2017/06/14 12:0 a.m.•563 views

Microsoft Windows Multiple Vulnerabilities (KB4022715)

This host is missing a critical security update according to Microsoft KB4022715 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.5AI score0.90026EPSS

Exploits94References72

Microsoft CVE•added 2017/06/13 7:0 a.m.•39 views

Windows Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows Secure Kernel Mode fails to properly handle objects in memory. To exploit the vulnerability, a locally-authenticated attacker could attempt to run a specially crafted application on a targeted system. An attacker who successfully exploit...

7.3CVSS3.2AI score0.14265EPSS

OSV•added 2016/12/20 6:59 a.m.•2 views

CVE-2016-7271

The Secure Kernel Mode implementation in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to bypass the virtual trust level VTL protection mechanism via a crafted application, aka "Secure Kernel Mode Elevation of Privilege Vulnerability."...

7.8CVSS5.8AI score0.01365EPSS

Prion•added 2016/12/20 6:59 a.m.•16 views

Privilege escalation

4.6CVSS6.6AI score0.01365EPSS

Exploits0References3Affected Software1

NVD•added 2016/12/20 6:59 a.m.•19 views

CVE-2016-7271

7.8CVSS7.3AI score0.01365EPSS

CVE•added 2016/12/20 5:54 a.m.•67 views

CVE-2016-7271

The CVE-2016-7271 issue affects Microsoft Windows 10 (Gold, 1511, 1607) and Windows Server 2016, where Windows Secure Kernel Mode could be abused to bypass the Virtual Trust Level (VTL). The root cause is improper handling of memory objects in Secure Kernel Mode, allowing a locally authenticated ...

7.8CVSS7.2AI score0.01365EPSS

Exploits0References3Affected Software2

Cvelist•added 2016/12/20 5:54 a.m.•33 views

CVE-2016-7271

7.3AI score0.01365EPSS

CNVD•added 2016/12/14 12:0 a.m.•2 views

Microsoft Windows Local Elevation of Privilege Vulnerability (CNVD-2016-12469)

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in Microsoft Windows 10 and Windows Server 2016 versions due to Windows Secure Kernel Mode failing to properly handle memory objects. An attacker can explo...

7.8CVSS7AI score0.01365EPSS

Exploits0References1

OpenVAS•added 2016/12/14 12:0 a.m.•21 views

Microsoft Windows Secure Kernel Mode Privilege Elevation Vulnerability (3205642)

This host is missing an important security update according to Microsoft Bulletin MS16-150. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.8CVSS7.4AI score0.01365EPSS

Exploits0References4

Microsoft CVE•added 2016/12/13 8:0 a.m.•27 views

Windows Elevation of Privilege Vulnerability

7.8CVSS3.2AI score0.01365EPSS

Microsoft KB•added 2016/12/13 12:0 a.m.•41 views

MS16-150: Security update for secure kernel mode: December 13, 2016

Resolves a vulnerability in Windows that could allow elevation of privilege when Windows Secure Kernel Mode improperly handles objects in memory.SummaryThis security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege when Windows Secure Kern...

7.8CVSS7.3AI score0.01365EPSS