Mscve - Most Viewed Vulnerabilities List | Vulners.com

MscveMost viewed

Recent Most viewed

21621 matches found

Microsoft CVE•added 2022/01/21 8:0 a.m.•3997 views

WinVerifyTrust Signature Validation Vulnerability

Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the forma...

8.8CVSS7.5AI score0.44647EPSS

Microsoft CVE•added 2025/01/14 8:0 a.m.•2540 views

Microsoft Outlook Remote Code Execution Vulnerability

...

7.8CVSS7.1AI score0.00732EPSS

Microsoft CVE•added 2020/07/29 7:0 a.m.•2376 views

Microsoft Guidance for Addressing Security Feature Bypass in GRUB

Executive Summary Microsoft is aware of a vulnerability in the GRand Unified Boot Loader GRUB, commonly used by Linux. This vulnerability, known as “There’s a Hole in the Boot”, could allow for Secure Boot bypass. To exploit this vulnerability, an attacker would need to have administrative...

8.2CVSS8AI score0.01738EPSS

Microsoft CVE•added 2023/03/14 7:0 a.m.•1562 views

Microsoft OneDrive for MacOS Elevation of Privilege Vulnerability

...

7.8CVSS8.8AI score0.00468EPSS

Microsoft CVE•added 2022/03/26 7:0 a.m.•1087 views

Chromium: CVE-2022-1096 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2022-1096 exists in the wild...

8.8CVSS8.8AI score0.24237EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•1041 views

Microsoft Windows System Monitor (Sysmon) Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.01082EPSS

Microsoft CVE•added 2019/01/08 8:0 a.m.•989 views

Microsoft Exchange Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. An attacker could then install programs;...

10CVSS2.5AI score0.15396EPSS

Microsoft CVE•added 2017/04/11 7:0 a.m.•916 views

Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows

A remote code execution vulnerability exists in the way that Microsoft Office and WordPad parse specially crafted files. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or...

9.3CVSS3.7AI score0.99933EPSS

Microsoft CVE•added 2018/11/13 8:0 a.m.•874 views

Latest Servicing Stack Updates

This is a list of the latest servicing stack updates for each operating system. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update...

6.7CVSS2AI score0.01039EPSS

Microsoft CVE•added 2020/04/14 7:0 a.m.•847 views

Windows Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that the User-Mode Power Service UMPS handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could ru...

7.8CVSS3.7AI score0.02549EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•795 views

Windows Kerberos Elevation of Privilege Vulnerability

...

7.2CVSS7.6AI score0.04488EPSS

Microsoft CVE•added 2022/06/14 7:0 a.m.•751 views

Microsoft Guidance on Intel Processor MMIO Stale Data Vulnerabilities

Executive Summary On June 14, 2022, Intel published information about a class of memory-mapped I/O vulnerabilities known as Processor MMIO Stale Data Vulnerabilities. An attacker who successfully exploited these vulnerabilities might be able to read privileged data across trust boundaries. In...

5.5CVSS7.7AI score0.06451EPSS

Microsoft CVE•added 2020/01/28 8:0 a.m.•724 views

Chromium Security Updates for Microsoft Edge (Chromium-Based)

Please note: Starting 1/21/2021, we will be releasing the Chrome CVEs that are included in the new releases of Microsoft Edge Chromium-based directly in the Security Update Guide. Please see Security Update Guide Supports CVEs Assigned by Industry Partners for more information. This advisory will...

9.8CVSS9.3AI score0.99595EPSS

Microsoft CVE•added 2021/05/11 7:0 a.m.•718 views

Scripting Engine Memory Corruption Vulnerability

...

7.6CVSS7.7AI score0.22595EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•706 views

Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS8.6AI score0.28483EPSS

Microsoft CVE•added 2022/06/14 7:0 a.m.•704 views

Windows Network File System Remote Code Execution Vulnerability

...

10CVSS9.7AI score0.77645EPSS

Microsoft CVE•added 2022/06/14 7:0 a.m.•695 views

Microsoft Photos App Remote Code Execution Vulnerability

...

7.8CVSS7.9AI score0.02441EPSS

Microsoft CVE•added 2022/04/12 8:0 a.m.•695 views

Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

10CVSS9.5AI score0.91811EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•663 views

BitLocker Security Feature Bypass Vulnerability

...

4.6CVSS6.8AI score0.03601EPSS

Microsoft CVE•added 2023/05/09 7:0 a.m.•639 views

Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability

...

5.3CVSS6.7AI score0.01165EPSS

Microsoft CVE•added 2023/01/26 8:0 a.m.•637 views

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

...

8.1CVSS8AI score0.00993EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•625 views

Microsoft Exchange Server Elevation of Privilege Vulnerability

...

7.8CVSS8.7AI score0.00571EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•621 views

Microsoft Exchange Server Spoofing Vulnerability

...

8CVSS7.9AI score0.00776EPSS

Microsoft CVE•added 2022/06/14 7:0 a.m.•620 views

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

...

7.5CVSS7.8AI score0.02119EPSS

Microsoft CVE•added 2024/06/11 7:0 a.m.•614 views

Windows Wi-Fi Driver Remote Code Execution Vulnerability

...

8.8CVSS7.1AI score0.05158EPSS

Microsoft CVE•added 2020/08/11 7:0 a.m.•611 views

Netlogon Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC. An attacker who successfully exploited the vulnerability could run a specially crafted application on a...

10CVSS8.3AI score0.99512EPSS

Microsoft CVE•added 2022/06/14 7:0 a.m.•609 views

Intel: CVE-2022-21166 Device Register Partial Write (DRPW)

...

5.5CVSS7AI score0.05899EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•602 views

Microsoft ODBC Driver Remote Code Execution Vulnerability

...

8.8CVSS8.6AI score0.01448EPSS

Microsoft CVE•added 2024/08/22 7:0 a.m.•595 views

Microsoft Edge for Android Spoofing Vulnerability

...

6.1CVSS7.1AI score0.0039EPSS

Microsoft CVE•added 2024/09/10 7:0 a.m.•590 views

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.00478EPSS

Microsoft CVE•added 2019/08/13 7:0 a.m.•574 views

HTTP/2 Server Denial of Service Vulnerability

A denial of service vulnerability exists in the HTTP/2 protocol stack HTTP.sys when HTTP.sys improperly parses specially crafted HTTP/2 requests. An attacker who successfully exploited the vulnerability could create a denial of service condition, causing the target system to become unresponsive. ...

7.8CVSS2.3AI score0.59547EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•569 views

.NET Framework Information Disclosure Vulnerability

...

5.8CVSS6.3AI score0.00747EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•559 views

Microsoft SharePoint Remote Code Execution Vulnerability

...

8.8CVSS8.6AI score0.52885EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•559 views

Windows Credential Roaming Service Elevation of Privilege Vulnerability

...

7.3CVSS7.4AI score0.0147EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•553 views

Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

8.1CVSS8.9AI score0.01444EPSS

Microsoft CVE•added 2024/03/12 7:0 a.m.•552 views

Azure Data Studio Elevation of Privilege Vulnerability

...

7.3CVSS7.1AI score0.00943EPSS

Microsoft CVE•added 2021/06/08 7:0 a.m.•547 views

Microsoft Office Graphics Remote Code Execution Vulnerability

...

7.8CVSS7.6AI score0.02928EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•538 views

HTTP V3 Denial of Service Vulnerability

...

7.5CVSS8.7AI score0.0207EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•536 views

Windows ALPC Elevation of Privilege Vulnerability

...

7CVSS7.6AI score0.05382EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•518 views

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

8.8CVSS9.1AI score0.01758EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•515 views

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

...

9.8CVSS9.2AI score0.02356EPSS

Microsoft CVE•added 2022/11/08 8:0 a.m.•509 views

Windows Scripting Languages Remote Code Execution Vulnerability

...

8.8CVSS8.2AI score0.24808EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•503 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

...

8.8CVSS8.6AI score0.01552EPSS

Microsoft CVE•added 2022/06/14 7:0 a.m.•502 views

Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.0091EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•497 views

Microsoft ODBC Driver Remote Code Execution Vulnerability

...

8.8CVSS9.1AI score0.02248EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•494 views

Windows DNS Server Denial of Service Vulnerability

...

7.5CVSS8.7AI score0.03152EPSS

Microsoft CVE•added 2022/07/12 7:0 a.m.•493 views

Windows IIS Server Elevation of Privilege Vulnerability

...

7.4CVSS8.1AI score0.02081EPSS

Microsoft CVE•added 2022/09/13 7:0 a.m.•489 views

Microsoft ODBC Driver Remote Code Execution Vulnerability

...

8.8CVSS9.1AI score0.02248EPSS

Microsoft CVE•added 2022/07/06 4:32 p.m.•489 views

Chromium: CVE-2022-2294 Heap buffer overflow in WebRTC

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.3AI score0.70461EPSS

Microsoft CVE•added 2022/07/12 7:0 a.m.•487 views

HackerOne: CVE-2022-27776 Insufficiently protected credentials vulnerability might leak authentication or cookie header data

...

6.5CVSS7.6AI score0.03425EPSS

Total number of security vulnerabilities5000