22103 matches found
Azure Site Recovery Elevation of Privilege Vulnerability
...
.NET Framework Remote Code Execution Injection Vulnerability
A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new...
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
...
Azure Site Recovery Elevation of Privilege Vulnerability
...
Windows Print Spooler Elevation of Privilege Vulnerability
...
ASP.NET Core Denial of Service Vulnerability
...
Microsoft Office Graphics Remote Code Execution Vulnerability
...
Microsoft ATA Port Driver Elevation of Privilege Vulnerability
...
Internet Shortcut Files Security Feature Bypass Vulnerability
...
Chromium: CVE-2021-30588 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft SQL Server Management Studio Denial of Service Vulnerability
A denial of service vulnerability exists when Microsoft SQL Server Management Studio SSMS improperly handles files. An attacker could exploit the vulnerability to trigger a denial of service. To exploit the vulnerability, an attacker would first require execution on the victim system. The securit...
Microsoft Configuration Manager Remote Code Execution Vulnerability
...
Azure Site Recovery Elevation of Privilege Vulnerability
...
Microsoft Word Security Feature Bypass Vulnerability
...
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
...
Windows DPAPI (Data Protection Application Programming Interface) Information Disclosure Vulnerability
...
Storage Spaces Direct Elevation of Privilege Vulnerability
...
Windows Print Spooler Elevation of Privilege Vulnerability
...
Windows Print Spooler Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or...
Windows SMB Remote Code Execution Vulnerability
...
Windows Upgrade Assistant Remote Code Execution Vulnerability
...
Microsoft Cryptographic Services Elevation of Privilege Vulnerability
...
Windows Authentication Information Disclosure Vulnerability
...
.NET and Visual Studio Denial of Service Vulnerability
...
Windows ALPC Elevation of Privilege Vulnerability
...
Windows Remote Access Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Windows Remote Access improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The security...
Microsoft SQL OLE DB Remote Code Execution Vulnerability
...
Windows NTLM Elevation of Privilege Vulnerability
...
Azure Site Recovery Elevation of Privilege Vulnerability
...
Microsoft Intune Portal for iOS Security Feature Bypass Vulnerability
...
.NET Framework Denial of Service Vulnerability
...
Windows Kernel Elevation of Privilege Vulnerability
...
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
...
GitHub: CVE-2023-23946 mingit Remote Code Execution Vulnerability
...
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
...
Azure Batch Node Agent Elevation of Privilege Vulnerability
...
Azure Site Recovery Elevation of Privilege Vulnerability
...
Windows Defender Credential Guard Elevation of Privilege Vulnerability
...
Windows Print Spooler Elevation of Privilege Vulnerability
...
Microsoft Office Memory Corruption Vulnerability
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...
.NET DLL Hijacking Remote Code Execution Vulnerability
...
Windows Task Scheduler Elevation of Privilege Vulnerability
...
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
...
Microsoft Office SharePoint XSS Vulnerability
A cross-site-scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint...
Microsoft Guidance for Enabling LDAP Channel Binding and LDAP Signing
Executive Summary LDAP channel binding and LDAP signing provide ways to increase the security for communications between LDAP clients and Active Directory domain controllers. A set of unsafe default configurations for LDAP channel binding and LDAP signing exist on Active Directory domain...
Microsoft Edge (Chromium-based) Spoofing Vulnerability
...
Microsoft SQL Server Remote Code Execution Vulnerability
...
Insight Software: CVE-2022-29972 Magnitude Simba Amazon Redshift ODBC Driver
...
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
...
Windows Remote Access Connection Manager Information Disclosure Vulnerability
...