22096 matches found
Windows DNS Server Remote Code Execution Vulnerability
...
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
...
Microsoft SharePoint Remote Code Execution Vulnerability
...
Windows Print Spooler Elevation of Privilege Vulnerability
...
Chromium: CVE-2021-30513 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Print Spooler Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs...
Windows SMB Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 SMBv1 server handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server. To exploit the vulnerability, in most...
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
Windows Hyper-V Information Disclosure Vulnerability
...
Windows Print Spooler Remote Code Execution Vulnerability
...
Microsoft Authenticator Elevation of Privilege Vulnerability
...
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
...
HEIF Image Extensions Remote Code Execution Vulnerability
...
Visual Studio Code Spoofing Vulnerability
...
Microsoft Exchange Server Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. Exploitation of the vulnerability requires an authenticate...
Microsoft Windows Defender Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability...
Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests. An attacker who successfully exploited this vulnerability could execute code in the context of the Report Server service account. To exploit the vulnerability, an...
.NET Framework Remote Code Execution Vulnerability
A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would need to be able to upload a specially crafted file to a w...
Windows Active Directory Certificate Services Security Feature Bypass
...
Chromium: CVE-2022-1853 Use after free in Indexed DB
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Azure Active Directory Connect Authentication Bypass Vulnerability
...
ASP.NET and .NET Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files. An attacker who successfully exploited this vulnerability could gain access to restricted files. To exploit this vulnerability, an attacker would need to se...
Chromium: CVE-2024-9966 Inappropriate implementation in Navigations
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2022-0609 Use after free in Animation
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild...
.NET Framework Remote Code Execution Vulnerability
A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would need to be able to upload a specially crafted file to a w...
Windows VBScript Engine Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerabili...
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
...
Azure Site Recovery Elevation of Privilege Vulnerability
...
Chromium: CVE-2024-9963 Insufficient data validation in Downloads
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-8033 Inappropriate implementation in WebApp Installs
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
HEVC Video Extensions Remote Code Execution Vulnerability
...
Windows Print Spooler Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or...
Microsoft Defender Remote Code Execution Vulnerability
...
Chromium CVE-2021-21148: Heap buffer overflow in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. This CVE has been reported to be exploited in the wild...
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
...
Microsoft Windows Defender Elevation of Privilege Vulnerability
...
Chromium: CVE-2022-0798 Use after free in MediaStream
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
.NET Framework Denial of Service Vulnerability
...
Microsoft Exchange Server Information Disclosure Vulnerability
...
Chromium: CVE-2024-9958 Inappropriate implementation in PictureInPicture
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Exchange Server Security Feature Bypass Vulnerability
...
Chromium: CVE-2024-9964 Inappropriate implementation in Payments
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
DHCP Server Service Denial of Service Vulnerability
...
Chromium: CVE-2023-4361 Inappropriate implementation in Autofill
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows MSHTML Platform Security Feature Bypass Vulnerability
...
Chromium: CVE-2023-1822 Incorrect security UI in Navigation
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Fax Compose Form Remote Code Execution Vulnerability
...
Windows TCP/IP Remote Code Execution Vulnerability
...
Windows Hyper-V Remote Code Execution Vulnerability
...
Microsoft Exchange Validation Key Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft Exchange Server when the server fails to properly create unique keys at install time. Knowledge of a the validation key allows an authenticated user with a mailbox to pass arbitrary objects to be deserialized by the web application, which...