Lucene search
K
MscveMost viewed

22103 matches found

Microsoft CVE
Microsoft CVE
•added 2022/05/10 8:0 a.m.•110 views

Windows LSA Spoofing Vulnerability

...

8.1CVSS7.7AI score0.09823EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/12/18 4:0 p.m.•109 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

3.1CVSS7AI score0.00227EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•109 views

Visual Studio Code Elevation of Privilege Vulnerability

Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally...

7.2AI score0.00504EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/01/10 8:0 a.m.•109 views

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.65417EPSS
Exploits13
Microsoft CVE
Microsoft CVE
•added 2023/01/10 8:0 a.m.•109 views

Windows Bluetooth Driver Elevation of Privilege Vulnerability

...

7CVSS7.1AI score0.00564EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/11/08 8:0 a.m.•109 views

Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability

...

7CVSS7.2AI score0.00322EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/10/11 7:0 a.m.•109 views

Win32k Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.0732EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/10/11 7:0 a.m.•109 views

Active Directory Domain Services Elevation of Privilege Vulnerability

...

7.1CVSS7.3AI score0.01261EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/05/11 7:0 a.m.•109 views

Windows Container Manager Service Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.00977EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/05/11 7:0 a.m.•109 views

Microsoft SharePoint Server Spoofing Vulnerability

...

7.1CVSS7.5AI score0.01812EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2021/02/09 8:0 a.m.•109 views

.NET Core and Visual Studio Denial of Service Vulnerability

...

6.5CVSS8.1AI score0.0334EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/04/14 7:0 a.m.•109 views

OneDrive for Windows Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the OneDrive for Windows Desktop application improperly handles symbolic links. An attacker who successfully exploited this vulnerability could overwrite a targeted file with an elevated status. To exploit this vulnerability, an attacker would...

5.5CVSS2.4AI score0.00719EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/12/03 8:0 a.m.•110 views

Microsoft Guidance for cleaning up orphaned keys generated on vulnerable TPMs and used for Windows Hello for Business

Microsoft is aware of an issue in Windows Hello for Business WHfB with public keys that persist after a device is removed from Active Directory, if the AD exists. After a user sets up Windows Hello for Business WHfB, the WHfB public key is written to the on-premises Active Directory. The WHfB key...

5.9CVSS6.2AI score0.09825EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2026/06/09 2:0 p.m.•108 views

Windows Hyper-V Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally...

8.2CVSS7.6AI score0.00341EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/06/13 7:0 a.m.•108 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

4.3CVSS7.1AI score0.00493EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/12 7:0 a.m.•108 views

Intel: CVE-2023-28746 Register File Data Sampling (RFDS)

This CVE was assigned by Intel. Please see CVE-2023-28746 on CVE.org for more information...

6.5CVSS7.6AI score0.00546EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/07/21 7:0 a.m.•108 views

Microsoft Edge for Android Spoofing Vulnerability

...

4.3CVSS5.7AI score0.00581EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/01/10 8:0 a.m.•108 views

Microsoft DWM Core Library Elevation of Privilege Vulnerability

...

7.8CVSS8AI score0.00498EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/10/11 7:0 a.m.•108 views

Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

...

6.5CVSS7AI score0.01748EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/09/13 7:0 a.m.•108 views

Windows Kerberos Elevation of Privilege Vulnerability

...

8.1CVSS8.9AI score0.01633EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2022/04/12 8:0 a.m.•108 views

Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS8.8AI score0.17108EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2021/02/04 8:0 a.m.•108 views

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

...

5.8CVSS6AI score0.01332EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/08/11 7:0 a.m.•108 views

Windows Setup Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows Setup in the way it handles permissions. A locally authenticated attacker could run arbitrary code with elevated system privileges. After successfully exploiting the vulnerability, an attacker could then install programs; view, change, or...

7.8CVSS2.2AI score0.01076EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/11/08 8:0 a.m.•108 views

SQL RDBMS Engine Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft SQL Server when it improperly handles pointer casting. An attacker could exploit the vulnerability if the attacker's credentials allow access to an affected SQL server database. An attacker who successfully exploited this vulnerability...

8.8CVSS3AI score0.11994EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/01/10 8:0 a.m.•107 views

Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability

...

7CVSS7.4AI score0.00397EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/08/09 7:0 a.m.•107 views

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability

...

7.5CVSS8.7AI score0.01935EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/06/14 7:0 a.m.•107 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS8.1AI score0.03278EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/05/10 8:0 a.m.•107 views

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

...

8.8CVSS8.7AI score0.02183EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/03/08 8:0 a.m.•107 views

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS7.9AI score0.0063EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/01/11 8:0 a.m.•107 views

HTTP Protocol Stack Remote Code Execution Vulnerability

...

10CVSS9.6AI score0.9279EPSS
Exploits21
Microsoft CVE
Microsoft CVE
•added 2021/08/10 7:0 a.m.•107 views

ASP.NET Core and Visual Studio Information Disclosure Vulnerability

...

5.5CVSS6.5AI score0.01121EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/02/17 11:31 p.m.•107 views

Chromium: CVE-2021-21150 Use after free in Downloads

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS9.1AI score0.0117EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2020/10/15 7:0 a.m.•107 views

Visual Studio JSON Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Visual Studio Code when a user is tricked into opening a malicious 'package.json' file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.4AI score0.04243EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/01/14 8:0 a.m.•107 views

Windows CryptoAPI Spoofing Vulnerability

A spoofing vulnerability exists in the way Windows CryptoAPI Crypt32.dll validates Elliptic Curve Cryptography ECC certificates. An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted,...

8.1CVSS2.5AI score0.89436EPSS
Exploits14
Microsoft CVE
Microsoft CVE
•added 2017/05/09 7:0 a.m.•107 views

Microsoft Office Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Office that could be exploited when a user opens a file containing a malformed graphics image or when a user inserts a malformed graphics image into an Office file. Such a file could also be included in an email attachment. An attacker cou...

9.3CVSS2.5AI score0.7813EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/09/12 7:0 a.m.•106 views

Visual Studio Code Remote Code Execution Vulnerability

...

7.8CVSS7.1AI score0.01206EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/01/10 8:0 a.m.•106 views

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability

...

8.1CVSS8.4AI score0.01464EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/01/10 8:0 a.m.•106 views

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

...

9.1CVSS8.2AI score0.02026EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/10/11 7:0 a.m.•106 views

Windows Kernel Elevation of Privilege Vulnerability

...

7.8CVSS5.7AI score0.00925EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/04/12 8:0 a.m.•106 views

Windows DNS Server Remote Code Execution Vulnerability

...

9CVSS6.8AI score0.03665EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2022/03/03 8:0 a.m.•106 views

Chromium: CVE-2022-0790 Use after free in Cast UI

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS8.8AI score0.00918EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/06/08 7:0 a.m.•106 views

3D Viewer Remote Code Execution Vulnerability

...

7.8CVSS7.9AI score0.0217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/05/11 7:0 a.m.•106 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.03156EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/02/17 11:35 p.m.•106 views

Chromium: CVE-2021-21152 Heap buffer overflow in Media

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.01273EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2020/09/08 7:0 a.m.•106 views

Microsoft ASP.NET Core Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names. The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded. The security update address...

7.5CVSS2.1AI score0.06624EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/02/13 8:0 a.m.•105 views

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

...

7.6CVSS7.3AI score0.01158EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/01/09 8:0 a.m.•105 views

NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability

...

9.8CVSS7.1AI score0.02778EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/09/12 7:0 a.m.•105 views

Microsoft Word Remote Code Execution Vulnerability

...

7.3CVSS7.1AI score0.01017EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/09/12 7:0 a.m.•105 views

Microsoft Exchange Server Remote Code Execution Vulnerability

...

8CVSS7.1AI score0.81713EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/09/12 7:0 a.m.•105 views

Visual Studio Remote Code Execution Vulnerability

...

7.8CVSS7.1AI score0.01441EPSS
Exploits0
Total number of security vulnerabilities5000