Mscve - Page 22 of Mscve Most Viewed Vulnerabilities List

MscveMost viewed

21727 matches found

Microsoft CVE•added 2021/02/04 8:0 a.m.•87 views

Chromium CVE-2021-21147: Inappropriate implementation in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.3AI score0.00845EPSS

Exploits0

Microsoft CVE•added 2021/01/12 8:0 a.m.•87 views

Visual Studio Remote Code Execution Vulnerability

...

7CVSS6.5AI score0.04522EPSS

Exploits1

Microsoft CVE•added 2017/03/14 7:0 a.m.•87 views

Windows SMB Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 SMBv1 server handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server. To exploit the vulnerability, in most...

9.3CVSS3.4AI score0.9923EPSS

Exploits55

Microsoft CVE•added 2025/11/20 8:0 a.m.•86 views

GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to execute code over a network...

8CVSS7.4AI score0.00486EPSS

Exploits0

Microsoft CVE•added 2025/04/08 7:0 a.m.•86 views

Windows Hyper-V Remote Code Execution Vulnerability

Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network...

7.1CVSS7.7AI score0.01391EPSS

Exploits0

Microsoft CVE•added 2023/11/02 7:0 a.m.•86 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

4.3CVSS7.2AI score0.00955EPSS

Exploits0

Microsoft CVE•added 2023/10/13 7:0 a.m.•86 views

Chromium: CVE-2023-5477 Inappropriate implementation in Installer

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.1AI score0.00515EPSS

Exploits0

Microsoft CVE•added 2023/10/10 7:0 a.m.•86 views

Windows Graphics Component Elevation of Privilege Vulnerability

...

7.8CVSS7.1AI score0.11648EPSS

Exploits0

Microsoft CVE•added 2023/01/10 8:0 a.m.•86 views

Event Tracing for Windows Information Disclosure Vulnerability

...

4.7CVSS6.2AI score0.00396EPSS

Exploits0

Microsoft CVE•added 2022/10/11 7:0 a.m.•86 views

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.09331EPSS

Exploits0

Microsoft CVE•added 2022/10/11 7:0 a.m.•86 views

Windows Distributed File System (DFS) Information Disclosure Vulnerability

...

5.5CVSS6.4AI score0.00548EPSS

Exploits0

Microsoft CVE•added 2022/03/08 8:0 a.m.•86 views

Azure Site Recovery Elevation of Privilege Vulnerability

...

6.5CVSS6.2AI score0.02569EPSS

Exploits0

Microsoft CVE•added 2022/01/11 8:0 a.m.•86 views

Win32k Elevation of Privilege Vulnerability

...

7.8CVSS7.9AI score0.55711EPSS

Exploits7

Microsoft CVE•added 2022/01/11 8:0 a.m.•86 views

Clipboard User Service Elevation of Privilege Vulnerability

...

7.8CVSS8.3AI score0.0066EPSS

Exploits0

Microsoft CVE•added 2021/05/11 7:0 a.m.•86 views

Microsoft SharePoint Information Disclosure Vulnerability

...

4.4CVSS6.8AI score0.00647EPSS

Exploits0

Microsoft CVE•added 2021/05/11 7:0 a.m.•86 views

Windows Wireless Networking Information Disclosure Vulnerability

...

6.5CVSS6.6AI score0.02592EPSS

Exploits2

Microsoft CVE•added 2021/04/22 8:16 p.m.•86 views

Chromium: CVE-2021-21223 Integer overflow in Mojo

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS9.1AI score0.0144EPSS

Exploits0

Microsoft CVE•added 2021/02/09 8:0 a.m.•86 views

Package Managers Configurations Remote Code Execution Vulnerability

Depending on configuration of various package managers it is possible for an attacker to insert a malicious package into a package manager's repository which can be retrieved and used during development, build, and release processes. This insertion could lead to remote code execution. We believe...

8.4CVSS8.9AI score0.02148EPSS

Exploits0

Microsoft CVE•added 2021/01/12 8:0 a.m.•86 views

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.0081EPSS

Exploits0

Microsoft CVE•added 2020/07/14 7:0 a.m.•86 views

Microsoft OneDrive Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft OneDrive that allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerabilit...

7.8CVSS2.9AI score0.00837EPSS

Exploits0

Microsoft CVE•added 2024/01/09 8:0 a.m.•85 views

Microsoft Bluetooth Driver Spoofing Vulnerability

...

5.7CVSS7.1AI score0.0583EPSS

Exploits3

Microsoft CVE•added 2023/11/14 8:0 a.m.•85 views

Mitre: CVE-2023-24023 Bluetooth Vulnerability

Microsoft is aware of the Bluetooth Forward and Future Secrecy Attacks and Defenses BLUFFS vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG. To address the vulnerability, Microsoft has released a software update that enforces the us...

6.8CVSS8.3AI score0.01297EPSS

Exploits1

Microsoft CVE•added 2023/10/10 7:0 a.m.•85 views

MITRE: CVE-2023-44487 HTTP/2 Rapid Reset Attack

...

7.5CVSS7.1AI score0.99999EPSS

Exploits19

Microsoft CVE•added 2023/04/06 7:0 a.m.•85 views

Microsoft Edge (Chromium-based) Tampering Vulnerability

...

3.7CVSS6.1AI score0.00873EPSS

Exploits0

Microsoft CVE•added 2023/03/14 7:0 a.m.•85 views

Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability

...

5.5CVSS7.7AI score0.00465EPSS

Exploits0

Microsoft CVE•added 2023/02/14 8:0 a.m.•85 views

Print 3D Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.00657EPSS

Exploits0

Microsoft CVE•added 2022/10/11 7:0 a.m.•85 views

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

...

6.6CVSS7AI score0.00597EPSS

Exploits0

Microsoft CVE•added 2022/10/11 7:0 a.m.•85 views

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

...

7CVSS7.1AI score0.00365EPSS

Exploits0

Microsoft CVE•added 2022/07/06 4:32 p.m.•85 views

Chromium: CVE-2022-2295 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.0123EPSS

Exploits0

Microsoft CVE•added 2021/07/13 7:0 a.m.•85 views

Microsoft Exchange Server Elevation of Privilege Vulnerability

...

8CVSS9AI score0.03265EPSS

Exploits0

Microsoft CVE•added 2021/03/09 8:0 a.m.•85 views

Microsoft Windows Folder Redirection Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has been enabled via Group Policy. When folder redirection file server is co-located with Terminal server, an attacker who successfully exploited the vulnerability would be able to begin redirecting anothe...

7.8CVSS4.1AI score0.00921EPSS

Exploits0

Microsoft CVE•added 2021/01/21 8:0 a.m.•85 views

Chromium CVE-2021-21123: Insufficient data validation in File System API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.6AI score0.09966EPSS

Exploits0

Microsoft CVE•added 2019/12/10 8:0 a.m.•85 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data;...

7.8CVSS2.9AI score0.74438EPSS

Exploits10

Microsoft CVE•added 2016/04/12 7:0 a.m.•85 views

Windows SAM and LSAD Downgrade Vulnerability

An elevation of privilege vulnerability exists in the Security Account Manager SAM and Local Security Authority Domain Policy LSAD remote protocols when they accept authentication levels that do not protect them adequately. The vulnerability is caused by the way the SAM and LSAD remote protocols...

6.8CVSS7AI score0.20877EPSS

Exploits0

Microsoft CVE•added 2023/03/14 7:0 a.m.•84 views

Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability

...

5.5CVSS7.7AI score0.00465EPSS

Exploits0

Microsoft CVE•added 2023/01/10 8:0 a.m.•84 views

Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability

...

3.3CVSS6AI score0.00591EPSS

Exploits0

Microsoft CVE•added 2023/01/10 8:0 a.m.•84 views

Microsoft ODBC Driver Remote Code Execution Vulnerability

...

8.8CVSS8.6AI score0.01376EPSS

Exploits0

Microsoft CVE•added 2023/01/10 8:0 a.m.•84 views

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

...

8.8CVSS8.6AI score0.01509EPSS

Exploits0

Microsoft CVE•added 2022/11/28 3:34 p.m.•84 views

Chromium: CVE-2022-4135 Heap buffer overflow in GPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2022-4135 exists in the wild...

9.6CVSS9.3AI score0.31864EPSS

Exploits1

Microsoft CVE•added 2022/11/08 8:0 a.m.•84 views

Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS8.2AI score0.00774EPSS

Exploits0

Microsoft CVE•added 2022/11/02 7:0 a.m.•84 views

OpenSSL: CVE-2022-3602 X.509 certificate verification buffer overrun

...

7.5CVSS8AI score0.91153EPSS

Exploits6

Microsoft CVE•added 2022/08/09 7:0 a.m.•84 views

Azure RTOS GUIX Studio Remote Code Execution Vulnerability

...

7.8CVSS7.9AI score0.01109EPSS

Exploits0

Microsoft CVE•added 2022/03/03 8:0 a.m.•84 views

Chromium: CVE-2022-0809 Out of bounds memory access in WebXR

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.01031EPSS

Exploits0

Microsoft CVE•added 2021/07/13 7:0 a.m.•84 views

Microsoft Exchange Server Remote Code Execution Vulnerability

...

8CVSS8.5AI score0.09581EPSS

Exploits0

Microsoft CVE•added 2021/05/11 7:0 a.m.•84 views

Windows SSDP Service Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.00524EPSS

Exploits0

Microsoft CVE•added 2021/01/21 8:0 a.m.•84 views

Chromium CVE-2021-21139: Inappropriate implementation in iframe sandbox

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.6AI score0.04743EPSS

Exploits1

Microsoft CVE•added 2020/12/08 8:0 a.m.•84 views

Microsoft Excel Remote Code Execution Vulnerability

...

9.3CVSS7.8AI score0.0236EPSS

Exploits0

Microsoft CVE•added 2019/08/13 7:0 a.m.•84 views

Encryption Key Negotiation of Bluetooth Vulnerability

Executive Summary Microsoft is aware of the Bluetooth BR/EDR basic rate/enhanced data rate, known as "Bluetooth Classic" key negotiation vulnerability that exists at the hardware specification level of any BR/EDR Bluetooth device. An attacker could potentially be able to negotiate the offered key...

9.3CVSS9AI score0.02691EPSS

Exploits2

Microsoft CVE•added 2025/04/08 7:0 a.m.•83 views

Azure Local Elevation of Privilege Vulnerability

Improper input validation in Azure Local allows an authorized attacker to elevate privileges locally...

7.8CVSS7AI score0.00539EPSS

Exploits0

Microsoft CVE•added 2024/10/17 7:0 a.m.•83 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

4.3CVSS7.1AI score0.00467EPSS

Exploits0