Lucene search
K
MscveMost viewed

21767 matches found

Microsoft CVE
Microsoft CVE
added 2020/12/08 8:0 a.m.84 views

Kerberos Security Feature Bypass Vulnerability

...

6.5CVSS6.8AI score0.02535EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/08/13 7:0 a.m.84 views

Encryption Key Negotiation of Bluetooth Vulnerability

Executive Summary Microsoft is aware of the Bluetooth BR/EDR basic rate/enhanced data rate, known as "Bluetooth Classic" key negotiation vulnerability that exists at the hardware specification level of any BR/EDR Bluetooth device. An attacker could potentially be able to negotiate the offered key...

9.3CVSS9AI score0.02691EPSS
Exploits2
Microsoft CVE
Microsoft CVE
added 2019/07/09 7:0 a.m.84 views

Microsoft SQL Server Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who successfully exploited this vulnerability could execute code in the context of the SQL Server Database Engine service account. To exploit the...

8.8CVSS2.6AI score0.44665EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2024/10/17 7:0 a.m.83 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

4.3CVSS7.1AI score0.00467EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/10/08 7:0 a.m.83 views

.NET and Visual Studio Denial of Service Vulnerability

...

7.5CVSS7.1AI score0.03009EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/06/11 7:0 a.m.83 views

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability

...

5.5CVSS7.1AI score0.00788EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/11/14 8:0 a.m.83 views

Windows DWM Core Library Elevation of Privilege Vulnerability

...

7.8CVSS7.3AI score0.11977EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/10/13 7:0 a.m.83 views

Chromium: CVE-2023-5475 Inappropriate implementation in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.2AI score0.00618EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/03/14 7:0 a.m.83 views

Microsoft OneDrive for iOS Security Feature Bypass Vulnerability

...

6.5CVSS7AI score0.01205EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/02/25 8:0 a.m.83 views

Chromium: CVE-2023-0941 Use after free in Prompts

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2023-0941 exists in the wild...

8.8CVSS8.7AI score0.006EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.83 views

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

...

7.5CVSS7.9AI score0.01978EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.83 views

3D Builder Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.00929EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.83 views

Microsoft Exchange Server Information Disclosure Vulnerability

...

7.5CVSS7.8AI score0.01595EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.83 views

Windows Win32k Elevation of Privilege Vulnerability

...

7.8CVSS8AI score0.00476EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.83 views

Windows Cryptographic Information Disclosure Vulnerability

...

5.5CVSS6.5AI score0.0058EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/10/11 7:0 a.m.83 views

Web Account Manager Information Disclosure Vulnerability

...

7.5CVSS7.7AI score0.01683EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/10/11 7:0 a.m.83 views

Windows Kernel Elevation of Privilege Vulnerability

...

7.8CVSS5.7AI score0.00925EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/06/23 7:0 a.m.83 views

Chromium: CVE-2022-2157 Use after free in Interest groups

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.00823EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/09/14 7:0 a.m.83 views

Windows Print Spooler Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.00468EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/24 7:0 a.m.83 views

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

...

5.4CVSS5.9AI score0.00567EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/08 7:0 a.m.83 views

Kerberos AppContainer Security Feature Bypass Vulnerability

...

9.8CVSS9.3AI score0.03808EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/08 7:0 a.m.83 views

Windows TCP/IP Driver Security Feature Bypass Vulnerability

...

5.5CVSS5.8AI score0.00852EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/03/10 7:0 a.m.83 views

Microsoft IIS Server Tampering Vulnerability

A tampering vulnerability exists when Microsoft IIS Server improperly handles malformed request headers. An attacker who successfully exploited the vulnerability could cause a vulnerable server to improperly process HTTP headers and tamper with the responses returned to clients. To exploit the...

7.5CVSS1.2AI score0.03809EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/08/13 7:0 a.m.83 views

Microsoft Office SharePoint XSS Vulnerability

A cross-site-scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint...

5.4CVSS0.9AI score0.01675EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 6 days ago82 views

Chromium: CVE-2026-12469 Uninitialized Use in GPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00186EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/11/12 8:0 a.m.82 views

Visual Studio Code Remote Extension Elevation of Privilege Vulnerability

...

7.1CVSS7.1AI score0.00426EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.82 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.00723EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.82 views

3D Builder Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.00929EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/12/13 8:0 a.m.82 views

PowerShell Remote Code Execution Vulnerability

...

8.5CVSS8.5AI score0.61605EPSS
Exploits4
Microsoft CVE
Microsoft CVE
added 2022/08/15 7:0 a.m.82 views

Windows Defender Credential Guard Security Feature Bypass Vulnerability

...

7.1CVSS7AI score0.00822EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/05/09 7:0 a.m.82 views

Upcoming improvements to Azure Data Factory and Azure Synapse Pipeline infrastructure in response to CVE-2022-29972

Executive Summary Microsoft recently mitigated and remediated a vulnerability affecting Azure Data Factory and Azure Synapse Pipelines. The vulnerability was found in the third-party ODBC data connector used to connect to Amazon Redshift, in Integration Runtime IR in Azure Synapse Pipelines, and...

7.8CVSS8.2AI score0.03686EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/20 7:0 a.m.82 views

Windows Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists because of overly permissive Access Control Lists ACLs on multiple system files, including the Security Accounts Manager SAM database. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An...

7.8CVSS8.2AI score0.67252EPSS
Exploits11
Microsoft CVE
Microsoft CVE
added 2021/06/08 7:0 a.m.82 views

Paint 3D Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.02146EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/29 7:0 a.m.82 views

Chromium: CVE-2021-21231 Insufficient data validation in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.01144EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/13 7:0 a.m.82 views

Win32k Elevation of Privilege Vulnerability

...

7.8CVSS8.9AI score0.0833EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/02/04 8:0 a.m.82 views

Chromium CVE-2021-21144: Heap buffer overflow in Tab Groups

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.00873EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/21 8:0 a.m.82 views

Chromium CVE-2021-21131: Insufficient policy enforcement in File System API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.6AI score0.07953EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/21 8:0 a.m.83 views

Chromium CVE-2021-21120: Use after free in WebSQL

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.06879EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/12/08 8:0 a.m.82 views

Microsoft Exchange Remote Code Execution Vulnerability

...

9.1CVSS8.3AI score0.8979EPSS
Exploits3
Microsoft CVE
Microsoft CVE
added 2020/06/30 7:0 a.m.82 views

Microsoft Windows Codecs Library Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. Exploitation of the vulnerability requires that a...

7.8CVSS3.3AI score0.08977EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2018/03/13 7:0 a.m.82 views

ASP.NET Core Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when a Kestrel web application fails to validate web requests. An attacker who successfully exploited this vulnerability could perform HTML injection attacks. To exploit the vulnerability, an attacker could send a specially crafted request, containin...

8.8CVSS8.6AI score0.09948EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/03/12 7:0 a.m.81 views

Outlook for Android Information Disclosure Vulnerability

...

7.5CVSS7.1AI score0.02136EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/02/13 8:0 a.m.81 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.3AI score0.01177EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/10/10 7:0 a.m.81 views

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

...

7.8CVSS7.1AI score0.01056EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/09/12 7:0 a.m.81 views

Windows Miracast Wireless Display Remote Code Execution Vulnerability

...

8.8CVSS7.1AI score0.01009EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/03/14 7:0 a.m.81 views

Windows Bluetooth Service Remote Code Execution Vulnerability

...

8.8CVSS8.6AI score0.03217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/03/14 7:0 a.m.81 views

Microsoft Defender Elevation of Privilege Vulnerability

...

6.3CVSS6.9AI score0.00257EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.81 views

Windows iSCSI Service Denial of Service Vulnerability

...

7.5CVSS8.2AI score0.01978EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/01/10 8:0 a.m.81 views

Microsoft Cryptographic Services Elevation of Privilege Vulnerability

...

7.8CVSS8.2AI score0.00434EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/12/13 8:0 a.m.81 views

Outlook for Android Elevation of Privilege Vulnerability

...

6.3CVSS6.9AI score0.00538EPSS
Exploits0
Total number of security vulnerabilities5000