22103 matches found
Microsoft OneDrive for Android Security Feature Bypass Vulnerability
...
Windows Container Manager Service Elevation of Privilege Vulnerability
...
Windows PKU2U Elevation of Privilege Vulnerability
...
Chromium CVE-2021-21140: Uninitialized Use in USB
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted ima...
Base3D Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Base3D rendering engine improperly handles memory. An attacker who successfully exploited the vulnerability would gain execution on a victim system. The security update addresses the vulnerability by correcting how the Base3D rendering engine...
Microsoft Outlook Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, t...
Microsoft Office SharePoint XSS Vulnerability
A cross-site-scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint...
Microsoft DirectMusic Remote Code Execution Vulnerability
...
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
...
Microsoft Exchange Server Elevation of Privilege Vulnerability
...
Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability
...
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
...
Windows Hyper-V Elevation of Privilege Vulnerability
...
Windows Security Support Provider Interface Information Disclosure Vulnerability
...
Chromium: CVE-2022-1232 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows User Profile Service Elevation of Privilege Vulnerability
...
Open Management Infrastructure Elevation of Privilege Vulnerability
...
Microsoft Exchange Server Elevation of Privilege Vulnerability
...
Microsoft SharePoint Server Information Disclosure Vulnerability
...
Windows Wireless Networking Spoofing Vulnerability
...
Chromium: CVE-2021-21222 Heap buffer overflow in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Exchange Server Remote Code Execution Vulnerability
...
Chromium CVE-2021-21130: Insufficient policy enforcement in File System API
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Word Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the...
Windows SMB Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 SMBv1 server handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server. To exploit the vulnerability, in most...
Lenovo: CVE-2024-23593 Modify Boot Manager and Escalate Privileges
...
Windows Kernel Information Disclosure Vulnerability
...
Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability
...
Microsoft SharePoint Server Information Disclosure Vulnerability
...
Microsoft Teams Information Disclosure Vulnerability
...
Microsoft OneDrive for Android Information Disclosure Vulnerability
...
Chromium: CVE-2023-0928 Use after free in SwiftShader
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Word Remote Code Execution Vulnerability
...
Microsoft SharePoint Server Remote Code Execution Vulnerability
...
Windows Workstation Service Elevation of Privilege Vulnerability
...
Chromium: CVE-2022-3039 Use after free in WebSQL
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
...
Visual Studio Code Spoofing Vulnerability
...
Microsoft Office Graphics Remote Code Execution Vulnerability
...
Chromium: CVE-2021-30557 Use after free in TabGroups
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2021-30544 Use after free in BFCache
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium CVE-2021-21192: Heap buffer overflow in tab groups
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium CVE-2021-21119: Use after free in Media
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
February 2020 Adobe Flash Security Update
This security update addresses the following vulnerability, which is described in Adobe Security Bulletin APSB20-06: CVE-2020-3757. Please note that in the event of any discrepancies. the definitive source of information for example, vulnerability severity and impact is the Adobe Flash bulletin a...
Linux Kernel TCP SACK Denial of Service Vulnerability
Executive Summary Known vulnerabilities exist in the Linux kernel. These vulnerabilities are documented by the following CVEs: CVE-2019-11477, CVE-2019-11478, and CVE-2019-11479. The purpose of this advisory is to explain the various effects of these vulnerabilities and to provide links to more...
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability
...
Chromium: CVE-2022-2156 Use after free in Base
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2022-1854 Use after free in ANGLE
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...