22103 matches found
Chromium: CVE-2021-21195 Use after free in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Identity Manager XSS Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Microsoft Identity Manager 2016 SP1 Service and Portal does not properly sanitize a specially crafted attribute value being displayed to a user on an affected MIM 2016 server. An attacker could exploit the vulnerability by sending a specially...
Microsoft PowerPoint for Android Spoofing Vulnerability
Improper access control in Microsoft Office PowerPoint allows an authorized attacker to perform spoofing locally...
.NET Framework Information Disclosure Vulnerability
...
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
Dynamics 365 Sales Spoofing Vulnerability
...
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
...
Chromium: CVE-2023-0698 Out of bounds read in WebRTC
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Endpoint Configuration Manager Spoofing Vulnerability
...
Azure Site Recovery Elevation of Privilege Vulnerability
...
Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability
...
Microsoft Office Information Disclosure Vulnerability
...
Windows Clustered Shared Volume Information Disclosure Vulnerability
...
Chromium: CVE-2021-37981 Heap buffer overflow in Skia
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Azure Sphere Information Disclosure Vulnerability
...
Chromium CVE-2021-21146: Use after free in Navigation
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Print Spooler Spoofing Vulnerability
...
Microsoft Exchange Remote Code Execution Vulnerability
...
Microsoft Guidance on Scripting Engine Memory Corruption Vulnerability
Important Microsoft has completed the investigation into a public report of this vulnerability. We have issued CVE-2020-0674 - Scripting Engine Memory Corruption Vulnerability to address this vulnerability. For more information about this issue, including download links for an available security...
.NET and Visual Studio Remote Code Execution Vulnerability
...
Windows Storage Elevation of Privilege Vulnerability
...
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
...
Azure DevOps Server Remote Code Execution Vulnerability
...
Chromium:CVE-2023-0129: Heap buffer overflow in Network Service
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Graphics Component Information Disclosure Vulnerability
...
Chromium: CVE-2022-2160 Insufficient policy enforcement in DevTools
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2022-2007 Use after free in WebGPU
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
DiskUsage.exe Remote Code Execution Vulnerability
...
Chromium: CVE-2022-0971 Use after free in Blink Layout
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
...
3D Viewer Remote Code Execution Vulnerability
...
Storage Spaces Controller Elevation of Privilege Vulnerability
...
Windows Wireless Networking Spoofing Vulnerability
...
Chromium: CVE-2021-21219 Uninitialized Use in PDFium
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2021-21207 Use after free in IndexedDB
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Office Remote Code Execution Vulnerability
...
Chromium CVE-2021-21132: Inappropriate implementation in DevTools
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium CVE-2021-21128: Heap buffer overflow in Blink
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Digital Media Receiver Elevation of Privilege Vulnerability
...
Azure SDK for C Security Feature Bypass Vulnerability
...
Windows Network File System Remote Code Execution Vulnerability
...
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevat...
Microsoft SharePoint Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SharePoint application pool and the SharePoint...
Microsoft Exchange Information Disclosure Vulnerability
An information disclosure vulnerability exists in the way that Microsoft Exchange Server handles URL redirects. If an impacted user is using Microsoft Exchange Outlook Web Access OWA Light, the vulnerability could allow an attacker to discover sensitive information that should otherwise not be...
Microsoft Office Memory Corruption Vulnerability
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...
Microsoft Office Memory Corruption Vulnerability
A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on wit...
Remote Desktop Client Remote Code Execution Vulnerability
Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
Microsoft SharePoint Elevation of Privilege Vulnerability
...
Microsoft Outlook Elevation of Privilege Vulnerability
...
Windows TCP/IP Information Disclosure Vulnerability
...