21761 matches found
Chromium: CVE-2022-2855 Use after free in ANGLE
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2022-2478 Use after free in PDF
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
AMD: CVE-2022-23825 AMD CPU Branch Type Confusion
...
Chromium: CVE-2022-2011 Use after free in ANGLE
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2022-2008 Out of bounds memory access in WebGL
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2022-1480 Use after free in Device API
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Kernel Information Disclosure Vulnerability
...
Microsoft Excel Remote Code Execution Vulnerability
...
Chromium: CVE-2022-0804 Inappropriate implementation in Full screen mode
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Application Model Core API Elevation of Privilege Vulnerability
...
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
...
3D Viewer Remote Code Execution Vulnerability
...
Microsoft Word Remote Code Execution Vulnerability
...
Microsoft Edge (Chrome based) Spoofing on IE Mode
...
Chromium: CVE-2021-38001 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability
...
Bowser.sys Denial of Service Vulnerability
...
Chromium: CVE-2021-30548 Use after free in Loader
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Intune Management Extension Remote Code Execution Vulnerability
...
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
...
Windows DNS Server Remote Code Execution Vulnerability
...
Windows Container Execution Agent Elevation of Privilege Vulnerability
...
Windows Console Driver Denial of Service Vulnerability
...
Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability
...
Microsoft Outlook Information Disclosure Vulnerability
...
Windows Lock Screen Security Feature Bypass Vulnerability
...
NetBT Information Disclosure Vulnerability
An information disclosure vulnerability exists when NetBIOS over TCP NBT Extensions NetBT improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker wou...
Windows Graphics Component Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. In a local attack scenario, an attacker could exploit this vulnerability b...
DirectX Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with...
Windows Token Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists when Windows fails to properly handle token relationships. An attacker who successfully exploited the vulnerability could allow an application with a certain integrity level to execute code at a different integrity level, leading to a sandbox escape...
libjpeg Information Disclosure Vulnerability
An information disclosure vulnerability exists within the open-source libjpeg image-processing library where it fails to properly handle objects in memory, allowing an attacker to retrieve information that could lead to an Address Space Layout Randomization ASLR bypass. An attacker who successful...
Microsoft OneNote Remote Code Execution Vulnerability
A remote code execution vulnerability exists when Microsoft OneNote improperly validates input before loading dynamic link library DLL files. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, ...
Windows Storage Management Provider Information Disclosure Vulnerability
Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally...
.NET and Visual Studio Remote Code Execution Vulnerability
Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network...
Windows Netlogon Elevation of Privilege Vulnerability
...
Microsoft ODBC Driver Remote Code Execution Vulnerability
...
Microsoft SharePoint Server Remote Code Execution Vulnerability
...
Windows Kernel Elevation of Privilege Vulnerability
...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
SysInternals Sysmon for Windows Elevation of Privilege Vulnerability
...
Microsoft SharePoint Server Spoofing Vulnerability
...
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
...
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
...
Windows Secure Channel Denial of Service Vulnerability
...
Windows Kernel Elevation of Privilege Vulnerability
...
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
Chromium: CVE-2023-1228 Insufficient policy enforcement in Intents
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2023-1230 Inappropriate implementation in WebApp Installs
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Exchange Server Remote Code Execution Vulnerability
...
Chromium:CVE-2023-0140: Inappropriate implementation in File System API
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...