Lucene search
K
MscveMost viewed

21767 matches found

Microsoft CVE
Microsoft CVE
added 2022/04/05 7:0 a.m.53 views

Windows ALPC Elevation of Privilege Vulnerability

...

7CVSS7.5AI score0.00313EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/04/01 7:0 a.m.53 views

Chromium: CVE-2022-1146 Inappropriate implementation in Resource Timing

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.2AI score0.00747EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2022/03/08 8:0 a.m.53 views

Media Foundation Information Disclosure Vulnerability

...

4.3CVSS4.2AI score0.02297EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/03/08 8:0 a.m.53 views

HEVC Video Extensions Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.02158EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/03/03 8:0 a.m.53 views

Chromium: CVE-2022-0799 Insufficient policy enforcement in Installer

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.00966EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/02/08 8:0 a.m.53 views

Windows DNS Server Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.04797EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/11 8:0 a.m.53 views

Microsoft Exchange Server Remote Code Execution Vulnerability

...

9CVSS9.1AI score0.01217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/11 8:0 a.m.53 views

Microsoft SharePoint Server Remote Code Execution Vulnerability

...

9CVSS8.7AI score0.03023EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/11 8:0 a.m.53 views

Windows Defender Credential Guard Security Feature Bypass Vulnerability

...

4.9CVSS5.9AI score0.009EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/11 8:0 a.m.53 views

Microsoft Exchange Server Remote Code Execution Vulnerability

...

9CVSS9.1AI score0.0106EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/11/09 8:0 a.m.53 views

Active Directory Domain Services Elevation of Privilege Vulnerability

...

8.8CVSS8.8AI score0.74265EPSS
Exploits10
Microsoft CVE
Microsoft CVE
added 2021/11/09 8:0 a.m.53 views

Microsoft Access Remote Code Execution Vulnerability

...

7.8CVSS7.7AI score0.03537EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/11/09 8:0 a.m.53 views

Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability

...

9CVSS9.3AI score0.01551EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/10/12 7:0 a.m.53 views

OpenSSL: CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT

...

7.4CVSS7.9AI score0.18339EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2021/09/14 7:0 a.m.53 views

Windows SMB Information Disclosure Vulnerability

...

5.5CVSS6.5AI score0.0074EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.53 views

Windows AF_UNIX Socket Provider Denial of Service Vulnerability

...

7.5CVSS7.7AI score0.03034EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.53 views

Microsoft Exchange Server Information Disclosure Vulnerability

...

7.5CVSS7.7AI score0.97502EPSS
Exploits2
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.53 views

Windows Certificate Spoofing Vulnerability

...

8.1CVSS9AI score0.02283EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/11 7:0 a.m.53 views

Chromium: CVE-2021-30545 Use after free in Extensions

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.01101EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/08 7:0 a.m.53 views

Microsoft SharePoint Server Spoofing Vulnerability

...

8.1CVSS7.6AI score0.04563EPSS
Exploits4
Microsoft CVE
Microsoft CVE
added 2021/05/27 7:0 a.m.53 views

Chromium: CVE-2021-30530 Out of bounds memory access in WebAudio

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.01181EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2021/05/27 7:0 a.m.53 views

Chromium: CVE-2021-30537 Insufficient policy enforcement in cookies

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.01143EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2021/05/27 7:0 a.m.53 views

Chromium: CVE-2021-30529 Use after free in Bookmarks

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.01004EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2021/05/11 7:0 a.m.53 views

Common Utilities Remote Code Execution Vulnerability

...

7.2CVSS6.9AI score0.02482EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/05/11 7:0 a.m.53 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.03047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/29 7:0 a.m.53 views

Chromium: CVE-2021-21229 Incorrect security UI in downloads

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.2AI score0.0085EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/15 6:40 p.m.53 views

Chromium: CVE-2021-21205 Insufficient policy enforcement in navigation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.1CVSS8.5AI score0.01473EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/15 6:40 p.m.53 views

Chromium: CVE-2021-21202 Use after free in extensions

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.6CVSS8.8AI score0.01022EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/13 7:0 a.m.53 views

Windows Overlay Filter Information Disclosure Vulnerability

...

5.5CVSS5.8AI score0.00806EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/02/09 8:0 a.m.53 views

Microsoft Teams iOS Information Disclosure Vulnerability

...

5.7CVSS6.7AI score0.02845EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/21 8:0 a.m.53 views

Chromium CVE-2021-21124: Potential user after free in Speech Recognizer

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS9.1AI score0.07851EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/12 8:0 a.m.53 views

Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

8.8CVSS8.2AI score0.02967EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/12 8:0 a.m.53 views

HEVC Video Extensions Remote Code Execution Vulnerability

...

9.3CVSS7.8AI score0.03837EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.53 views

Windows Update Orchestrator Service Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.00875EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/10/13 7:0 a.m.53 views

Windows Remote Desktop Service Denial of Service Vulnerability

A denial of service vulnerability exists in Windows Remote Desktop Service when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the Remote Desktop Service on the target system to stop...

7.8CVSS3.8AI score0.05418EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/10/13 7:0 a.m.53 views

Microsoft Office SharePoint XSS Vulnerability

A cross-site-scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint...

8.7CVSS0.9AI score0.01547EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/10/13 7:0 a.m.53 views

Microsoft SharePoint Reflective XSS Vulnerability

This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server. An authenticated attacker could exploit this vulnerability by sending a specially crafted request to an affected SharePoint server. The attacker who...

8.7CVSS0.8AI score0.01499EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/10/13 7:0 a.m.53 views

PowerShellGet Module WDAC Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in the PowerShellGet V2 module. An attacker who successfully exploited this vulnerability could bypass WDAC Windows Defender Application Control policy and execute arbitrary code on a policy locked-down machine. An attacker must have administrator...

7.2CVSS4.8AI score0.00803EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.53 views

Windows Modules Installer Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows Modules Installer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafte...

7.8CVSS4AI score0.01117EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.53 views

WinINet API Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that the Wininit.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. There are multiple ways an attacker could exploit the vulnerability: In a web-based atta...

8.8CVSS8.6AI score0.03741EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/01/14 8:0 a.m.53 views

.NET Framework Remote Code Execution Vulnerability

A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative us...

9.3CVSS3AI score0.17263EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/11/12 8:0 a.m.53 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker would have to log on ...

6.5CVSS1.7AI score0.03133EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/10/08 7:0 a.m.53 views

Microsoft Windows Setup Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft Windows Setup when it does not properly handle privileges. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could then install programs; view, change or delete data. To...

7.8CVSS3.3AI score0.00998EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/05/14 7:0 a.m.53 views

Microsoft SQL Server Analysis Services Information Disclosure Vulnerability

An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions. An attacker who successfully exploited the vulnerability could query tables or columns for which they do not have access rights. To exploit this vulnerability...

6.5CVSS2.2AI score0.05373EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2018/10/09 7:0 a.m.53 views

.NET Core Information Disclosure Vulnerability

An information disclosure vulnerability exists in .NET Core when authentication information is inadvertently exposed in a redirect. An attacker who successfully exploited this vulnerability could use the information to further compromise the web application. The security update addresses the...

7.5CVSS1.4AI score0.14833EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2017/06/13 7:0 a.m.53 views

Windows Search Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Windows Search handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full...

10CVSS2.3AI score0.7376EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2017/05/09 7:0 a.m.53 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that Microsoft browser JavaScript engines render content when handling objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. In a web-based...

7.6CVSS7.6AI score0.31582EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2017/05/09 7:0 a.m.53 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

7.8CVSS3.5AI score0.10034EPSS
Exploits4
Microsoft CVE
Microsoft CVE
added 2017/04/11 7:0 a.m.53 views

Microsoft Excel Information Disclosure Vulnerability

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could craft a special...

5.5CVSS1.1AI score0.2552EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2017/03/14 7:0 a.m.53 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

4.3CVSS1.9AI score0.4236EPSS
Exploits0
Total number of security vulnerabilities5000