21727 matches found
Microsoft SQL Server Reporting Services XSS Vulnerability
A cross-site scripting XSS vulnerability exists when Microsoft SQL Server Reporting Services SSRS does not properly sanitize a specially-crafted web request to an affected SSRS server. An attacker who successfully exploited the vulnerability could run scripts in the context of the targeted user...
Bluetooth Low Energy Advisory
Executive Summary Microsoft is aware of an issue that affects the Bluetooth Low Energy BLE version of FIDO Security Keys. Due to a misconfiguration in the Bluetooth pairing protocols, it is possible for an attacker who is physically close to a user at the moment he/she uses the security key to...
Windows Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Windows AppX Deployment Service AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could then install programs; view, change or delete data. To...
Skype for Business and Lync Spoofing Vulnerability
A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected server. The attacker who successfully exploited...
Windows Deployment Services TFTP Server Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code with elevated permissions on a target system. To exploit the vulnerability, an...
Windows Win32k Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data...
Device Guard Code Integrity Policy Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session. An attacker who successfully exploited this vulnerability could inject code into a trusted PowerShell process to bypass the Device Guard Code...
Microsoft Guidance for Lazy FP State Restore
Executive summary On January 3, 2018, Microsoft released an advisory and security updates related to a newly-discovered class of hardware vulnerabilities known as Spectre and Meltdown involving speculative execution side channels that affect AMD, ARM, and Intel CPUs to varying degrees. On June 13...
Windows Remote Assistance Information Disclosure Vulnerability
An information disclosure vulnerability exists when Windows Remote Assistance incorrectly processes XML External Entities XXE. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this condition, an attacker would ne...
Microsoft Edge Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists when Microsoft Edge improperly handles redirect requests. The vulnerability allows Microsoft Edge to bypass Cross-Origin Resource Sharing CORS redirect restrictions, and to follow redirect requests that should otherwise be ignored. An attacker who...
Scripting Engine Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...
Microsoft Edge Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists in Microsoft Edge when the Edge Content Security Policy CSP fails to properly validate certain specially crafted documents. An attacker who exploited the bypass could trick a user into loading a page containing malicious content. To exploit the bypas...
Microsoft Browser Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the...
Microsoft Exchange Server Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Microsoft Exchange Outlook Web Access OWA fails to properly handle web requests. An attacker who successfully exploited this vulnerability could perform script/content injection attacks and attempt to trick the user into disclosing sensitive...
SQL RDBMS Engine Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Microsoft SQL Server when it improperly handles pointer casting. An attacker could exploit the vulnerability if the attacker's credentials allow access to an affected SQL server database. An attacker who successfully exploited this vulnerability...
Oracle Outside In Vulnerabilities
This security update addresses the following vulnerabilities, which are described in Oracle Critical Patch Update Advisory – July 2016 Remote Code Execution: CVE-2016-3575, CVE-2016-3581, CVE-2016-3582, CVE-2016-3583, CVE-2016-3595, CVE-2016-3594, CVE-2015-6014, CVE-2016-3593, CVE-2016-3592,...
Microsoft DirectX Graphics Kernel Subsystem Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Windows improperly handles objects in memory and incorrectly maps kernel memory. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to take control over the affected system. An...
Chromium: CVE-2025-3074 Inappropriate implementation in Downloads
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability
Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
Windows Hyper-V Security Feature Bypass Vulnerability
...
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability
...
Chromium: CVE-2024-3159 Out of bounds memory access in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
...
Chromium: CVE-2024-1939 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-0806 Use after free in Passwords
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Adobe Systems Incorporated: CVE-2024-20721 Improper Input Validation Denial of Service Vulnerability
...
Microsoft Office Remote Code Execution Vulnerability
A security vulnerability exists in FBX that could lead to remote code execution. To mitigate this vulnerability, the ability to insert FBX files has been disabled in Word, Excel, PowerPoint and Outlook for Windows and Mac. Versions of Office that had this feature enabled will no longer have acces...
Chromium: CVE-2024-0223 Heap buffer overflow in ANGLE
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
ASP.NET Security Feature Bypass Vulnerability
...
Windows Authentication Denial of Service Vulnerability
...
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
...
Chromium: CVE-2023-5480 Inappropriate implementation in Payments
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
...
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
...
Microsoft Office Remote Code Execution Vulnerability
...
Chromium: CVE-2023-3732 Out of bounds memory access in Mojo
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Image Acquisition Elevation of Privilege Vulnerability
...
Win32k Elevation of Privilege Vulnerability
...
Microsoft SharePoint Server Remote Code Execution Vulnerability
...
Windows Remote Procedure Call Service (RPCSS) Elevation of Privilege Vulnerability
...
Windows Lock Screen Security Feature Bypass Vulnerability
...
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
...
Windows HTTP.sys Elevation of Privilege Vulnerability
...
Remote Procedure Call Runtime Remote Code Execution Vulnerability
...
MITRE: CVE-2019-15126 Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device
An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors related to state transitions in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a...
Chromium: CVE-2023-0702 Type Confusion in Data Transfer
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft Outlook for Mac Spoofing Vulnerability
...
Chromium: CVE-2022-4190 Insufficient data validation in Directory
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...