Lucene search
K
MscveMost viewed

22103 matches found

Microsoft CVE
Microsoft CVE
•added 2021/04/13 7:0 a.m.•47 views

Windows Media Video Decoder Remote Code Execution Vulnerability

...

7.8CVSS7.7AI score0.01596EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/04/13 7:0 a.m.•47 views

Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

8.8CVSS8.9AI score0.02536EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/03/09 8:0 a.m.•47 views

Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability

...

9.3CVSS7.7AI score0.61357EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/02/09 8:0 a.m.•47 views

Windows Fax Service Remote Code Execution Vulnerability

...

9.8CVSS9.5AI score0.0269EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/02/09 8:0 a.m.•47 views

Skype for Business and Lync Spoofing Vulnerability

...

7.1CVSS7.3AI score0.0162EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/12/08 8:0 a.m.•47 views

Windows Backup Engine Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.01294EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/12/08 8:0 a.m.•47 views

Azure DevOps Server Spoofing Vulnerability

...

6.4CVSS6AI score0.01234EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/10/13 7:0 a.m.•47 views

Windows Hyper-V Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could gain elevated privileges on a target operating system. This vulnerability by itself does not allow...

7.8CVSS3.9AI score0.00875EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/10/13 7:0 a.m.•47 views

Microsoft Office Click-to-Run Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run C2R AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges. To exploit this vulnerability, an attacker would need to convince a user to open a...

7.8CVSS3.1AI score0.03224EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/10/13 7:0 a.m.•47 views

Network Watcher Agent Virtual Machine Extension for Linux Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Network Watcher Agent virtual machine extension for Linux. An attacker who successfully exploited this vulnerability could execute code with elevated privileges. To exploit this vulnerability, an attacker would have to be present as a user on the...

7.8CVSS3.8AI score0.00967EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/10/13 7:0 a.m.•47 views

Windows Camera Codec Pack Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user...

9.3CVSS3.5AI score0.03871EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/09/08 7:0 a.m.•47 views

TLS Information Disclosure Vulnerability

A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel. To exploit the vulnerability, an attacker would have to...

5.4CVSS1AI score0.00896EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/09/08 7:0 a.m.•47 views

Windows Text Service Module Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows Text Service Module improperly handles memory. An attacker who successfully exploited the vulnerability could gain execution on a victim system. An attacker could host a specially crafted website that is designed to exploit the...

7.6CVSS3AI score0.03264EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/09/08 7:0 a.m.•47 views

Windows Routing Utilities Denial of Service

A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. To exploit this vulnerability, an attacker would have to log on to an affected...

5.5CVSS2.9AI score0.01221EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/09/08 7:0 a.m.•47 views

Windows UPnP Service Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play UPnP service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs;...

7.8CVSS2.4AI score0.00933EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/08/11 7:0 a.m.•47 views

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service LSASS when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause an elevation of privilege on the targ...

8.8CVSS3.7AI score0.03264EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/08/11 7:0 a.m.•47 views

Microsoft Word Information Disclosure Vulnerability

An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could craft a special...

5.5CVSS1AI score0.04553EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/07/14 7:0 a.m.•47 views

Windows AppX Deployment Extensions Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files. To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privilege...

7.8CVSS4AI score0.00739EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/07/14 7:0 a.m.•47 views

LNK Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user...

9.3CVSS4.8AI score0.75808EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/05/12 7:0 a.m.•47 views

Microsoft Edge Spoofing Vulnerability

A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content. An attacker who successfully exploited this vulnerability could trick a user by redirecting the user to a specially crafted website. The specially crafted website could either spoof content or serve as a piv...

4.3CVSS1AI score0.01999EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/04/14 7:0 a.m.•47 views

Windows Kernel Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could run a specially...

7.8CVSS3.4AI score0.04447EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2020/02/11 8:0 a.m.•47 views

Microsoft Outlook Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Microsoft Outlook software when it improperly handles the parsing of URI formats. The security feature bypass by itself does not allow arbitrary code execution. However, to successfully exploit the vulnerability, an attacker would have to use it i...

6.5CVSS4.1AI score0.04992EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/11/12 8:0 a.m.•47 views

NetLogon Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Windows Netlogon improperly handles a secure communications channel. An attacker who successfully exploited the vulnerability could downgrade aspects of the connection allowing for further modification of the transmission. To exploit the...

8.1CVSS2.9AI score0.02574EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/10/08 7:0 a.m.•47 views

Microsoft SharePoint Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft SharePoint. An attacker who successfully exploited this vulnerability could attempt to impersonate another user of the SharePoint server. To exploit this vulnerability, an authenticated attacker would send a specially crafted request to ...

6.5CVSS4AI score0.02442EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/09/10 7:0 a.m.•47 views

Windows Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that ws2ifsl.sys Winsock handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated privileges. To exploit the vulnerability, a locally authenticated attacker could run a specially...

7.8CVSS3.4AI score0.19254EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2019/08/13 7:0 a.m.•47 views

Windows DHCP Client Remote Code Execution Vulnerability

A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client. An attacker who successfully exploited the vulnerability could run arbitrary code on the client machine. To exploit the vulnerability, an attacker could send...

9.8CVSS3.4AI score0.03968EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/04/09 7:0 a.m.•47 views

Windows Admin Center Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows Admin Center improperly impersonates operations in certain situations. An attacker who successfully exploited this vulnerability could gain elevated privileges. An attacker with unprivileged access to a vulnerable system could exploit th...

9.8CVSS6.5AI score0.03537EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2018/09/11 7:0 a.m.•47 views

OData Denial of Service Vulnerability

A denial of service vulnerability exists when OData Library improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an OData web application. A remote unauthenticated attacker could exploit this vulnerability by issuing...

7.5CVSS3.1AI score0.25745EPSS
Exploits5
Microsoft CVE
Microsoft CVE
•added 2018/08/14 7:0 a.m.•47 views

Microsoft SQL Server Remote Code Execution Vulnerability

A buffer overflow vulnerability exists in the Microsoft SQL Server that could allow remote code execution on an affected system. An attacker who successfully exploited this vulnerability could execute code in the context of the SQL Server Database Engine service account. To exploit the...

10CVSS3.1AI score0.29208EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2018/04/10 7:0 a.m.•47 views

Microsoft Office Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.24343EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/09/12 7:0 a.m.•47 views

Windows DHCP Server Remote Code Execution Vulnerability

A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server. An attacker who successfully exploited the vulnerability could either run arbitrary code on the DHCP failover server or cause the DHCP service to...

9.8CVSS3.2AI score0.27499EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/09/12 7:0 a.m.•47 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that Microsoft browser JavaScript engines render content when handling objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. In a web-based...

7.6CVSS7.3AI score0.11923EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/06/13 7:0 a.m.•47 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory. To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information t...

6.5CVSS3.1AI score0.14265EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2016/10/11 7:0 a.m.•47 views

Windows Kernel Local Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Kernel API improperly allows a user to access sensitive registry information. An attacker who successfully exploited the vulnerability could gain access to user account information that is not intended for the user. A locally...

5CVSS3.2AI score0.05105EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/08/09 7:0 a.m.•47 views

Secure Boot Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Windows Secure Boot improperly loads a boot manager that is affected by the vulnerability. An attacker who successfully exploited this vulnerability could disable code integrity checks, allowing test-signed executables and drivers to be loaded...

6.6CVSS4.1AI score0.05008EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/04/12 7:0 a.m.•47 views

April 2016 Adobe Flash Security Update

This security update addresses the following vulnerabilities, which are described in Adobe Security Bulletin APSB16-10: CVE-2016-1006, CVE-2016-1011, CVE-2016-1012, CVE-2016-1013, CVE-2016-1014, CVE-2016-1015, CVE-2016-1016, CVE-2016-1017, CVE-2016-1018, and CVE-2016-1019...

10CVSS8.7AI score0.25639EPSS
Exploits5
Microsoft CVE
Microsoft CVE
•added 2025/04/08 7:0 a.m.•46 views

Visual Studio Code Elevation of Privilege Vulnerability

Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally...

6.8CVSS7.4AI score0.00393EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/11 8:0 a.m.•46 views

Windows Telephony Service Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.01838EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/10/08 7:0 a.m.•46 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

8.8CVSS7.1AI score0.01326EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/10/08 7:0 a.m.•46 views

Windows Kernel Elevation of Privilege Vulnerability

...

7CVSS7.1AI score0.00375EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/08/13 7:0 a.m.•46 views

Windows Update Stack Elevation of Privilege Vulnerability

...

7.8CVSS7AI score0.00651EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/08/13 7:0 a.m.•46 views

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

...

7.8CVSS7.1AI score0.00839EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/07/09 7:0 a.m.•46 views

Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

...

7.5CVSS7.6AI score0.02439EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/05/14 7:0 a.m.•46 views

Microsoft Power BI Client JavaScript SDK Information Disclosure Vulnerability

...

6.5CVSS6.6AI score0.01748EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/04/09 7:0 a.m.•46 views

Secure Boot Security Feature Bypass Vulnerability

...

6.7CVSS7.3AI score0.10561EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/04/09 7:0 a.m.•46 views

Lenovo: CVE-2024-23594 Stack buffer overflow in Lenovo system recovery boot manager

...

6.7CVSS7.3AI score0.10561EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/07 6:54 p.m.•46 views

Chromium: CVE-2024-2173 Out of bounds memory access in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS7.3AI score0.13556EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/02/23 6:57 p.m.•46 views

Chromium: CVE-2024-1670 Use after free in Mojo

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.08994EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/02/13 8:0 a.m.•46 views

Windows SmartScreen Security Feature Bypass Vulnerability

...

7.6CVSS7.3AI score0.30344EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/01/09 8:0 a.m.•46 views

Windows Kerberos Security Feature Bypass Vulnerability

...

8.8CVSS7.1AI score0.17168EPSS
Exploits1
Total number of security vulnerabilities5000