Lucene search
K
MscveMost viewed

21767 matches found

Microsoft CVE
Microsoft CVE
•added 2021/07/13 7:0 a.m.•46 views

Microsoft SharePoint Server Spoofing Vulnerability

...

5.3CVSS6.9AI score0.01767EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/07/13 7:0 a.m.•46 views

Windows InstallService Elevation of Privilege Vulnerability

...

6.1CVSS6.6AI score0.00744EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/05/27 7:0 a.m.•46 views

Chromium: CVE-2021-30527 Use after free in WebUI

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00962EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2021/05/27 7:0 a.m.•46 views

Chromium: CVE-2021-30539 Insufficient policy enforcement in content security policy

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.8CVSS6.6AI score0.01284EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2021/05/11 7:0 a.m.•46 views

Windows Graphics Component Elevation of Privilege Vulnerability

...

7.8CVSS6.7AI score0.01368EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/04/13 7:0 a.m.•46 views

Windows Media Video Decoder Remote Code Execution Vulnerability

...

7.8CVSS7.7AI score0.01596EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/04/13 7:0 a.m.•46 views

Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

8.8CVSS8.9AI score0.02536EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2021/03/09 8:0 a.m.•46 views

Quantum Development Kit for Visual Studio Code Remote Code Execution Vulnerability

...

9.3CVSS7.8AI score0.03726EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/12/08 8:0 a.m.•46 views

Azure DevOps Server and Team Foundation Services Spoofing Vulnerability

...

5.4CVSS6.5AI score0.01387EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/11/10 8:0 a.m.•46 views

Visual Studio Code JSHint Extension Remote Code Execution Vulnerability

...

9.3CVSS7.8AI score0.03551EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/11/10 8:0 a.m.•46 views

HEVC Video Extensions Remote Code Execution Vulnerability

...

9.3CVSS7.8AI score0.03951EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/11/10 8:0 a.m.•46 views

Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability

...

9.3CVSS7.9AI score0.03824EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/10/13 7:0 a.m.•46 views

Windows Kernel Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker would have to log on ...

5.5CVSS1.7AI score0.02334EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/09/08 7:0 a.m.•46 views

TLS Information Disclosure Vulnerability

A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel. To exploit the vulnerability, an attacker would have to...

5.4CVSS1AI score0.00896EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/09/08 7:0 a.m.•46 views

Windows Routing Utilities Denial of Service

A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. To exploit this vulnerability, an attacker would have to log on to an affected...

5.5CVSS2.9AI score0.01221EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/08/11 7:0 a.m.•46 views

Microsoft Word Information Disclosure Vulnerability

An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could craft a special...

5.5CVSS1AI score0.04553EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/07/14 7:0 a.m.•46 views

Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system,...

9CVSS2.4AI score0.05532EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/07/14 7:0 a.m.•46 views

Windows AppX Deployment Extensions Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files. To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privilege...

7.8CVSS4AI score0.00739EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/07/14 7:0 a.m.•46 views

Microsoft Defender Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could exploit the...

7.8CVSS4.2AI score0.0072EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/06/09 7:0 a.m.•46 views

Windows Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files. To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or spoof a network printer and trick a user into installing a malicio...

8.8CVSS2.8AI score0.59518EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/05/12 7:0 a.m.•46 views

Microsoft Power BI Report Server Spoofing Vulnerability

A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments. An authenticated attacker could exploit the vulnerability by uploading a specially crafted payload and sending it to the user. The attacker who successfully...

6.8CVSS2.3AI score0.02388EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/04/14 7:0 a.m.•46 views

Microsoft Visual Studio Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service improperly handles file permissions. An attacker who successfully exploited this vulnerability could overwrite arbitrary file content in the security context of the local system. To exploit this...

5.5CVSS2.6AI score0.0076EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2020/04/14 7:0 a.m.•46 views

Windows Kernel Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could run a specially...

7.8CVSS3.4AI score0.04447EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2020/02/11 8:0 a.m.•46 views

Microsoft Outlook Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Microsoft Outlook software when it improperly handles the parsing of URI formats. The security feature bypass by itself does not allow arbitrary code execution. However, to successfully exploit the vulnerability, an attacker would have to use it i...

6.5CVSS4.1AI score0.04992EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/09/10 7:0 a.m.•46 views

Windows Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that ws2ifsl.sys Winsock handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated privileges. To exploit the vulnerability, a locally authenticated attacker could run a specially...

7.8CVSS3.4AI score0.19254EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2019/08/13 7:0 a.m.•46 views

Windows DHCP Client Remote Code Execution Vulnerability

A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client. An attacker who successfully exploited the vulnerability could run arbitrary code on the client machine. To exploit the vulnerability, an attacker could send...

9.8CVSS3.4AI score0.03968EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/07/09 7:0 a.m.•46 views

Windows RPCSS Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in rpcss.dll when the RPC service Activation Kernel improperly handles an RPC request. To exploit this vulnerability, a low level authenticated attacker could run a specially crafted application. The security update addresses this vulnerability by...

7.8CVSS4.2AI score0.0491EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2019/07/09 7:0 a.m.•46 views

WCF/WIF SAML Token Authentication Bypass Vulnerability

An authentication bypass vulnerability exists in Windows Communication Foundation WCF and Windows Identity Foundation WIF, allowing signing of SAML tokens with arbitrary symmetric keys. This vulnerability allows an attacker to impersonate another user, which can lead to elevation of privileges. T...

7.5CVSS4.3AI score0.06024EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2019/04/09 7:0 a.m.•46 views

Hyper-V vSMB Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate vSMB packet data. An attacker who successfully exploited these vulnerabilities could execute arbitrary code on a target operating system. To exploit these vulnerabilities, an attacker...

9.8CVSS4.5AI score0.06999EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2018/10/09 7:0 a.m.•46 views

MS XML Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input. An attacker who successfully exploited the vulnerability could run malicious code remotely to take control of the user’s system. To exploit the vulnerability, an attacker could hos...

9.3CVSS4.1AI score0.22187EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2018/09/11 7:0 a.m.•46 views

OData Denial of Service Vulnerability

A denial of service vulnerability exists when OData Library improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an OData web application. A remote unauthenticated attacker could exploit this vulnerability by issuing...

7.5CVSS3.1AI score0.25745EPSS
Exploits5
Microsoft CVE
Microsoft CVE
•added 2018/08/14 7:0 a.m.•46 views

Microsoft SQL Server Remote Code Execution Vulnerability

A buffer overflow vulnerability exists in the Microsoft SQL Server that could allow remote code execution on an affected system. An attacker who successfully exploited this vulnerability could execute code in the context of the SQL Server Database Engine service account. To exploit the...

10CVSS3.1AI score0.29208EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2018/01/09 8:0 a.m.•46 views

Microsoft SharePoint Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint...

9CVSS1.2AI score0.06371EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/12/12 8:0 a.m.•46 views

Microsoft Windows Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows its:// protocol handler unnecessarily sends traffic to a remote site in order to determine the zone of a provided URL. This could potentially result in the disclosure of sensitive information to a malicious site. To exploit the...

6.5CVSS1.1AI score0.09617EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/09/12 7:0 a.m.•46 views

Windows DHCP Server Remote Code Execution Vulnerability

A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server. An attacker who successfully exploited the vulnerability could either run arbitrary code on the DHCP failover server or cause the DHCP service to...

9.8CVSS3.2AI score0.27499EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/07/27 7:0 a.m.•46 views

Microsoft Office Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that Microsoft Offiice parses specially crafted email messages. An attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or crea...

9.3CVSS4.1AI score0.20077EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/10/11 7:0 a.m.•46 views

Windows Kernel Local Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Kernel API improperly allows a user to access sensitive registry information. An attacker who successfully exploited the vulnerability could gain access to user account information that is not intended for the user. A locally...

5CVSS3.2AI score0.05105EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/09/13 7:0 a.m.•46 views

Microsoft Outlook Information Disclosure Vulnerability

An information disclosure vulnerability exists in the way that Microsoft Exchange Server parses email messages. The vulnerability could allow an attacker to discover confidential user information that is contained in Microsoft Outlook applications. To exploit the vulnerability, an attacker could...

4.3CVSS4.4AI score0.13457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/11 8:0 a.m.•45 views

Microsoft Outlook Spoofing Vulnerability

...

5.3CVSS5.8AI score0.01063EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/11 8:0 a.m.•45 views

Windows Telephony Service Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.01838EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/10/08 7:0 a.m.•45 views

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

8.8CVSS7.1AI score0.01326EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/10/08 7:0 a.m.•45 views

Windows Kernel Elevation of Privilege Vulnerability

...

7CVSS7.1AI score0.00375EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/08/13 7:0 a.m.•45 views

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

...

7.8CVSS7.1AI score0.00839EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/07/09 7:0 a.m.•45 views

Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

...

7.5CVSS7.6AI score0.02439EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/04/09 7:0 a.m.•45 views

Secure Boot Security Feature Bypass Vulnerability

...

6.7CVSS7.3AI score0.10561EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/12 7:0 a.m.•45 views

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

8.8CVSS7.1AI score0.01947EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/07 6:54 p.m.•45 views

Chromium: CVE-2024-2173 Out of bounds memory access in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS7.3AI score0.13556EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/02/23 6:57 p.m.•45 views

Chromium: CVE-2024-1670 Use after free in Mojo

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.08994EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/02/13 8:0 a.m.•45 views

Windows SmartScreen Security Feature Bypass Vulnerability

...

7.6CVSS7.3AI score0.30344EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/01/09 8:0 a.m.•45 views

Windows Kerberos Security Feature Bypass Vulnerability

...

8.8CVSS7.1AI score0.17168EPSS
Exploits1
Total number of security vulnerabilities5000