Lucene search
K
MscveMost viewed

22103 matches found

Microsoft CVE
Microsoft CVE
added 2021/09/14 7:0 a.m.43 views

Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS7.5AI score0.04634EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/09/14 7:0 a.m.43 views

Windows Redirected Drive Buffering System Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.00445EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/09/02 7:0 a.m.43 views

Chromium: CVE-2021-30611 Use after free in WebRTC

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS7.8AI score0.02798EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/08/10 7:0 a.m.43 views

Windows User Account Profile Picture Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.00563EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.43 views

HEVC Video Extensions Remote Code Execution Vulnerability

...

7.8CVSS7.7AI score0.02177EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.43 views

Windows TCP/IP Driver Denial of Service Vulnerability

...

7.5CVSS7.6AI score0.03034EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.43 views

Azure AD Security Feature Bypass Vulnerability

...

8.1CVSS9.1AI score0.02247EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.43 views

Storage Spaces Controller Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.00491EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/07/13 7:0 a.m.43 views

Microsoft Bing Search Spoofing Vulnerability

...

6.5CVSS7AI score0.01472EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/11 7:0 a.m.43 views

Chromium: CVE-2021-30550 Use after free in Accessibility

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.00874EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/11 7:0 a.m.43 views

Chromium: CVE-2021-30549 Use after free in Spell check

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.00931EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/11 7:0 a.m.43 views

Chromium: CVE-2021-30546 Use after free in Autofill

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.01101EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/08 7:0 a.m.43 views

Server for NFS Information Disclosure Vulnerability

...

7.8CVSS7.6AI score0.03659EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/06/08 7:0 a.m.43 views

3D Viewer Information Disclosure Vulnerability

...

5.5CVSS5.6AI score0.02777EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/05/11 7:0 a.m.43 views

Visual Studio Code Remote Containers Extension Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.52751EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/05/11 7:0 a.m.43 views

Windows Media Foundation Core Remote Code Execution Vulnerability

...

7.8CVSS7.5AI score0.02253EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/05/11 7:0 a.m.43 views

Microsoft SharePoint Server Information Disclosure Vulnerability

...

6.5CVSS7.1AI score0.02079EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/13 7:0 a.m.43 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.7AI score0.02471EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/13 7:0 a.m.43 views

Windows Console Driver Denial of Service Vulnerability

...

5.5CVSS5.7AI score0.00648EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/04/13 7:0 a.m.43 views

Visual Studio Code Remote Code Execution Vulnerability

...

7.8CVSS7.6AI score0.02705EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/02/09 8:0 a.m.43 views

Windows Graphics Component Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.43849EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/02/09 8:0 a.m.43 views

Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability

...

6.8CVSS7AI score0.0196EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/21 8:0 a.m.43 views

Chromium CVE-2021-21136: Insufficient policy enforcement in WebView

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.6AI score0.04175EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/12 8:0 a.m.43 views

Microsoft SharePoint Elevation of Privilege Vulnerability

...

8CVSS8AI score0.0219EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/01/12 8:0 a.m.43 views

GDI+ Remote Code Execution Vulnerability

...

7.8CVSS7.7AI score0.03632EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/12/08 8:0 a.m.43 views

Microsoft Excel Remote Code Execution Vulnerability

...

9.3CVSS7.8AI score0.03308EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.43 views

Windows Win32k Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.01867EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.43 views

Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS7.7AI score0.03283EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.43 views

Remote Desktop Protocol Server Information Disclosure Vulnerability

...

7.7CVSS7.2AI score0.03731EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.43 views

Azure Sphere Unsigned Code Execution Vulnerability

...

8.8CVSS6.3AI score0.01378EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.43 views

AV1 Video Extension Remote Code Execution Vulnerability

...

10CVSS9.7AI score0.03411EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/11/10 8:0 a.m.43 views

Windows Remote Access Elevation of Privilege Vulnerability

...

7.8CVSS7.8AI score0.02641EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/10/13 7:0 a.m.43 views

Visual Studio Code Python Extension Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads a Jupyter notebook file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative us...

9.3CVSS3.2AI score0.03104EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/10/13 7:0 a.m.43 views

Jet Database Engine Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to...

9.3CVSS4.4AI score0.0382EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Xamarin.Forms Spoofing Vulnerability

A spoofing vulnerability manifests in Microsoft Xamarin.Forms due to the default settings on Android WebView version prior to 83.0.4103.106. This vulnerability could allow an attacker to execute arbitrary Javascript code on a target system. For the attack to be successful, the targeted user would...

8.8CVSS2.5AI score0.04006EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Microsoft Store Runtime Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The...

7.8CVSS3.7AI score0.00777EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Windows Storage Services Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges. To exploit the vulnerability, an attacker would first need code execution on a victim syste...

7.8CVSS4.2AI score0.01098EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Windows InstallService Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows InstallService improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The...

7.8CVSS5AI score0.00939EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Microsoft SharePoint Server Tampering Vulnerability

A tampering vulnerability exists when Microsoft SharePoint Server fails to properly handle profile data. An attacker who successfully exploited this vulnerability could modify a targeted user's profile data. To exploit the vulnerability, an attacker would need to be authenticated on an affected...

6.3CVSS1.8AI score0.01773EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Windows Camera Codec Pack Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user...

9.3CVSS3.5AI score0.04905EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Dynamics 365 on-premises when the server fails to properly sanitize web requests to an affected Dynamics server. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SQL service account. A...

8.8CVSS3.7AI score0.0335EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/08/11 7:0 a.m.43 views

Microsoft Outlook Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrativ...

9.3CVSS2.7AI score0.08876EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/08/11 7:0 a.m.43 views

Microsoft Office Click-to-Run Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run C2R components handle objects in memory. An attacker who successfully exploited the vulnerability could elevate privileges. The attacker would need to already have the ability to execute code on the syste...

9.3CVSS3.9AI score0.03717EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/07/14 7:0 a.m.43 views

Microsoft Edge PDF Information Disclosure Vulnerability

An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

6.5CVSS1.3AI score0.05294EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/07/14 7:0 a.m.43 views

Microsoft Project Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Project software when the software fails to check the source markup of a file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.04585EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/07/14 7:0 a.m.43 views

Windows Credential Enrollment Manager Service Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way that the Credential Enrollment Manager service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker...

7.8CVSS4.2AI score0.00708EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/06/09 7:0 a.m.43 views

Microsoft Edge (Chromium-based) in IE Mode Spoofing Vulnerability

A spoofing vulnerability exists when theMicrosoft Edge Chromium-based in IE Mode improperly handles specific redirects. An attacker who successfully exploits the IE Mode vulnerability could trick a user into believing that the user was on a legitimate website. The specially crafted website could...

6.1CVSS1.8AI score0.01811EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2020/06/09 7:0 a.m.43 views

System Center Operations Manager Spoofing Vulnerability

A spoofing vulnerability exists when System Center Operations Manager SCOM does not properly sanitize a specially crafted web request to an affected SCOM 2016 Web Console instance. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SCOM...

5.4CVSS1.7AI score0.01257EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/05/12 7:0 a.m.43 views

Microsoft SharePoint Information Disclosure Vulnerability

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks a variant of cross-site request forgery, CSRF. When users are simultaneously logged in to Microsoft SharePoint Server and visit a...

6.5CVSS1.5AI score0.0274EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/05/12 7:0 a.m.43 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

7.8CVSS3.5AI score0.01284EPSS
Exploits0
Total number of security vulnerabilities5000