21711 matches found
Microsoft Excel Remote Code Execution Vulnerability
...
Microsoft Office Visio Remote Code Execution Vulnerability
...
Skype Extension for Chrome Information Disclosure Vulnerability
...
Microsoft Excel Information Disclosure Vulnerability
...
Roaming Security Rights Management Services Remote Code Execution Vulnerability
...
Windows Geolocation Service Remote Code Execution Vulnerability
...
Windows DWM Core Library Elevation of Privilege Vulnerability
...
Windows Setup Elevation of Privilege Vulnerability
...
Visual Studio Code Spoofing Vulnerability
...
Remote Desktop Protocol Client Information Disclosure Vulnerability
...
Microsoft Surface Pro 3 Security Feature Bypass Vulnerability
...
Windows Kernel Elevation of Privilege Vulnerability
...
Windows HTTP.sys Elevation of Privilege Vulnerability
...
Chromium: CVE-2021-30629 Use after free in Permissions
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows Redirected Drive Buffering System Elevation of Privilege Vulnerability
...
Windows User Account Profile Picture Elevation of Privilege Vulnerability
...
Chromium: CVE-2021-30592 Out of bounds write in Tab Groups
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Visual Studio Code Remote Code Execution Vulnerability
...
Storage Spaces Controller Elevation of Privilege Vulnerability
...
Chromium: CVE-2021-30550 Use after free in Accessibility
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2021-30549 Use after free in Spell check
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2021-30546 Use after free in Autofill
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Server for NFS Information Disclosure Vulnerability
...
Windows Kernel Elevation of Privilege Vulnerability
...
3D Viewer Information Disclosure Vulnerability
...
Visual Studio Code Remote Containers Extension Remote Code Execution Vulnerability
...
Microsoft Office Remote Code Execution Vulnerability
...
Windows Console Driver Denial of Service Vulnerability
...
Chromium CVE-2021-21165: Object lifecycle issue in audio
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Windows DirectX Information Disclosure Vulnerability
...
Microsoft SharePoint Information Disclosure Vulnerability
...
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability
...
Microsoft SharePoint Elevation of Privilege Vulnerability
...
Microsoft Excel Remote Code Execution Vulnerability
...
Microsoft SharePoint Server Spoofing Vulnerability
...
Microsoft Excel Remote Code Execution Vulnerability
...
Windows Win32k Elevation of Privilege Vulnerability
...
Azure Sphere Unsigned Code Execution Vulnerability
...
Windows Common Log File System Driver Elevation of Privilege Vulnerability
...
Visual Studio Code Python Extension Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads a Jupyter notebook file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative us...
Microsoft Excel Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...
Jet Database Engine Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to...
Microsoft Store Runtime Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The...
Windows Defender Application Control Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists in Windows Defender Application Control WDAC which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC. To exploit the...
Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft Dynamics 365 on-premises when the server fails to properly sanitize web requests to an affected Dynamics server. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SQL service account. A...
Microsoft Office Click-to-Run Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run C2R components handle objects in memory. An attacker who successfully exploited the vulnerability could elevate privileges. The attacker would need to already have the ability to execute code on the syste...
Microsoft Project Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft Project software when the software fails to check the source markup of a file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...
System Center Operations Manager Spoofing Vulnerability
A spoofing vulnerability exists when System Center Operations Manager SCOM does not properly sanitize a specially crafted web request to an affected SCOM 2016 Web Console instance. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SCOM...
Microsoft Edge (Chromium-based) in IE Mode Spoofing Vulnerability
A spoofing vulnerability exists when theMicrosoft Edge Chromium-based in IE Mode improperly handles specific redirects. An attacker who successfully exploits the IE Mode vulnerability could trick a user into believing that the user was on a legitimate website. The specially crafted website could...
Visual Studio Code Python Extension Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads workspace settings from a notebook file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...