Lucene search
K
MscveMost viewed

21761 matches found

Microsoft CVE
Microsoft CVE
•added 2017/05/09 7:0 a.m.•35 views

Microsoft Edge Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser. An attacker who successfully exploited this vulnerability could gain elevated privileges and break out of the Edge AppContainer sandbox. The...

8.3CVSS3.4AI score0.0308EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/04/11 7:0 a.m.•35 views

Windows Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Microsoft Windows fails to properly sanitize handles in memory. An attacker who successfully exploited the vulnerability could run arbitrary code as System. An attacker could then install programs; view, change, or delete data; or create new...

7.8CVSS3.1AI score0.03338EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2017/04/11 7:0 a.m.•35 views

Hyper-V Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating syste...

7.6CVSS3.9AI score0.03296EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/03/14 7:0 a.m.•35 views

Microsoft Edge Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Microsoft Edge improperly handles requests of different origins. The vulnerability allows Microsoft Edge to bypass Same-Origin Policy SOP restrictions, and to allow requests that should otherwise be ignored. An attacker who successfully exploite...

4.2CVSS1.3AI score0.28545EPSS
Exploits3
Microsoft CVE
Microsoft CVE
•added 2017/03/14 7:0 a.m.•35 views

Windows DLL Loading Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Windows improperly validates input before loading dynamic link library DLL files. An attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete...

9.3CVSS4.6AI score0.37493EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/03/14 7:0 a.m.•35 views

Windows Graphics Component Remote Code Execution Vulnerability

A remote code execution vulnerability exists due to the way the Windows Graphics Component handles objects in memory. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or creat...

7.6CVSS6.8AI score0.17594EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/03/14 7:0 a.m.•35 views

Microsoft Lync for Mac Certificate Validation Vulnerability

A security feature bypass exists when the Lync for Mac 2011 client fails to properly validate certificates. An attacker who successfully exploited this vulnerability could tamper with trusted communications between the server and target client. To exploit the vulnerability, an attacker would need...

7.5CVSS2.5AI score0.07879EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2017/03/14 7:0 a.m.•35 views

Microsoft Office Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.16607EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/11/08 8:0 a.m.•35 views

Media Foundation Memory Corruption Vulnerability

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an...

9.3CVSS2.5AI score0.21545EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/11/08 8:0 a.m.•35 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully...

8.8CVSS7.6AI score0.79687EPSS
Exploits6
Microsoft CVE
Microsoft CVE
•added 2016/10/11 7:0 a.m.•35 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft browsers leave credential data in memory. An attacker who successfully exploited this vulnerability could harvest credentials from a memory dump of the browser process. An attacker would need access to a dump of memory from th...

5.3CVSS3.6AI score0.07936EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/10/11 7:0 a.m.•35 views

GDI+ Information Disclosure Vulnerability

An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in memory, allowing an attacker to retrieve information from a targeted system. An attacker who successfully exploited this vulnerability could use the retrieved information to...

5.5CVSS3AI score0.53653EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/10/11 7:0 a.m.•35 views

GDI+ Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or dele...

9.3CVSS7.7AI score0.68684EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/09/13 7:0 a.m.•35 views

Microsoft Office Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on wit...

9.3CVSS2.6AI score0.54809EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2016/09/13 7:0 a.m.•35 views

September 2016 Adobe Flash Security Update

This security update addresses the following vulnerabilities, which are described in Adobe Security Bulletin APSB16-29: CVE-2016-4271, CVE-2016-4272, CVE-2016-4274, CVE-2016-4275, CVE-2016-4276, CVE-2016-4277, CVE-2016-4278, CVE-2016-4279, CVE-2016-4280, CVE-2016-4281, CVE-2016-4282, CVE-2016-428...

9.3CVSS8.1AI score0.19443EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2016/07/12 7:0 a.m.•35 views

Microsoft Office Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on wit...

9.3CVSS2.6AI score0.2037EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/06/14 7:0 a.m.•35 views

Windows NetLogon Memory Corruption Remote Code Execution Vulnerability

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution when Windows improperly handles objects in memory. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. To exploit the...

9CVSS2.8AI score0.13336EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/06/14 7:0 a.m.•35 views

Windows PDF Information Disclosure Vulnerability

An information disclosure vulnerability exists in Microsoft Windows when a user opens a specially crafted PDF file. An attacker who successfully exploited the vulnerability could read memory in the context of the current user. To exploit the vulnerability, an attacker would have to trick the user...

9.3CVSS2.2AI score0.33569EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/06/14 7:0 a.m.•35 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploit...

7.6CVSS7.6AI score0.17401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2016/06/14 7:0 a.m.•35 views

Internet Explorer Memory Corruption Vulnerability

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerabilit...

9.3CVSS1.5AI score0.50996EPSS
Exploits5
Microsoft CVE
Microsoft CVE
•added 2016/06/14 7:0 a.m.•35 views

Windows Graphics Component Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Windows Graphics Component GDI32.dll fails to properly handle objects in memory, allowing an attacker to retrieve information that could lead to an Address Space Layout Randomization ASLR bypass. An attacker who successfully exploited this...

4.3CVSS2.8AI score0.24988EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2016/05/10 7:0 a.m.•35 views

Windows Graphics Component Remote Code Execution Vulnerability

A remote code execution vulnerability exists due to the way the Windows Graphics Component handles objects in memory. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or creat...

9.3CVSS8.2AI score0.48585EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/04/03 7:0 a.m.•34 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

8.8CVSS7.5AI score0.00884EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/03/11 7:0 a.m.•34 views

Windows Hyper-V Elevation of Privilege Vulnerability

Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7.8CVSS7.5AI score0.00497EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/14 8:0 a.m.•34 views

Windows COM Server Information Disclosure Vulnerability

...

6.5CVSS7.1AI score0.00693EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/12/10 8:0 a.m.•34 views

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

...

7.5CVSS7AI score0.83642EPSS
Exploits6
Microsoft CVE
Microsoft CVE
•added 2024/12/10 8:0 a.m.•34 views

Windows Common Log File System Driver Elevation of Privilege Vulnerability

...

7.8CVSS7AI score0.01042EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/13 12:5 a.m.•34 views

Chromium: CVE-2024-8639 Use after free in Autofill

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.4AI score0.00344EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/10 7:0 a.m.•34 views

Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.01623EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/08/13 7:0 a.m.•34 views

Redhat: CVE-2023-40547 Shim - RCE in HTTP boot support may lead to secure boot bypass

...

8.3CVSS7AI score0.04852EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/08/08 3:53 p.m.•34 views

Chromium: CVE-2024-7550 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.00597EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/04/18 4:52 p.m.•34 views

Chromium: CVE-2024-3839 Out of bounds read in Fonts

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS7.7AI score0.00683EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/04/18 4:52 p.m.•34 views

Chromium: CVE-2024-3837 Use after free in QUIC

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS9AI score0.0094EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/04/09 7:0 a.m.•34 views

Secure Boot Security Feature Bypass Vulnerability

...

6.8CVSS7.3AI score0.10561EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/04/09 7:0 a.m.•34 views

Windows DNS Server Remote Code Execution Vulnerability

...

7.2CVSS7.3AI score0.01822EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/22 7:0 a.m.•34 views

Chromium: CVE-2024-2629 Incorrect security UI in iOS

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00655EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/12 7:0 a.m.•34 views

Azure SDK Spoofing Vulnerability

...

7.5CVSS7.1AI score0.01838EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/12 7:0 a.m.•34 views

Windows Kernel Elevation of Privilege Vulnerability

...

7.3CVSS7.1AI score0.01286EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/12 7:0 a.m.•34 views

Windows Kerberos Security Feature Bypass Vulnerability

...

7.5CVSS7.1AI score0.01522EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/03/12 7:0 a.m.•34 views

Windows Kernel Denial of Service Vulnerability

...

5.5CVSS7.1AI score0.01044EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/02/13 8:0 a.m.•34 views

Microsoft Azure Site Recovery Elevation of Privilege Vulnerability

...

9.3CVSS7.3AI score0.00617EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/01/09 8:0 a.m.•34 views

Microsoft Printer Metadata Troubleshooter Tool Remote Code Execution Vulnerability

...

7.8CVSS7.1AI score0.01173EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/12/12 8:0 a.m.•34 views

Windows MSHTML Platform Remote Code Execution Vulnerability

...

8.1CVSS7.1AI score0.92817EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/12/12 8:0 a.m.•34 views

Windows Sysmain Service Elevation of Privilege Vulnerability

...

7.8CVSS8.2AI score0.0625EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/12/07 6:59 p.m.•34 views

Chromium: CVE-2023-6509 Use after free in Side Panel Search

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.5AI score0.00993EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/11/29 6:18 p.m.•34 views

Chromium: CVE-2023-6348 Type Confusion in Spellcheck

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.8AI score0.01007EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/11/14 8:0 a.m.•34 views

Microsoft Send Customer Voice survey from Dynamics 365 Spoofing Vulnerability

...

7.6CVSS7.3AI score0.01069EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/10/10 7:0 a.m.•34 views

Microsoft Office Graphics Elevation of Privilege Vulnerability

...

7CVSS9.2AI score0.00417EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/09/12 7:0 a.m.•34 views

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

...

7.8CVSS7.1AI score0.00709EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2023/09/12 7:0 a.m.•34 views

Visual Studio Elevation of Privilege Vulnerability

...

6.7CVSS7.1AI score0.00527EPSS
Exploits0
Total number of security vulnerabilities5000