Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Microsoft Security Vulnerabilities

cve
cve

CVE-2022-29128

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution...

8.8CVSS

8.7AI Score

0.011EPSS

2022-05-10 09:15 PM
117
23
cve
cve

CVE-2022-22014

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution...

8.8CVSS

8.7AI Score

0.011EPSS

2022-05-10 09:15 PM
112
22
cve
cve

CVE-2022-26935

Windows WLAN AutoConfig Service Information Disclosure...

6.5CVSS

6.2AI Score

0.001EPSS

2022-05-10 09:15 PM
116
5
cve
cve

CVE-2022-41089

.NET Framework Remote Code Execution...

7.8CVSS

8.2AI Score

0.002EPSS

2022-12-13 07:15 PM
138
cve
cve

CVE-2021-31973

Windows GPSVC Elevation of Privilege...

7.8CVSS

7.4AI Score

0.0004EPSS

2021-06-08 11:15 PM
83
8
cve
cve

CVE-2022-30138

Windows Print Spooler Elevation of Privilege...

7.8CVSS

7.5AI Score

0.001EPSS

2022-05-18 11:15 PM
177
4
cve
cve

CVE-2022-23270

Windows Point-to-Point Tunneling Protocol Remote Code Execution...

8.1CVSS

8AI Score

0.009EPSS

2022-05-10 09:15 PM
116
5
cve
cve

CVE-2022-22049

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege...

7.8CVSS

8AI Score

0.0004EPSS

2022-07-12 11:15 PM
109
In Wild
6
cve
cve

CVE-2022-37990

Windows Kernel Elevation of Privilege...

7.8CVSS

7.5AI Score

0.0004EPSS

2022-10-11 07:15 PM
40
5
cve
cve

CVE-2022-41077

Windows Fax Compose Form Elevation of Privilege...

7.8CVSS

7.9AI Score

0.0004EPSS

2022-12-13 07:15 PM
64
cve
cve

CVE-2022-44676

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution...

8.1CVSS

8.3AI Score

0.005EPSS

2022-12-13 07:15 PM
76
cve
cve

CVE-2022-30202

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege...

7CVSS

6.8AI Score

0.0004EPSS

2022-07-12 11:15 PM
118
10
cve
cve

CVE-2022-34733

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution...

8.8CVSS

9.2AI Score

0.015EPSS

2022-09-13 07:15 PM
64
12
cve
cve

CVE-2022-38042

Active Directory Domain Services Elevation of Privilege...

7.1CVSS

6.8AI Score

0.001EPSS

2022-10-11 07:15 PM
112
4
cve
cve

CVE-2022-38037

Windows Kernel Elevation of Privilege...

7.8CVSS

7.5AI Score

0.0005EPSS

2022-10-11 07:15 PM
68
8
cve
cve

CVE-2022-38032

Windows Portable Device Enumerator Service Security Feature Bypass...

6.6CVSS

6.4AI Score

0.0004EPSS

2022-10-11 07:15 PM
44
cve
cve

CVE-2022-34689

Windows CryptoAPI Spoofing...

7.5CVSS

7.4AI Score

0.002EPSS

2022-10-11 07:15 PM
57
8
cve
cve

CVE-2022-41095

Windows Digital Media Receiver Elevation of Privilege...

7.8CVSS

7.4AI Score

0.0004EPSS

2022-11-09 10:15 PM
65
4
cve
cve

CVE-2022-37956

Windows Kernel Elevation of Privilege...

7.8CVSS

8.4AI Score

0.0004EPSS

2022-09-13 07:15 PM
80
8
cve
cve

CVE-2022-35837

Windows Graphics Component Information Disclosure...

6.5CVSS

6.6AI Score

0.005EPSS

2022-09-13 07:15 PM
64
11
cve
cve

CVE-2022-35836

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution...

8.8CVSS

9.2AI Score

0.012EPSS

2022-09-13 07:15 PM
59
14
cve
cve

CVE-2022-30198

Windows Point-to-Point Tunneling Protocol Remote Code Execution...

8.1CVSS

8.8AI Score

0.005EPSS

2022-10-11 07:15 PM
54
5
cve
cve

CVE-2022-24543

Windows Upgrade Assistant Remote Code Execution...

7.8CVSS

7.9AI Score

0.006EPSS

2022-04-15 07:15 PM
129
cve
cve

CVE-2022-26930

Windows Remote Access Connection Manager Information Disclosure...

5.5CVSS

5.4AI Score

0.0004EPSS

2022-05-10 09:15 PM
123
6
cve
cve

CVE-2022-44707

Windows Kernel Denial of Service...

6.5CVSS

6.7AI Score

0.001EPSS

2022-12-13 07:15 PM
156
cve
cve

CVE-2020-1566

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new....

4.2CVSS

5.9AI Score

0.002EPSS

2020-08-17 07:15 PM
100
cve
cve

CVE-2020-1512

An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. An attacker could exploit this vulnerability by....

7.8CVSS

7.1AI Score

0.0004EPSS

2020-08-17 07:15 PM
84
cve
cve

CVE-2020-1525

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an...

7.8CVSS

8.1AI Score

0.001EPSS

2020-08-17 07:15 PM
94
cve
cve

CVE-2022-37984

Windows WLAN Service Elevation of Privilege...

7.8CVSS

7.5AI Score

0.0004EPSS

2022-10-11 07:15 PM
66
6
cve
cve

CVE-2021-31976

Server for NFS Information Disclosure...

7.5CVSS

7.1AI Score

0.051EPSS

2021-06-08 11:15 PM
82
10
cve
cve

CVE-2022-41118

Windows Scripting Languages Remote Code Execution...

7.5CVSS

8AI Score

0.004EPSS

2022-11-09 10:15 PM
81
In Wild
3
cve
cve

CVE-2022-41064

.NET Framework Information Disclosure...

5.8CVSS

5.2AI Score

0.0004EPSS

2022-11-09 10:15 PM
106
4
cve
cve

CVE-2020-1549

An elevation of privilege vulnerability exists when the Windows CDP User Components improperly handle memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The...

7.8CVSS

7.8AI Score

0.0004EPSS

2020-08-17 07:15 PM
89
cve
cve

CVE-2019-1198

An elevation of privilege exists in SyncController.dll. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit the vulnerability, an attacker could run a specially crafted application that could exploit the vulnerability. This...

6.5CVSS

7.4AI Score

0.002EPSS

2019-08-14 09:15 PM
66
cve
cve

CVE-2019-1176

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with...

7CVSS

7.5AI Score

0.0004EPSS

2019-08-14 09:15 PM
64
cve
cve

CVE-2021-31972

Event Tracing for Windows Information Disclosure...

5.5CVSS

5.1AI Score

0.0004EPSS

2021-06-08 11:15 PM
67
12
cve
cve

CVE-2021-43235

Storage Spaces Controller Information Disclosure...

5.5CVSS

5.9AI Score

0.0004EPSS

2021-12-15 03:15 PM
42
4
cve
cve

CVE-2022-29131

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution...

8.8CVSS

8.7AI Score

0.011EPSS

2022-05-10 09:15 PM
77
23
cve
cve

CVE-2023-21571

Microsoft Dynamics 365 (on-premises) Cross-site Scripting...

5.4CVSS

6AI Score

0.001EPSS

2023-02-14 08:15 PM
55
cve
cve

CVE-2020-1479

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with...

7.8CVSS

7.7AI Score

0.0004EPSS

2020-08-17 07:15 PM
90
cve
cve

CVE-2020-1480

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete.....

7.8CVSS

7.6AI Score

0.0004EPSS

2020-08-17 07:15 PM
86
cve
cve

CVE-2020-1543

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The...

7.8CVSS

7.8AI Score

0.0004EPSS

2020-08-17 07:15 PM
81
cve
cve

CVE-2020-1544

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The...

7.8CVSS

7.8AI Score

0.0004EPSS

2020-08-17 07:15 PM
86
cve
cve

CVE-2024-21382

Microsoft Edge for Android Information Disclosure...

4.3CVSS

4.3AI Score

0.001EPSS

2024-01-26 01:15 AM
106
cve
cve

CVE-2021-41347

Windows AppX Deployment Service Elevation of Privilege...

7.8CVSS

7.2AI Score

0.0005EPSS

2021-10-13 01:15 AM
81
cve
cve

CVE-2021-40470

DirectX Graphics Kernel Elevation of Privilege...

7.8CVSS

7.2AI Score

0.0004EPSS

2021-10-13 01:15 AM
73
cve
cve

CVE-2021-40442

Microsoft Excel Remote Code Execution...

7.8CVSS

7.5AI Score

0.031EPSS

2021-11-10 01:19 AM
127
cve
cve

CVE-2023-21557

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service...

7.5CVSS

7.4AI Score

0.002EPSS

2023-01-10 10:15 PM
141
cve
cve

CVE-2023-23420

Windows Kernel Elevation of Privilege...

7.8CVSS

7.9AI Score

0.001EPSS

2023-03-14 05:15 PM
80
cve
cve

CVE-2023-50387

Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG....

7.5CVSS

7.7AI Score

0.05EPSS

2024-02-14 04:15 PM
267
Total number of security vulnerabilities19439