Microsoft Security Vulnerabilities

CVE-2022-23298

Windows NT OS Kernel Elevation of Privilege Vulnerability

CVE-2022-23299

Windows PDEV Elevation of Privilege Vulnerability

CVE-2022-23300

Raw Image Extension Remote Code Execution Vulnerability

CVE-2022-23301

HEVC Video Extensions Remote Code Execution Vulnerability

CVE-2022-23551

aad-pod-identity assigns Azure Active Directory identities to Kubernetes applications and has now been deprecated as of 24 October 2022. The NMI component in AAD Pod Identity intercepts and validates token requests based on regex. In this case, a token request made with backslash in the request (ex...

CVE-2022-24451

VP9 Video Extensions Remote Code Execution Vulnerability

CVE-2022-24452

HEVC Video Extensions Remote Code Execution Vulnerability

CVE-2022-24453

HEVC Video Extensions Remote Code Execution Vulnerability

CVE-2022-24454

Windows Security Support Provider Interface Elevation of Privilege Vulnerability

CVE-2022-24455

Windows CD-ROM Driver Elevation of Privilege Vulnerability

CVE-2022-24456

HEVC Video Extensions Remote Code Execution Vulnerability

CVE-2022-24457

HEIF Image Extensions Remote Code Execution Vulnerability

CVE-2022-24459

Windows Fax and Scan Service Elevation of Privilege Vulnerability

CVE-2022-24460

Tablet Windows User Interface Application Elevation of Privilege Vulnerability

CVE-2022-24461

Microsoft Office Visio Remote Code Execution Vulnerability

CVE-2022-24462

Microsoft Word Security Feature Bypass Vulnerability

CVE-2022-24463

Microsoft Exchange Server Spoofing Vulnerability

CVE-2022-24464

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-24465

Microsoft Intune Portal for iOS Security Feature Bypass Vulnerability

CVE-2022-24466

Windows Hyper-V Security Feature Bypass Vulnerability

CVE-2022-24467

Azure Site Recovery Remote Code Execution Vulnerability

CVE-2022-24468

Azure Site Recovery Remote Code Execution Vulnerability

CVE-2022-24469

Azure Site Recovery Elevation of Privilege Vulnerability

CVE-2022-24470

Azure Site Recovery Remote Code Execution Vulnerability

CVE-2022-24471

Azure Site Recovery Remote Code Execution Vulnerability

CVE-2022-24472

Microsoft SharePoint Server Spoofing Vulnerability

CVE-2022-24473

Microsoft Excel Remote Code Execution Vulnerability

CVE-2022-24474

Windows Win32k Elevation of Privilege Vulnerability

CVE-2022-24475

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-24477

Microsoft Exchange Server Elevation of Privilege Vulnerability

CVE-2022-24479

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

CVE-2022-24480

Outlook for Android Elevation of Privilege Vulnerability

CVE-2022-24481

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2022-24482

Windows ALPC Elevation of Privilege Vulnerability

CVE-2022-24483

Windows Kernel Information Disclosure Vulnerability

CVE-2022-24484

Windows Cluster Shared Volume (CSV) Denial of Service Vulnerability

CVE-2022-24485

Win32 File Enumeration Remote Code Execution Vulnerability

CVE-2022-24486

Windows Kerberos Elevation of Privilege Vulnerability

CVE-2022-24487

Windows Local Security Authority (LSA) Remote Code Execution Vulnerability

CVE-2022-24488

Windows Desktop Bridge Elevation of Privilege Vulnerability

CVE-2022-24489

Cluster Client Failover (CCF) Elevation of Privilege Vulnerability

CVE-2022-24490

Windows Hyper-V Shared Virtual Hard Disks Information Disclosure Vulnerability

CVE-2022-24491

Windows Network File System Remote Code Execution Vulnerability

CVE-2022-24492

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2022-24493

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

CVE-2022-24494

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2022-24495

Windows Direct Show - Remote Code Execution Vulnerability

CVE-2022-24496

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

CVE-2022-24497

Windows Network File System Remote Code Execution Vulnerability

CVE-2022-24498

Windows iSCSI Target Service Information Disclosure Vulnerability