Lucene search
K
MicrosoftEndpoint Protection

6 matches found

CVE
CVE
added 2017/05/26 8:0 p.m.1007 views

CVE-2017-8540

CVE-2017-8540 affects Microsoft Malware Protection Engine (MMPE) across Forefront/Defender deployments. The weakness arises from a use-after-free in the garbage collection system managing JavaScript objects during scanning of specially crafted files, enabling memory corruption and potential remot...

9.3CVSS6.3AI score0.71961EPSS
In wild
CVE
CVE
added 2021/02/25 11:1 p.m.151 views

CVE-2021-24092

CVE-2021-24092 is a Microsoft Defender elevation-of-privilege vulnerability affecting Windows Defender. The connected sources confirm a local, low-privilege attacker could achieve higher privileges (CVE-2021-24092), with a CVSSv3 base score of 7.8 (HIGH) and a local attack vector. Public records ...

7.8CVSS7.5AI score0.00545EPSS
CVE
CVE
added 2017/05/26 8:0 p.m.95 views

CVE-2017-8537

CVE-2017-8537 describes a denial-of-service vulnerability in the Microsoft Malware Protection Engine (MMPE) used with Microsoft Forefront and Microsoft Defender across a range of Windows client/server platforms. The issue arises from MMPE failing to properly scan specially crafted files, which ca...

5.5CVSS5.1AI score0.16829EPSS
CVE
CVE
added 2017/06/29 1:0 p.m.82 views

CVE-2017-8558

CVE-2017-8558 affects the Microsoft Malware Protection Engine used by Forefront/Defender on Windows platforms (32‑bit). The vulnerability arises when scanning specially crafted files, leading to memory corruption and remote code execution. Public evidence in multiple feeds confirms this as a remo...

9.3CVSS7.5AI score0.43588EPSS
CVE
CVE
added 2017/05/26 8:0 p.m.71 views

CVE-2017-8535

CVE-2017-8535 affects Microsoft Malware Protection Engine used by Forefront/Defender on Windows platforms. The vulnerability stems from improper scanning of specially crafted files, causing a denial of service. Connected sources also describe similar issues (CVE-2017-8536/7/9/42) in MMPE. Mitigat...

5.5CVSS5.1AI score0.16829EPSS
CVE
CVE
added 2017/05/26 8:0 p.m.71 views

CVE-2017-8536

CVE-2017-8536 is a denial-of-service vulnerability in Microsoft Malware Protection Engine (MMPE) that affects MMPE running on multiple Windows versions and related Microsoft products (Forefront/ Defender). The issue stems from the engine failing to properly scan specially crafted files, which cou...

5.5CVSS5.1AI score0.16829EPSS