Lucene search
K
MicrosoftSystem Center Endpoint Protection-

7 matches found

CVE
CVE
added 2021/01/12 7:42 p.m.1303 views

CVE-2021-1647

CVE-2021-1647 is a Microsoft Defender Remote Code Execution vulnerability. Multiple sources indicate it was exploited in the wild before patches were available, affecting Microsoft Defender/Windows Defender. The advisory notes a remote code execution risk; exploitation could allow an attacker to ...

7.8CVSS7.9AI score0.39653EPSS
In wild
CVE
CVE
added 2017/05/26 8:0 p.m.1007 views

CVE-2017-8540

CVE-2017-8540 affects Microsoft Malware Protection Engine (MMPE) across Forefront/Defender deployments. The weakness arises from a use-after-free in the garbage collection system managing JavaScript objects during scanning of specially crafted files, enabling memory corruption and potential remot...

9.3CVSS6.3AI score0.71961EPSS
In wild
CVE
CVE
added 2021/02/25 11:1 p.m.150 views

CVE-2021-24092

CVE-2021-24092 is a Microsoft Defender elevation-of-privilege vulnerability affecting Windows Defender. The connected sources confirm a local, low-privilege attacker could achieve higher privileges (CVE-2021-24092), with a CVSSv3 base score of 7.8 (HIGH) and a local attack vector. Public records ...

7.8CVSS7.5AI score0.00545EPSS
CVE
CVE
added 2020/07/14 10:54 p.m.112 views

CVE-2020-1461

CVE-2020-1461 is a Microsoft Defender elevation of privilege vulnerability in MpSigStub.exe that can allow deletion of files in arbitrary locations. Exploitation requires the attacker to log on to the system, then, with MpSigStub.exe running, execute crafted actions to delete protected files. Mic...

7.1CVSS7.1AI score0.0072EPSS
CVE
CVE
added 2017/05/26 8:0 p.m.95 views

CVE-2017-8537

CVE-2017-8537 describes a denial-of-service vulnerability in the Microsoft Malware Protection Engine (MMPE) used with Microsoft Forefront and Microsoft Defender across a range of Windows client/server platforms. The issue arises from MMPE failing to properly scan specially crafted files, which ca...

5.5CVSS5.1AI score0.16829EPSS
CVE
CVE
added 2017/05/26 8:0 p.m.71 views

CVE-2017-8535

CVE-2017-8535 affects Microsoft Malware Protection Engine used by Forefront/Defender on Windows platforms. The vulnerability stems from improper scanning of specially crafted files, causing a denial of service. Connected sources also describe similar issues (CVE-2017-8536/7/9/42) in MMPE. Mitigat...

5.5CVSS5.1AI score0.16829EPSS
CVE
CVE
added 2017/05/26 8:0 p.m.71 views

CVE-2017-8536

CVE-2017-8536 is a denial-of-service vulnerability in Microsoft Malware Protection Engine (MMPE) that affects MMPE running on multiple Windows versions and related Microsoft products (Forefront/ Defender). The issue stems from the engine failing to properly scan specially crafted files, which cou...

5.5CVSS5.1AI score0.16829EPSS