CVE-2019-1007

An elevation of privilege exists in Windows Audio Service. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit the vulnerability, an attacker could run a specially crafted application that could exploit the vulnerability. This vulner...

CVE-2019-1187

A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input. An attacker who successfully exploited this vulnerability could cause a denial of service against an XML application.A remote unauthenticated attacker could exploit this vulnerability by iss...

CVE-2020-0782

An elevation of privilege vulnerability exists when the Windows Cryptographic Catalog Services improperly handle objects in memory. An attacker who successfully exploited this vulnerability could modify the cryptographic catalog.To exploit this vulnerability, an attacker would first have to log on ...

CVE-2020-17032

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17037

Windows WalletService Elevation of Privilege Vulnerability

CVE-2021-1661

Windows Installer Elevation of Privilege Vulnerability

CVE-2021-1683

Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG.To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the rem...

CVE-2021-1710

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

CVE-2021-1734

Windows Remote Procedure Call Information Disclosure Vulnerability

CVE-2021-36973

Windows Redirected Drive Buffering System Elevation of Privilege Vulnerability

CVE-2022-35751

Windows Hyper-V Elevation of Privilege Vulnerability

CVE-2022-37997

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2022-44680

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2022-44682

Windows Hyper-V Denial of Service Vulnerability

CVE-2022-44683

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-33167

Remote Procedure Call Runtime Denial of Service Vulnerability

CVE-2024-30065

Windows Themes Denial of Service Vulnerability

CVE-2024-30082

Win32k Elevation of Privilege Vulnerability

CVE-2024-30094

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-38054

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

CVE-2024-38101

Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

CVE-2024-38116

Windows IP Routing Management Snapin Remote Code Execution Vulnerability

CVE-2024-38130

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2025-21215

Secure Boot Security Feature Bypass Vulnerability

CVE-2025-27487

Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.

CVE-2025-27491

Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.

CVE-2020-0838

An elevation of privilege vulnerability exists when NTFS improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context.To exploit the vulnerability, an attacker would first have to log on to the system, and then run a specially crafte...

CVE-2020-1598

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; v...

CVE-2020-16876

An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code e...

CVE-2020-17034

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2021-1652

Windows CSC Service Elevation of Privilege Vulnerability

CVE-2021-1688

Windows CSC Service Elevation of Privilege Vulnerability

CVE-2021-1708

Windows GDI+ Information Disclosure Vulnerability

CVE-2021-28326

Windows AppX Deployment Server Denial of Service Vulnerability

CVE-2021-28439

Windows TCP/IP Driver Denial of Service Vulnerability

CVE-2021-43230

Windows NTFS Elevation of Privilege Vulnerability

CVE-2022-35758

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2022-35770

Windows NTLM Spoofing Vulnerability

CVE-2022-38032

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

CVE-2023-33174

Windows Cryptographic Information Disclosure Vulnerability

CVE-2023-35319

Remote Procedure Call Runtime Denial of Service Vulnerability

CVE-2024-37969

Secure Boot Security Feature Bypass Vulnerability

CVE-2024-38028

Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability

CVE-2024-38085

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2024-38191

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

CVE-2024-43644

Windows Client-Side Caching Elevation of Privilege Vulnerability

CVE-2025-21373

Windows Installer Elevation of Privilege Vulnerability

CVE-2025-27478

Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.

CVE-2025-27727

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

CVE-2019-1198

An elevation of privilege exists in SyncController.dll. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit the vulnerability, an attacker could run a specially crafted application that could exploit the vulnerability. This vulnerabi...