Lucene search
+L

54 matches found

CVE
CVE
added 2013/12/11 12:0 a.m.3274 views

CVE-2013-3900

CVE-2013-3900 describes a remote code execution in the WinVerifyTrust Authenticode verification for PE files. An attacker could modify a signed executable to execute code without invalidating the signature, potentially gaining full control of the system. Microsoft republished this CVE in the Secu...

8.8CVSS7.4AI score0.44647EPSS
In wild
CVE
CVE
added 2020/03/12 3:48 p.m.1548 views

CVE-2020-0787

CVE-2020-0787 is a privilege-escalation flaw in Microsoft Windows BITS (Background Intelligent Transfer Service) caused by improper handling of symbolic links. The issue can allow an attacker who can run code on a vulnerable host to escalate to system-level privileges and execute arbitrary code. ...

7.8CVSS8.5AI score0.42524EPSS
In wild
CVE
CVE
added 2020/01/14 11:11 p.m.1369 views

CVE-2020-0601

The CVE-2020-0601 issue affects Windows CryptoAPI (Crypt32.dll) and its ECC certificate validation, enabling a spoofing attack where a forged code-signing certificate could make malware appear trusted. Affected platforms include Windows 10 and Windows Server 2016/2019, with the vulnerability tied...

8.1CVSS7.6AI score0.89436EPSS
In wild
CVE
CVE
added 2020/11/11 6:48 a.m.1369 views

CVE-2020-17087

CVE-2020-17087 is a Windows Kernel Local Privilege Escalation vulnerability tied to a heap-based overflow in cng.sys. Connected exploit sources describe a local-vector attack requiring initial code execution, then abusing an IOCTL to .\\.GLOBALROOT\Device\Cng with a crafted size parameter that ca...

7.8CVSS8.3AI score0.05387EPSS
In wild
CVE
CVE
added 2017/05/12 2:0 p.m.1367 views

CVE-2017-0213

CVE-2017-0213 is a Windows privilege-escalation flaw in the COM Aggregate Marshaler that can be triggered by a specially crafted application to gain elevated privileges locally. Public documentation confirms affected OS ranges including Windows 7 SP1, Windows Server 2008 SP2/R2 SP1, Windows 8.1, ...

7.3CVSS5.9AI score0.84138EPSS
In wild
CVE
CVE
added 2020/06/09 7:43 p.m.1302 views

CVE-2020-0986

Technical details about CVE-2020-0986 are not publicly available in the provided connected documents. Please monitor for updates; current materials mention malware references in related EUVD entries but do not disclose affected products, vulnerable components, impact, or fixes.

7.8CVSS7.7AI score0.15932EPSS
In wild
CVE
CVE
added 2016/04/12 11:0 p.m.1298 views

CVE-2016-0167

CVE-2016-0167 is a Windows kernel-mode Win32k Privilege Escalation vulnerability affecting multiple OS versions (e.g., Vista SP2, Windows 7 SP1, Windows 8.1, Windows Server 2008/R2, Windows 10). The issue arises in the kernel-mode driver Win32k where a crafted application can escalate privileges ...

7.8CVSS6.8AI score0.05729EPSS
In wild
CVE
CVE
added 2015/09/09 12:0 a.m.1278 views

CVE-2015-2546

CVE-2015-2546 affects the Windows kernel Win32k memory handling (kernel‑mode driver) and enables local privilege escalation via a crafted application on affected Windows versions (Vista SP2 onward, Windows 7 SP1, 8/8.1, 10, Server editions). The root cause is a memory corruption vulnerability in ...

8.2CVSS8.5AI score0.10929EPSS
In wild
CVE
CVE
added 2017/03/17 12:0 a.m.1259 views

CVE-2017-0147

CVE-2017-0147 affects the SMBv1 server in multiple Windows platforms, where remote attackers can obtain sensitive information from process memory via crafted SMB packets. Affected products include Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012, ...

7.5CVSS5.7AI score0.99693EPSS
In wild
CVE
CVE
added 2020/04/15 3:13 p.m.1246 views

CVE-2020-1020

CVE-2020-1020 describes a remote code execution in Microsoft Windows via the Windows Adobe Font Manager Library when handling specially crafted Adobe Type 1 PostScript fonts. The flaw affects Windows versions other than Windows 10, with exploitation enabling code execution remotely after processi...

8.8CVSS8.2AI score0.65037EPSS
In wild
CVE
CVE
added 2020/02/11 9:22 p.m.1229 views

CVE-2020-0683

CVE-2020-0683 is a Windows Installer Elevation of Privilege vulnerability. The issue occurs when MSI packages process symbolic links, allowing a local attacker to bypass access restrictions and add or remove files. Technical details across connected sources confirm the affected component (Windows...

7.8CVSS8AI score0.07667EPSS
In wild
CVE
CVE
added 2020/05/21 10:52 p.m.1212 views

CVE-2020-1054

CVE-2020-1054 is a Win32k kernel-mode elevation of privilege vulnerability in Windows where the Windows kernel-driver mishandles memory objects. The CVE entry is distinct from CVE-2020-1143. Public references in the provided set show an exploit for CVE-2020-1054 (Out-of-bounds write in Microsoft ...

7.8CVSS7.8AI score0.52778EPSS
In wild
CVE
CVE
added 2017/05/12 2:0 p.m.1204 views

CVE-2017-0263

CVE-2017-0263: Windows Win32k local privilege escalation via kernel-mode drivers. The CVE concerns memory-object handling in Win32k.sys that allows a local attacker to gain privileges through a crafted application. Documents identify the affected Windows family (Windows 7 SP1, 8.1, Windows Server...

7.8CVSS7.6AI score0.10034EPSS
In wild
CVE
CVE
added 2019/07/15 6:56 p.m.1203 views

CVE-2019-0880

CVE-2019-0880 is a local privilege-escalation in Windows where splwow64.exe mishandles certain calls, allowing a low-privilege user to elevate to medium integrity. Public details in the Initial and connected documents confirm the vulnerability class and affected component, and Microsoft’s MSRC en...

7.8CVSS7.5AI score0.02404EPSS
In wild
CVE
CVE
added 2019/11/12 6:53 p.m.1199 views

CVE-2019-1405

CVE-2019-1405 is a local privilege-escalation flaw in the Windows UPnP service where improper handling allows COM object creation. Root cause per the connected CISA KEV entry is improper COM object creation by the UPnP service, enabling elevation of privileges. The CVSSv3.1 metrics in the initial...

7.8CVSS8.4AI score0.2995EPSS
In wild
CVE
CVE
added 2019/04/09 8:19 p.m.1196 views

CVE-2019-0859

CVE-2019-0859 (Windows Win32k Privilege Escalation) : A local privilege escalation vulnerability in the Win32k component of Microsoft Windows arises from Win32k failing to properly handle objects in memory, enabling an attacker to run code in kernel mode. Several connected sources corroborate thi...

7.8CVSS8.2AI score0.04151EPSS
In wild
CVE
CVE
added 2018/10/10 1:0 p.m.1194 views

CVE-2018-8453

CVE-2018-8453 is a Windows Win32k local privilege escalation vulnerability. The flaw arises when Win32k fails to properly handle memory objects, allowing an attacker to escalate privileges via local code execution. Affected products include Windows 7, Windows 8.1, Windows 10 (and server variants ...

7.8CVSS7.6AI score0.69833EPSS
In wild
CVE
CVE
added 2019/04/09 8:15 p.m.1176 views

CVE-2019-0803

CVE-2019-0803 is a Windows Win32k elevation of privilege vulnerability. Root cause: Win32k fails to properly handle objects in memory, enabling local kernel-mode code execution. Affected software: Microsoft Windows Win32k component (privilege escalation). Impact: local privilege escalation with k...

7.8CVSS8.2AI score0.4523EPSS
In wild
CVE
CVE
added 2016/03/09 11:0 a.m.1175 views

CVE-2016-0099

CVE-2016-0099 corresponds to the Windows “Secondary Logon Handle Privilege Escalation” issue. The Secondary Logon Service fails to properly process request handles, enabling local attackers to gain elevated privileges. Publicly documented in multiple sources as MS16-032, with Metasploit/Ms16-032-...

7.8CVSS7.5AI score0.37164EPSS
In wild
CVE
CVE
added 2016/08/09 9:0 p.m.1173 views

CVE-2016-3309

CVE-2016-3309 is a Windows kernel Win32k elevation-of-privilege vulnerability. A local attacker could gain SYSTEM privileges by exploiting a pool/handle-management issue in win32k, enabling code execution in kernel mode. Connected sources document an exploit (win32kfull!bFill pool overflow) and i...

7.8CVSS7.5AI score0.20625EPSS
In wild
CVE
CVE
added 2019/12/10 9:40 p.m.1168 views

CVE-2019-1458

CVE-2019-1458 is a Windows Win32k elevation-of-privilege flaw affecting win32k.sys. The root cause is an uninitialized field in the server window dispatch table (gpsi->mpFnid_serverCBWndProc[FNID_SWITCH]), which leaves extraWnd data improperly sized. This allows an attacker to write arbitrary ...

7.8CVSS8.2AI score0.73856EPSS
In wild
CVE
CVE
added 2019/07/29 2:13 p.m.1158 views

CVE-2019-1130

CVE-2019-1130 is a Windows privilege-escalation vulnerability in the AppX Deployment Service (AppXSVC) caused by improper handling of hard links. The CVE notes an elevation of privilege from a local user, with a CVSSv3.1 base score of 7.8 (LOCAL attack, LOW complexity, Privileges Required: LOW; U...

7.8CVSS7.7AI score0.02284EPSS
In wild
CVE
CVE
added 2020/08/17 7:13 p.m.1152 views

CVE-2020-1464

CVE-2020-1464 is a Windows spoofing vulnerability where improper validation of code-signing signatures allows bypassing security features and loading improperly signed files. It affects Windows and was actively exploited in the wild, per reports linked to the August 2020 Patch Tuesday. The core i...

7.8CVSS7.1AI score0.41131EPSS
In wild
CVE
CVE
added 2017/06/15 1:0 a.m.1147 views

CVE-2017-8543

CVE-2017-8543 is a Windows remote code execution vulnerability in the Windows Search service. The root cause is how Windows Search handles objects in memory, allowing an attacker to take control of the affected system. Exploitation can occur by sending specially crafted messages to the Windows Se...

10CVSS6.2AI score0.7376EPSS
In wild
CVE
CVE
added 2019/06/12 1:49 p.m.1143 views

CVE-2019-1069

CVE-2019-1069 is a Windows Task Scheduler Privilege Escalation vulnerability in which the Task Scheduler Service inadequately validates certain file operations. The issue enables local privilege escalation when an attacker with unprivileged code execution on a victim system exploits the flaw. Mic...

7.8CVSS7.9AI score0.06117EPSS
In wild
CVE
CVE
added 2016/11/10 6:16 a.m.1140 views

CVE-2016-7255

CVE-2016-7255 is a Windows kernel privilege-escalation issue affecting win32k.sys. The CVE arises from a local attacker crafting an exploit against a Win32k component, enabling elevation to SYSTEM via the NtSetWindowLongPtr path in win32k.sys (MS16-135). Public exploitation materials in Exploit D...

7.8CVSS7.6AI score0.80968EPSS
In wild
CVE
CVE
added 2019/09/11 9:24 p.m.1126 views

CVE-2019-1215

CVE-2019-1215 describes a local privilege-escalation in Windows via ws2ifsl.sys (Winsock) where improper handling of memory-resident objects enables code execution with elevated privileges. Affected component is Winsock’s ws2ifsl.sys; root cause is memory handling of objects within the Winsock su...

7.8CVSS8.1AI score0.19254EPSS
In wild
CVE
CVE
added 2017/03/17 12:0 a.m.1121 views

CVE-2017-0001

CVE-2017-0001 is a Windows Graphics Device Interface (GDI) local privilege escalation affecting multiple Windows platforms (Vista SP2, Server 2008 SP2/R2 SP1, 7 SP1, 8.1, 2012 Gold/R2, RT 8.1, and newer Windows 10 builds). The description states that a crafted application can allow local users to...

7.8CVSS6.2AI score0.03114EPSS
In wild
CVE
CVE
added 2019/09/11 9:24 p.m.1116 views

CVE-2019-1214

CVE-2019-1214 is a Windows privilege-escalation vulnerability in the Windows Common Log File System (CLFS) Driver. It stems from improper handling of objects in memory, enabling a local attacker to escalate privileges on a vulnerable system. Public references consistently describe the CLFS driver...

7.8CVSS8AI score0.01419EPSS
In wild
CVE
CVE
added 2019/04/08 11:41 p.m.1115 views

CVE-2019-0703

CVE-2019-0703 is described in the initial doc as an information-disclosure vulnerability in the Windows SMB Server’s handling of certain requests, distinct from CVE-2019-0704 and CVE-2019-0821. Connected sources add concrete context: FireEye/Mandiant notes this CVE was used in targeted attacks du...

6.5CVSS6.8AI score0.0964EPSS
In wild
CVE
CVE
added 2019/05/16 6:17 p.m.1113 views

CVE-2019-0863

CVE-2019-0863 is a Windows Elevation of Privilege vulnerability in Windows Error Reporting (WER) where the vulnerability stems from the way WER handles files. The underlying issue allows local attackers to escalate to kernel-level privileges (CVE-2019-0863). Microsoft patched this in the May 2019...

7.8CVSS7.7AI score0.05207EPSS
In wildWeb
CVE
CVE
added 2019/01/08 9:0 p.m.1103 views

CVE-2019-0543

Technical details about CVE-2019-0543 are not publicly provided in the supplied documents. Monitor for updates.

7.8CVSS7.7AI score0.04679EPSS
In wild
CVE
CVE
added 2020/04/15 3:12 p.m.1100 views

CVE-2020-0938

CVE-2020-0938 affects the Windows Adobe Font Manager Library by improperly handling specially crafted multi-master Font 1 PostScript fonts. The root cause is a vulnerability in the font parser that can allow remote code execution when processing crafted documents. For all Windows versions except ...

7.8CVSS8.2AI score0.69166EPSS
In wild
CVE
CVE
added 2019/04/09 2:34 a.m.1099 views

CVE-2019-0797

CVE-2019-0797 is a Windows Win32k privilege-escalation vulnerability caused by the Win32k component failing to properly handle objects in memory, enabling local code execution with kernel privileges. Affected: Windows Win32k subsystem (Win32k.sys). Impact: elevated privileges to SYSTEM with poten...

7.8CVSS8.2AI score0.0189EPSS
In wild
CVE
CVE
added 2020/04/15 3:13 p.m.1092 views

CVE-2020-1027

CVE-2020-1027 is a Windows privilege-escalation vulnerability affecting Windows kernel memory handling and the CSRSS subsystem. The Windows kernel path (memory object handling) enabled local privilege escalation via write-what-where style abuse in kernel fault paths, while the CSRSS path allowed ...

7.8CVSS8AI score0.04447EPSS
In wild
CVE
CVE
added 2018/08/15 5:0 p.m.1085 views

CVE-2018-8405

Technical details (exploit vector, affected products/versions, root cause specifics, and mitigations) are not publicly disclosed in the provided connected documents. Monitor for updates from authoritative sources.

7.8CVSS7.7AI score0.03444EPSS
In wild
CVE
CVE
added 2017/03/17 12:0 a.m.1084 views

CVE-2017-0005

Technical details (affected product/version, root cause, fix) are not provided in the supplied documents; public details are high-level. Monitor for updates from official advisories and CVE feeds.

7.8CVSS6.2AI score0.11022EPSS
In wild
CVE
CVE
added 2018/08/15 5:0 p.m.1080 views

CVE-2018-8406

CVE-2018-8406 is a DirectX Graphics Kernel (DXGKRNL) privilege-escalation vulnerability caused by the DXGKRNL driver improperly handling memory objects. Affected products include Windows Server 2016 and Windows 10 (and Windows 10 Servers). The CVE is characterized by a local, low-complexity attac...

7.8CVSS7.7AI score0.03444EPSS
In wild
CVE
CVE
added 2019/05/16 6:17 p.m.1073 views

CVE-2019-0903

Technical details about CVE-2019-0903 (affected component/version/root cause/impact) are not publicly provided in the supplied documents. Monitor for updates.

9.3CVSS8AI score0.21713EPSS
In wild
CVE
CVE
added 2016/04/12 11:0 p.m.1044 views

CVE-2016-0151

CVE-2016-0151 affects the Client-Server Run-time Subsystem (CSRSS) in Microsoft Windows 8.1, Windows Server 2012 (Gold/R2), Windows RT 8.1, and Windows 10 (Gold/1511). The root cause is mismanagement of process tokens in CSRSS/in memory, enabling local privilege escalation via a crafted applicati...

7.8CVSS6.6AI score0.63195EPSS
In wild
CVE
CVE
added 2016/11/10 6:16 a.m.1044 views

CVE-2016-7256

CVE-2016-7256 is a remote code execution vulnerability in atmfd.dll, the Windows font library, affecting multiple Windows releases (Vista‑through‑Server 2016/Win10 1511–1607). It allows an attacker to execute arbitrary code by visiting a crafted web page that leverages specially embedded fonts du...

9.3CVSS8.8AI score0.64835EPSS
In wild
CVE
CVE
added 2016/10/14 1:0 a.m.916 views

CVE-2016-3393

CVE-2016-3393 affects the Graphics Device Interface (GDI/GDI+) in Windows, where improper handling of memory objects in the GDI component can enable remote code execution. The vulnerability impacts multiple Windows editions (Vista through Windows 10 variants listed in the CVE description) and is ...

9.3CVSS7.8AI score0.68684EPSS
In wild
CVE
CVE
added 2015/12/09 11:0 a.m.887 views

CVE-2015-6175

CVE-2015-6175 is a Windows kernel local privilege escalation vulnerability. The initial description identifies a memory-elevation flaw in the Windows kernel that allows a crafted application running with local access to gain elevated privileges. Connected documents corroborate that this family in...

7.8CVSS6.3AI score0.05169EPSS
In wild
CVE
CVE
added 2019/11/12 6:52 p.m.887 views

CVE-2019-1388

CVE-2019-1388 is a Windows local privilege-escalation vulnerability in the Certificate Dialog caused by improper enforcement of user privileges. Public data shows CVSS v3.1 base score 7.8 (HIGH) with LOCAL attack vector, LOW privilege requirements, no user interaction, and high impact to confiden...

7.8CVSS8.5AI score0.08589EPSS
In wild
CVE
CVE
added 2023/11/14 5:57 p.m.557 views

CVE-2023-36025

CVE-2023-36025 is a Windows SmartScreen Security Feature Bypass vulnerability. Affected product context is Microsoft Windows (SmartScreen). Root cause and impact are described as bypass of SmartScreen with high severity (CVSS v3.1: 8.8, HIGH) affecting confidentiality, integrity, and availability...

8.8CVSS9.5AI score0.88196EPSS
In wild
CVE
CVE
added 2016/04/12 11:0 p.m.517 views

CVE-2016-0165

CVE-2016-0165 is a Windows kernel-mode privilege-escalation issue affecting the Win32k subsystem (win32k.sys). The vulnerability allows a local attacker to gain higher privileges by exploiting how memory/objects are handled in the kernel, as described in CNVD-2016-02281. Affected products include...

7.8CVSS6.8AI score0.13841EPSS
In wild
CVE
CVE
added 2023/10/10 5:7 p.m.419 views

CVE-2023-36602

The CVE-2023-36602 entry maps to a Windows TCP/IP Denial of Service vulnerability with CVSS v3.1 base score 7.5. IBM’s Security Bulletin notes that Windows TCP/IP DoS affects IBM Cloud Pak System Software Suite 2.3.3.0–2.3.3.6 (Intel iFix1), with remediation by upgrading to Cloud Pak System v2.3....

7.5CVSS8.4AI score0.02314EPSS
CVE
CVE
added 2018/05/09 7:0 p.m.342 views

CVE-2018-0824

CVE-2018-0824 is a Microsoft Windows remote code execution vulnerability in the COM subsystem due to improper handling of serialized objects. Public writeups and advisories summarize that a specially crafted file or script can trigger code execution, with potential remote impact when users open o...

8.8CVSS7.9AI score0.73185EPSS
In wild
CVE
CVE
added 2018/12/12 12:0 a.m.307 views

CVE-2018-8639

CVE-2018-8639 describes a local privilege escalation in Windows via Win32k, caused by improper handling of memory objects in the Win32k component. Affected systems include Windows 7, Windows 8.1, Windows 10 (and corresponding Windows Server editions listed in the CVE entry). The root cause is an ...

8.4CVSS8.5AI score0.22349EPSS
In wild
CVE
CVE
added 2023/08/08 5:8 p.m.156 views

CVE-2023-38184

CVE-2023-38184 is a Windows LDAP Remote Code Execution vulnerability. The NVD entry lists a CVSS v3.1 base score of 7.5 (High) with Network attack vector, high attack complexity, low privileges required, no user interaction, and impacts to confidentiality, integrity, and availability. The provide...

7.5CVSS8.7AI score0.0132EPSS
Total number of security vulnerabilities54