3170 matches found
CVE-2024-30022
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-38257
Microsoft AllJoyn API Information Disclosure Vulnerability
CVE-2018-0956
A denial of service vulnerability exists in the HTTP 2.0 protocol stack (HTTP.sys) when HTTP.sys improperly parses specially crafted HTTP 2.0 requests, aka "HTTP.sys Denial of Service Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
CVE-2019-0551
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Windows Hyper-V Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, W...
CVE-2019-0573
An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka "Windows Data Sharing Service Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers. This CVE ID is uni...
CVE-2019-1087
An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1086, CVE-2019-1088.
CVE-2020-1529
An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete d...
CVE-2020-1596
A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel.To exploit the vulnerability, an attacker would have to condu...
CVE-2020-16909
An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files. The vulnerability could allow elevation of privilege if an attacker can successfully exploit it.An attacker who successfully exploited the vulnerability could gain greater access to ...
CVE-2021-1722
Windows Fax Service Remote Code Execution Vulnerability
CVE-2021-40489
Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-41331
Windows Media Audio Decoder Remote Code Execution Vulnerability
CVE-2022-21867
Windows Push Notifications Apps Elevation of Privilege Vulnerability
CVE-2022-21964
Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability
CVE-2022-24550
Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2022-34689
Windows CryptoAPI Spoofing Vulnerability
CVE-2022-41050
Windows Extensible File Allocation Table Elevation of Privilege Vulnerability
CVE-2023-24883
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-28269
Windows Boot Manager Security Feature Bypass Vulnerability
CVE-2024-30015
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-30038
Win32k Elevation of Privilege Vulnerability
CVE-2024-43641
Windows Registry Elevation of Privilege Vulnerability
CVE-2018-1040
A denial of service vulnerability exists in the way that the Windows Code Integrity Module performs hashing, aka "Windows Code Integrity Module Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Wi...
CVE-2018-8341
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Serv...
CVE-2019-0907
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...
CVE-2019-1148
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker wou...
CVE-2020-0623
An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628...
CVE-2020-0665
An elevation of privilege vulnerability exists in Active Directory Forest trusts due to a default setting that lets an attacker in the trusting forest request delegation of a TGT for an identity from the trusted forest, aka 'Active Directory Elevation of Privilege Vulnerability'.
CVE-2020-0690
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.
CVE-2020-1070
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1048.
CVE-2020-1379
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...
CVE-2020-1467
An elevation of privilege vulnerability exists when Windows improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status.To exploit this vulnerability, an attacker would first have to log on to the system. An ...
CVE-2020-1554
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...
CVE-2020-1584
An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially craft...
CVE-2021-28357
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-34498
Windows GDI Elevation of Privilege Vulnerability
CVE-2021-40467
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-41340
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2021-41377
Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
CVE-2022-26790
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-34690
Windows Fax Service Elevation of Privilege Vulnerability
CVE-2022-41045
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
CVE-2023-21740
Windows Media Remote Code Execution Vulnerability
CVE-2023-23401
Windows Media Remote Code Execution Vulnerability
CVE-2023-24872
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
CVE-2023-24925
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
CVE-2023-24927
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
CVE-2023-24931
Windows Secure Channel Denial of Service Vulnerability
CVE-2023-28248
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-49122
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability