3206 matches found
CVE-2020-1475
An elevation of privilege vulnerability exists in the way that the srmsvc.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...
CVE-2020-1489
An elevation of privilege vulnerability exists when the Windows CSC Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security upd...
CVE-2020-16958
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2021-31974
Server for NFS Denial of Service Vulnerability
CVE-2021-38634
Microsoft Windows Update Client Elevation of Privilege Vulnerability
CVE-2021-40466
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-41356
Windows Denial of Service Vulnerability
CVE-2022-22002
Windows User Account Profile Picture Denial of Service Vulnerability
CVE-2022-23285
Remote Desktop Client Remote Code Execution Vulnerability
CVE-2022-30152
Windows Network Address Translation (NAT) Denial of Service Vulnerability
CVE-2022-35761
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-21558
Windows Error Reporting Service Elevation of Privilege Vulnerability
CVE-2023-21748
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-21820
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
CVE-2023-24866
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-24909
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
CVE-2023-29371
Windows GDI Elevation of Privilege Vulnerability
CVE-2023-38172
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2024-30049
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
CVE-2024-30084
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2024-38115
Windows IP Routing Management Snapin Remote Code Execution Vulnerability
CVE-2024-38196
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2025-21274
Windows Event Tracing Denial of Service Vulnerability
CVE-2018-0957
An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Information Disclosure Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Se...
CVE-2018-0961
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate vSMB packet data, aka "Hyper-V vSMB Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
CVE-2018-0971
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2...
CVE-2018-8308
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Window...
CVE-2018-8339
An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior, aka "Windows Installer Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows ...
CVE-2018-8411
An elevation of privilege vulnerability exists when NTFS improperly checks access, aka "NTFS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Window...
CVE-2018-8553
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Win...
CVE-2019-0695
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0690, CVE-2019-0701.
CVE-2019-0714
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...
CVE-2019-0720
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system ...
CVE-2019-0754
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.
CVE-2019-1067
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'.
CVE-2019-1147
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...
CVE-2020-0655
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
CVE-2020-0887
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0788, CVE-2020-0877.
CVE-2020-1130
An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.An attacker could exploit this vulnerability by running a specially cra...
CVE-2021-28333
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-33763
Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2021-33765
Windows Installer Spoofing Vulnerability
CVE-2021-33783
Windows SMB Information Disclosure Vulnerability
CVE-2021-38629
Windows Ancillary Function Driver for WinSock Information Disclosure Vulnerability
CVE-2021-40488
Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-41343
Windows Fast FAT File System Driver Information Disclosure Vulnerability
CVE-2021-41366
Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability
CVE-2021-42280
Windows Feedback Hub Elevation of Privilege Vulnerability
CVE-2021-42284
Windows Hyper-V Denial of Service Vulnerability
CVE-2022-21866
Windows System Launcher Elevation of Privilege Vulnerability