CVE-2020-1368

An elevation of privilege vulnerability exists in the way that the Credential Enrollment Manager service handles objects in memory, aka 'Windows Credential Enrollment Manager Service Elevation of Privilege Vulnerability'.

CVE-2020-1399

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1249, CVE-2020-1353, CVE-2020-1370, CVE-2020-1404, CVE-2020-1413, CVE-2020-1414, CVE-2020-141...

CVE-2020-16976

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

CVE-2020-17024

Windows Client Side Rendering Print Provider Elevation of Privilege Vulnerability

CVE-2020-17113

Windows Camera Codec Information Disclosure Vulnerability

CVE-2021-24091

Windows Camera Codec Pack Remote Code Execution Vulnerability

CVE-2021-26871

Windows WalletService Elevation of Privilege Vulnerability

CVE-2021-28444

Windows Hyper-V Security Feature Bypass Vulnerability

CVE-2021-43229

Windows NTFS Elevation of Privilege Vulnerability

CVE-2022-33645

Windows TCP/IP Driver Denial of Service Vulnerability

CVE-2023-21702

Windows iSCSI Service Denial of Service Vulnerability

CVE-2023-32043

Windows Remote Desktop Security Feature Bypass Vulnerability

CVE-2023-35314

Remote Procedure Call Runtime Denial of Service Vulnerability

CVE-2023-35341

Microsoft DirectMusic Information Disclosure Vulnerability

CVE-2024-37970

Secure Boot Security Feature Bypass Vulnerability

CVE-2024-37988

Secure Boot Security Feature Bypass Vulnerability

CVE-2024-38048

Windows Network Driver Interface Specification (NDIS) Denial of Service Vulnerability

CVE-2025-21233

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21316

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21338

GDI+ Remote Code Execution Vulnerability

CVE-2025-21371

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2018-8253

An elevation of privilege vulnerability exists when Microsoft Cortana allows arbitrary website browsing on the lockscreen, aka "Microsoft Cortana Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10.

CVE-2019-0886

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

CVE-2020-0680

An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory, aka 'Windows Function Discovery Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0679, CVE-2020-0682.

CVE-2020-0781

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly handles objects in memory, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0783.

CVE-2020-0869

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0801, CVE-2020-0807, CVE-2020-0809.

CVE-2020-0909

A denial of service vulnerability exists when Hyper-V on a Windows Server fails to properly handle specially crafted network packets.To exploit the vulnerability, an attacker would send specially crafted network packets to the Hyper-V Server.The security update addresses the vulnerability by resolv...

CVE-2020-0993

A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries, aka 'Windows DNS Denial of Service Vulnerability'.

CVE-2020-1005

An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka 'Microsoft Graphics Component Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0982, CVE-2020-0987.

CVE-2020-1014

An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'.

CVE-2020-1116

An information disclosure vulnerability exists when the Windows Client Server Run-Time Subsystem (CSRSS) fails to properly handle objects in memory, aka 'Windows CSRSS Information Disclosure Vulnerability'.

CVE-2020-1123

A denial of service vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Denial of Service Vulnerability'. This CVE ID is unique from CVE-2020-1084.

CVE-2020-1283

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.

CVE-2020-1344

An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory, aka 'Windows WalletService Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1362, CVE-2020-1369.

CVE-2020-1385

An elevation of privilege vulnerability exists in the way that the Windows Credential Picker handles objects in memory, aka 'Windows Credential Picker Elevation of Privilege Vulnerability'.

CVE-2020-1397

An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory, aka 'Windows Imaging Component Information Disclosure Vulnerability'.

CVE-2021-26898

Windows Event Tracing Elevation of Privilege Vulnerability

CVE-2021-28320

Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability

CVE-2021-43216

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

CVE-2021-43231

Windows NTFS Elevation of Privilege Vulnerability

CVE-2021-43238

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2023-32035

Remote Procedure Call Runtime Denial of Service Vulnerability

CVE-2023-35309

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

CVE-2023-35358

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-37973

Secure Boot Security Feature Bypass Vulnerability

CVE-2024-38102

Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

CVE-2024-38126

Windows Network Address Translation (NAT) Denial of Service Vulnerability

CVE-2024-43449

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

CVE-2025-24988

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack.

CVE-2025-27484

Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over a network.