Windows 10 1703@* Security Vulnerabilities and Issues — Windows 10 1703@* CVE List

Lucene search

MicrosoftWindows 10 1703*

391 matches found

CVE•added 2018/05/09 7:29 p.m.•2086 views

CVE-2018-8174

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windo...

7.6CVSS8.1AI score0.94283EPSS

CVE•added 2017/06/15 1:29 a.m.•1329 views

CVE-2017-8464

Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows local users or remote attackers to execute arbitrary code via a crafted .LNK file,...

9.3CVSS7.2AI score0.93709EPSS

CVE•added 2019/04/09 9:29 p.m.•1251 views

CVE-2019-0841

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836.

7.8CVSS6.8AI score0.85917EPSS

CVE•added 2019/07/15 7:15 p.m.•1149 views

CVE-2019-0880

A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Elevation of Privilege Vulnerability'.

7.8CVSS7.5AI score0.0137EPSS

CVE•added 2019/04/09 9:29 p.m.•1142 views

CVE-2019-0859

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0803.

7.8CVSS8.2AI score0.84886EPSS

CVE•added 2018/10/10 1:29 p.m.•1128 views

CVE-2018-8453

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server...

7.8CVSS7.6AI score0.84016EPSS

CVE•added 2019/04/09 9:29 p.m.•1125 views

CVE-2019-0803

7.8CVSS8.2AI score0.84886EPSS

CVE•added 2019/07/29 2:13 p.m.•1095 views

CVE-2019-1130

7.8CVSS7.7AI score0.08695EPSS

CVE•added 2019/09/11 10:15 p.m.•1082 views

CVE-2019-1253

An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-...

7.8CVSS8.2AI score0.19565EPSS

CVE•added 2019/06/12 2:29 p.m.•1079 views

CVE-2019-1069

An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. An attacker who successfully exploited the vulnerability could gain elevated privileges on a victim system.To exploit the vulnerability, an attacker would require unprivileged cod...

7.8CVSS7.9AI score0.31928EPSS

CVE•added 2019/10/10 2:15 p.m.•1072 views

CVE-2019-1315

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1339, CVE-2019-1342.

7.8CVSS8.5AI score0.06219EPSS

CVE•added 2019/05/16 7:29 p.m.•1068 views

CVE-2019-0863

An elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.

7.8CVSS7.7AI score0.13544EPSS

CVE•added 2019/09/11 10:15 p.m.•1065 views

CVE-2019-1215

An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303.

7.8CVSS8.1AI score0.19565EPSS

CVE•added 2019/09/11 10:15 p.m.•1063 views

CVE-2019-1214

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.11567EPSS

CVE•added 2019/04/09 12:29 a.m.•1059 views

CVE-2019-0703

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0704, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2018/09/13 12:29 a.m.•1053 views

CVE-2018-8440

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

7.8CVSS7.5AI score0.76175EPSS

CVE•added 2019/04/09 3:29 a.m.•1046 views

CVE-2019-0797

7.8CVSS8.2AI score0.52291EPSS

CVE•added 2018/08/15 5:29 p.m.•1038 views

CVE-2018-8405

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 1...

7.8CVSS7.7AI score0.14446EPSS

CVE•added 2018/08/15 5:29 p.m.•1024 views

CVE-2018-8406

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE...

7.8CVSS7.7AI score0.14446EPSS

CVE•added 2019/05/16 7:29 p.m.•1018 views

CVE-2019-0903

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

9.3CVSS8AI score0.50678EPSS

CVE•added 2019/07/29 2:13 p.m.•1004 views

CVE-2019-1129

7.8CVSS7.7AI score0.08695EPSS

CVE•added 2018/12/12 12:29 a.m.•967 views

CVE-2018-8611

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012...

7.8CVSS8.4AI score0.06406EPSS

CVE•added 2018/08/15 5:29 p.m.•956 views

CVE-2018-8414

A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.

9.3CVSS8.9AI score0.8851EPSS

CVE•added 2019/04/09 9:29 p.m.•321 views

CVE-2019-0836

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2018/05/09 7:29 p.m.•284 views

CVE-2018-0824

A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM for Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2...

8.8CVSS7.9AI score0.8545EPSS

CVE•added 2019/07/15 7:15 p.m.•271 views

CVE-2019-1006

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.

7.5CVSS7.8AI score0.03045EPSS

CVE•added 2018/12/12 12:29 a.m.•266 views

CVE-2018-8641

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Wind...

7.8CVSS8.5AI score0.20396EPSS

CVE•added 2019/04/09 9:29 p.m.•256 views

CVE-2019-0685

7.8CVSS8.2AI score0.84886EPSS

CVE•added 2018/12/12 12:29 a.m.•254 views

CVE-2018-8639

8.4CVSS8.5AI score0.20396EPSS

CVE•added 2018/08/15 5:29 p.m.•245 views

CVE-2018-0952

An Elevation of Privilege vulnerability exists when Diagnostics Hub Standard Collector allows file creation in arbitrary locations, aka "Diagnostic Hub Standard Collector Elevation Of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Microsoft Visual Studio, Windows 10 Servers...

7.8CVSS7.9AI score0.39182EPSS

CVE•added 2018/05/09 7:29 p.m.•242 views

CVE-2018-8166

7CVSS7.4AI score0.94013EPSS

CVE•added 2019/07/15 7:15 p.m.•241 views

CVE-2019-1073

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1071.

5.5CVSS5.8AI score0.00349EPSS

CVE•added 2018/05/09 7:29 p.m.•240 views

CVE-2018-8124

7CVSS7.4AI score0.94013EPSS

CVE•added 2019/04/09 9:29 p.m.•239 views

CVE-2019-0796

5.5CVSS6.7AI score0.85917EPSS

CVE•added 2018/05/09 7:29 p.m.•232 views

CVE-2018-8164

7.8CVSS7.4AI score0.94013EPSS

CVE•added 2019/04/09 9:29 p.m.•230 views

CVE-2019-0730

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2019/04/09 12:29 a.m.•226 views

CVE-2019-0704

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2019/04/09 9:29 p.m.•226 views

CVE-2019-0731

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2019/04/09 9:29 p.m.•223 views

CVE-2019-0805

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2019/03/06 12:0 a.m.•222 views

CVE-2019-0633

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0630.

9CVSS9.3AI score0.33738EPSS

CVE•added 2019/10/10 2:15 p.m.•219 views

CVE-2019-1339

7.8CVSS8.5AI score0.06219EPSS

CVE•added 2018/08/15 5:29 p.m.•213 views

CVE-2018-8401

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE...

7.8CVSS7.7AI score0.14446EPSS

CVE•added 2019/09/11 10:15 p.m.•212 views

CVE-2019-1303

7.8CVSS8.2AI score0.19565EPSS

CVE•added 2019/09/11 10:15 p.m.•210 views

CVE-2019-1278

An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1215, CVE-2019-1253, CVE-2019-1303.

7.8CVSS8.1AI score0.19565EPSS

CVE•added 2019/10/10 2:15 p.m.•208 views

CVE-2019-1340

An elevation of privilege vulnerability exists in Windows AppX Deployment Server that allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique f...

7.8CVSS7.6AI score0.38187EPSS

CVE•added 2019/10/10 2:15 p.m.•205 views

CVE-2019-1342

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1339.

7.8CVSS8.5AI score0.06219EPSS

CVE•added 2019/03/06 12:0 a.m.•189 views

CVE-2019-0630

9CVSS9.3AI score0.33738EPSS

CVE•added 2019/07/15 7:15 p.m.•188 views

CVE-2019-1088

An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1086, CVE-2019-1087.

7.8CVSS7.6AI score0.00278EPSS

CVE•added 2019/01/08 9:29 p.m.•184 views

CVE-2019-0584

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2019/07/15 7:15 p.m.•179 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS

Total number of security vulnerabilities391