Windows 10 1809 Security Vulnerabilities and Issues — Page 32 of Windows 10 1809 CVE List

Exposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally.

5.5CVSS6.6AI score0.00089EPSS

CVE•added 2018/12/12 12:29 a.m.•115 views

CVE-2018-8596

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

6.5CVSS7.1AI score0.27405EPSS

CVE•added 2019/06/12 2:29 p.m.•115 views

CVE-2019-0905

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.1AI score0.10107EPSS

CVE•added 2019/08/14 9:15 p.m.•115 views

CVE-2019-1057

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input. An attacker who successfully exploited the vulnerability could run malicious code remotely to take control of the user’s system.To exploit the vulnerability, an attacker could host a...

9.3CVSS8.6AI score0.04431EPSS

CVE•added 2019/07/29 2:11 p.m.•115 views

CVE-2019-1122

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1123, CVE-2019-1124, CVE-2019-112...

9.3CVSS8.4AI score0.40075EPSS

CVE•added 2019/08/14 9:15 p.m.•115 views

CVE-2019-1157

9.3CVSS7.9AI score0.04974EPSS

CVE•added 2019/08/14 9:15 p.m.•115 views

CVE-2019-1159

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new ...

7.8CVSS8.6AI score0.01533EPSS

CVE•added 2019/12/10 10:15 p.m.•115 views

CVE-2019-1476

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1483.

7.8CVSS8.1AI score0.14661EPSS

CVE•added 2020/01/14 11:15 p.m.•115 views

CVE-2020-0620

An elevation of privilege vulnerability exists when Microsoft Cryptographic Services improperly handles files, aka 'Microsoft Cryptographic Services Elevation of Privilege Vulnerability'.

7.8CVSS8.4AI score0.00377EPSS

CVE•added 2020/09/11 5:15 p.m.•115 views

CVE-2020-0914

An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.An attacker could exploit this vulnerability by r...

5.5CVSS6.3AI score0.01084EPSS

CVE•added 2020/04/15 3:15 p.m.•115 views

CVE-2020-0959

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS

CVE•added 2020/06/09 8:15 p.m.•115 views

CVE-2020-1312

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS8.1AI score0.00656EPSS

CVE•added 2020/07/14 11:15 p.m.•115 views

CVE-2020-1346

An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations, aka 'Windows Modules Installer Elevation of Privilege Vulnerability'.

7.8CVSS7.6AI score0.003EPSS

CVE•added 2020/08/17 7:15 p.m.•115 views

CVE-2020-1475

An elevation of privilege vulnerability exists in the way that the srmsvc.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7.8CVSS8.6AI score0.00914EPSS

CVE•added 2020/08/17 7:15 p.m.•115 views

CVE-2020-1489

An elevation of privilege vulnerability exists when the Windows CSC Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security upd...

7.8CVSS8.5AI score0.00387EPSS

CVE•added 2021/06/08 11:15 p.m.•115 views

CVE-2021-31974

Server for NFS Denial of Service Vulnerability

7.5CVSS8.3AI score0.16424EPSS

CVE•added 2021/09/15 12:15 p.m.•115 views

CVE-2021-38634

Microsoft Windows Update Client Elevation of Privilege Vulnerability

7.8CVSS7.3AI score0.0035EPSS

CVE•added 2021/10/13 1:15 a.m.•115 views

CVE-2021-40466

Windows Common Log File System Driver Elevation of Privilege Vulnerability