3563 matches found
CVE-2020-0996
An elevation of privilege vulnerability exists when the Windows Update Stack fails to properly handle objects in memory, aka 'Windows Update Stack Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0985.
CVE-2020-1072
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'.
CVE-2020-1140
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.
CVE-2020-1252
A remote code execution vulnerability exists when Windows improperly handles objects in memory. To exploit the vulnerability an attacker would have to convince a user to run a specially crafted application.An attacker who successfully exploited this vulnerability could execute arbitrary code and ta...
CVE-2020-1369
An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory, aka 'Windows WalletService Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1344, CVE-2020-1362.
CVE-2020-1437
An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory, aka 'Windows Network Location Awareness Service Elevation of Privilege Vulnerability'.
CVE-2021-26862
Windows Installer Elevation of Privilege Vulnerability
CVE-2021-26873
Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2021-27088
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2023-35641
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
CVE-2024-30079
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2024-30093
Windows Storage Elevation of Privilege Vulnerability
CVE-2024-35270
Windows iSCSI Service Denial of Service Vulnerability
CVE-2024-37981
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-38145
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
CVE-2024-38243
Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2024-49081
Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability
CVE-2025-21237
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21330
Windows Remote Desktop Services Denial of Service Vulnerability
CVE-2025-24050
Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.
CVE-2025-26665
Sensitive data storage in improperly locked memory in Windows upnphost.dll allows an authorized attacker to elevate privileges locally.
CVE-2025-26686
Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVE-2025-27735
Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.
CVE-2019-0712
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1309, CVE-2019-1310, CVE-20...
CVE-2019-1277
An elevation of privilege vulnerability exists in Windows Audio Service when a malformed parameter is processed, aka 'Windows Audio Service Elevation of Privilege Vulnerability'.
CVE-2019-1436
An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1440.
CVE-2020-0740
An elevation of privilege vulnerability exists in the way that the Connected Devices Platform Service handles objects in memory, aka 'Connected Devices Platform Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0741, CVE-2020-0742, CVE-2020-0743, CVE-2020-0749, CVE-...
CVE-2020-0861
An information disclosure vulnerability exists when the Windows Network Driver Interface Specification (NDIS) improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Network Driver Interface Specification (NDIS) Info...
CVE-2020-0870
An elevation of privilege vulnerability exists when the Shell infrastructure component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context.To exploit this vulnerability, an attacker would first have to log on to ...
CVE-2020-1267
This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request, aka 'Local Security Authority Subsystem Service Denial of Service Vulnerability'.
CVE-2020-1389
An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1367, CVE-2020-1419, CVE-2020-1426.
CVE-2020-1418
An elevation of privilege vulnerability exists when the Windows Diagnostics Execution Service fails to properly sanitize input, leading to an unsecure library-loading behavior, aka 'Windows Diagnostics Hub Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1393.
CVE-2020-1559
An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. ...
CVE-2021-26866
Windows Update Service Elevation of Privilege Vulnerability
CVE-2021-26884
Windows Media Photo Codec Information Disclosure Vulnerability
CVE-2021-43219
DirectX Graphics Kernel File Denial of Service Vulnerability
CVE-2024-37971
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37972
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37983
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
CVE-2024-38046
PowerShell Elevation of Privilege Vulnerability
CVE-2024-38052
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38070
Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability
CVE-2024-38091
Microsoft WS-Discovery Denial of Service Vulnerability
CVE-2024-38237
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-43487
Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2024-43501
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2024-43615
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
CVE-2025-21252
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21282
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21294
Microsoft Digest Authentication Remote Code Execution Vulnerability