2952 matches found
CVE-2023-36907
Windows Cryptographic Services Information Disclosure Vulnerability
CVE-2023-36908
Windows Hyper-V Information Disclosure Vulnerability
CVE-2024-30032
Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2024-38223
Windows Initial Machine Configuration Elevation of Privilege Vulnerability
CVE-2019-0961
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0758, CVE-2019-0882.
CVE-2019-1252
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1286.
CVE-2019-1359
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1358.
CVE-2019-1466
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1465, CVE-2019-1467.
CVE-2020-0791
An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0898.
CVE-2020-0916
An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, aka 'Windows GDI Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0915.
CVE-2020-1211
An elevation of privilege vulnerability exists in the way that the Connected Devices Platform Service handles objects in memory, aka 'Connected Devices Platform Service Elevation of Privilege Vulnerability'.
CVE-2020-1234
An elevation of privilege vulnerability exists when Windows Error Reporting improperly handles objects in memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.
CVE-2021-38624
Windows Key Storage Provider Security Feature Bypass Vulnerability
CVE-2022-21834
Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability
CVE-2022-21904
Windows GDI Information Disclosure Vulnerability
CVE-2022-29125
Windows Push Notifications Apps Elevation of Privilege Vulnerability
CVE-2022-41090
Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability
CVE-2024-30071
Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2024-30087
Win32k Elevation of Privilege Vulnerability
CVE-2024-38134
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2025-21318
Windows Kernel Memory Information Disclosure Vulnerability
CVE-2025-21340
Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability
CVE-2018-8472
An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2...
CVE-2018-8481
An information disclosure vulnerability exists when Windows Media Player improperly discloses file information, aka "Windows Media Player Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2...
CVE-2019-0707
An elevation of privilege vulnerability exists in the Network Driver Interface Specification (NDIS) when ndis.sys fails to check the length of a buffer prior to copying memory to it.To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to el...
CVE-2019-0758
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0882, CVE-2019-0961.
CVE-2019-0893
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0894, CVE-2019-0895, CVE-2019-0896,...
CVE-2019-1085
An elevation of privilege vulnerability exists in the way that the wlansvc.dll handles objects in memory, aka 'Windows WLAN Service Elevation of Privilege Vulnerability'.
CVE-2019-1119
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-1124, CVE-2019-112...
CVE-2019-1124
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-112...
CVE-2019-1270
An elevation of privilege vulnerability exists in Windows store installer where WindowsApps directory is vulnerable to symbolic link attack, aka 'Microsoft Windows Store Installer Elevation of Privilege Vulnerability'.
CVE-2019-1393
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1394, CVE-2019-1395, CVE-2019-1396, CVE-2019-1408, CVE-2019-1434.
CVE-2020-1175
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1051, CVE-2020-1174, CVE-2020-1176.
CVE-2020-1306
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, CVE-2020-1265, CVE-2020-1282, CVE-2020-1304, CVE-2020-133...
CVE-2021-36967
Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
CVE-2021-38635
Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability
CVE-2021-40470
DirectX Graphics Kernel Elevation of Privilege Vulnerability
CVE-2021-42288
Windows Hello Security Feature Bypass Vulnerability
CVE-2022-21961
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-35841
Windows Enterprise App Management Service Remote Code Execution Vulnerability
CVE-2022-37978
Windows Active Directory Certificate Services Security Feature Bypass
CVE-2022-37982
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2022-37990
Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-38005
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-38038
Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-38051
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-30001
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
CVE-2024-30004
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
CVE-2024-38104
Windows Fax Service Remote Code Execution Vulnerability
CVE-2024-38180
Windows SmartScreen Security Feature Bypass Vulnerability