Lucene search

K
MicrosoftWindows 10 1903

393 matches found

CVE
CVE
added 2020/11/11 7:15 a.m.100 views

CVE-2020-17014

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00713EPSS
CVE
CVE
added 2020/12/10 12:15 a.m.100 views

CVE-2020-17134

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00873EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.99 views

CVE-2019-0715

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

5.8CVSS6.9AI score0.01294EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.99 views

CVE-2020-0997

<p>A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user ri...

9.3CVSS8.3AI score0.10641EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.99 views

CVE-2020-1485

An information disclosure vulnerability exists when the Windows Image Acquisition (WIA) Service improperly discloses contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, an aut...

5.5CVSS6.7AI score0.00487EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.99 views

CVE-2020-16877

<p>An elevation of privilege vulnerability exists when Microsoft Windows improperly handles reparse points. An attacker who successfully exploited this vulnerability could overwrite or delete a targeted file that would normally require elevated permissions.</p><p>To exploit this vulnerability, an a...

7.1CVSS6.8AI score0.00503EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.99 views

CVE-2020-17040

Windows Hyper-V Security Feature Bypass Vulnerability

9.8CVSS7.9AI score0.02729EPSS
CVE
CVE
added 2020/12/10 12:15 a.m.99 views

CVE-2020-17097

Windows Digital Media Receiver Elevation of Privilege Vulnerability

7.8CVSS5.7AI score0.0079EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.98 views

CVE-2019-1046

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

5.5CVSS5.6AI score0.07622EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.98 views

CVE-2019-1143

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could exploit th...

5.5CVSS6.7AI score0.00902EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.98 views

CVE-2019-1180

An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7CVSS7.3AI score0.00229EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.98 views

CVE-2019-1212

A memory corruption vulnerability exists in the Windows Server DHCP service when processing specially crafted packets. An attacker who successfully exploited the vulnerability could cause the DHCP server service to stop responding.To exploit the vulnerability, a remote unauthenticated attacker coul...

9.8CVSS8.5AI score0.1782EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.98 views

CVE-2020-0648

<p>An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate priv...

7.8CVSS8.2AI score0.00542EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.98 views

CVE-2020-16974

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

7.8CVSS8.2AI score0.00542EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.98 views

CVE-2020-17038

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0073EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.98 views

CVE-2020-17055

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0452EPSS
CVE
CVE
added 2020/12/10 12:15 a.m.98 views

CVE-2020-17139

Windows Overlay Filter Security Feature Bypass Vulnerability

7.8CVSS7.7AI score0.00421EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.97 views

CVE-2019-1158

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could exploit th...

5.5CVSS5.9AI score0.00896EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.97 views

CVE-2019-1170

An elevation of privilege vulnerability exists when reparse points are created by sandboxed processes allowing sandbox escape. An attacker who successfully exploited the vulnerability could use the sandbox escape to elevate privileges on an affected system.To exploit the vulnerability, an attacker ...

8.8CVSS8.2AI score0.02231EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.97 views

CVE-2020-1091

<p>An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.</p><p>There are multiple ways an attacker could ...

6.5CVSS6.9AI score0.22282EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.97 views

CVE-2020-1547

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security u...

7.8CVSS8.1AI score0.00378EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.97 views

CVE-2020-16895

<p>An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash. An attacker who successfully exploited this vulnerability could delete a targeted file leading to an elevated status.</p><p>To exploit this vulnerability, an attacker would fir...

7.8CVSS8.1AI score0.00744EPSS
CVE
CVE
added 2020/12/10 12:15 a.m.97 views

CVE-2020-16964

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0137EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.96 views

CVE-2019-0965

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system that could caus...

7.7CVSS8.6AI score0.00681EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.96 views

CVE-2019-1022

An elevation of privilege exists in Windows Audio Service. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit the vulnerability, an attacker could run a specially crafted application that could exploit the vulnerability. This vulner...

7.8CVSS7.8AI score0.00299EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.96 views

CVE-2019-1163

A security feature bypass exists when Windows incorrectly validates CAB file signatures. An attacker who successfully exploited this vulnerability could inject code into a CAB file without invalidating the file's signature.To exploit the vulnerability, an attacker could modify a signed CAB file and...

5.5CVSS7.4AI score0.02237EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.96 views

CVE-2019-1177

An elevation of privilege vulnerability exists in the way that the rpcss.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted ...

7CVSS7.3AI score0.00196EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.96 views

CVE-2020-1459

An information disclosure vulnerability exists on ARM implementations that use speculative execution in control flow via a side-channel analysis, aka "straight-line speculation."To exploit this vulnerability, an attacker with local privileges would need to run a specially crafted application.The se...

7.5CVSS7.1AI score0.06087EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.96 views

CVE-2020-1592

<p>An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.</p><p>To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain inform...

4.4CVSS4.2AI score0.00433EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.96 views

CVE-2020-16935

<p>An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.</p><p>To exploit this vulnerability, an attacker would first have to log on to the syste...

7.8CVSS8.2AI score0.00993EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.96 views

CVE-2020-17000

Remote Desktop Protocol Client Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00542EPSS
CVE
CVE
added 2020/12/10 12:15 a.m.95 views

CVE-2020-16961

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01021EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.95 views

CVE-2020-16968

<p>A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user ri...

9.3CVSS8.3AI score0.09107EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.95 views

CVE-2020-17025

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00514EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.95 views

CVE-2020-17036

Windows Function Discovery SSDP Provider Information Disclosure Vulnerability

5.5CVSS7AI score0.00429EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.94 views

CVE-2019-0998

An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges on the victim system.To exploit the vulnerability, an attacker would first have to gain execution on t...

7.8CVSS6.9AI score0.00666EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.94 views

CVE-2019-1172

An information disclosure vulnerability exists in Azure Active Directory (AAD) Microsoft Account (MSA) during the login request session. An attacker who successfully exploited the vulnerability could take over a user's account.To exploit the vulnerability, an attacker would have to trick a user int...

4.3CVSS6AI score0.065EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.94 views

CVE-2019-1179

An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially craft...

7CVSS7.3AI score0.00229EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.94 views

CVE-2020-0911

<p>An elevation of privilege vulnerability exists when Windows Modules Installer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context.</p><p>An attacker could exploit this vulnerability by running a specially...

7.8CVSS8.1AI score0.00576EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.94 views

CVE-2020-1115

<p>An elevation of privilege vulnerability exists when the <a href="https://technet.microsoft.com/library/security/dn848375.aspx#CLFS">Windows Common Log File System (CLFS)</a> driver improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes...

7.8CVSS8.1AI score0.00524EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.94 views

CVE-2020-17010

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00242EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.94 views

CVE-2020-17011

Windows Port Class Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0073EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.94 views

CVE-2020-17047

Windows Network File System Denial of Service Vulnerability

7.8CVSS8.2AI score0.15305EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.94 views

CVE-2020-17069

Windows NDIS Information Disclosure Vulnerability

5.5CVSS7AI score0.00403EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.93 views

CVE-2019-1007

An elevation of privilege exists in Windows Audio Service. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit the vulnerability, an attacker could run a specially crafted application that could exploit the vulnerability. This vulner...

7.8CVSS8.2AI score0.00256EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.93 views

CVE-2019-1187

A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input. An attacker who successfully exploited this vulnerability could cause a denial of service against an XML application.A remote unauthenticated attacker could exploit this vulnerability by iss...

5.5CVSS7AI score0.03246EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.93 views

CVE-2020-0782

<p>An elevation of privilege vulnerability exists when the Windows Cryptographic Catalog Services improperly handle objects in memory. An attacker who successfully exploited this vulnerability could modify the cryptographic catalog.</p><p>To exploit this vulnerability, an attacker would first have ...

7.8CVSS8.1AI score0.00726EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.93 views

CVE-2020-17032

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00514EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.93 views

CVE-2020-17037

Windows WalletService Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.0073EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.92 views

CVE-2020-0838

<p>An elevation of privilege vulnerability exists when NTFS improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>To exploit the vulnerability, an attacker would first have to log on to the system, and then run a specia...

7.8CVSS8AI score0.00726EPSS
Total number of security vulnerabilities393