Lucene search

K
MicrosoftWindows 10 1903

393 matches found

CVE
CVE
added 2020/09/11 5:15 p.m.92 views

CVE-2020-0890

<p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.</p><p>To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running a...

6.5CVSS6.3AI score0.11331EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.92 views

CVE-2020-1122

<p>An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>An attacker could exploit this vulnerability by running a specia...

7.8CVSS6.7AI score0.00637EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.92 views

CVE-2020-1598

<p>An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs...

7.8CVSS7.4AI score0.01512EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.92 views

CVE-2020-16876

<p>An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p><p>To exploit the vulnerability, an attacker would first n...

7.8CVSS7.8AI score0.00524EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.92 views

CVE-2020-17034

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00681EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.91 views

CVE-2019-0983

An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges on the victim system.To exploit the vulnerability, an attacker would first have to gain execution on t...

7.8CVSS6.9AI score0.00666EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.91 views

CVE-2019-1041

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new ...

7.8CVSS7.3AI score0.00242EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.91 views

CVE-2019-1198

An elevation of privilege exists in SyncController.dll. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit the vulnerability, an attacker could run a specially crafted application that could exploit the vulnerability. This vulnerabi...

7.5CVSS8.4AI score0.00486EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.91 views

CVE-2020-16905

<p>An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files. The vulnerability could allow elevation of privilege if an attacker can successfully exploit it.</p><p>An attacker who successfully exploited the vulnerability could gain greater ...

7.8CVSS7.3AI score0.00838EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.91 views

CVE-2020-17004

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS7AI score0.00448EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.91 views

CVE-2020-17033

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00514EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.91 views

CVE-2020-17041

Windows Print Configuration Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00428EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.91 views

CVE-2020-17068

Windows GDI+ Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.0073EPSS
CVE
CVE
added 2021/02/25 11:15 p.m.91 views

CVE-2020-17162

Microsoft Windows Security Feature Bypass Vulnerability

8.8CVSS8.5AI score0.10614EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.90 views

CVE-2019-1186

An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7CVSS7.3AI score0.00304EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.90 views

CVE-2019-1188

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user ri...

9.3CVSS8.2AI score0.06062EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.90 views

CVE-2020-0904

<p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.</p><p>To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running a...

6.5CVSS7AI score0.00907EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.90 views

CVE-2020-0922

<p>A remote code execution vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.</p><p>To exploit the vulnerability, a user would have to open a specially cr...

9.3CVSS8.7AI score0.129EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.90 views

CVE-2020-1053

<p>An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with ...

7.8CVSS8.1AI score0.00512EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.90 views

CVE-2020-1146

<p>An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.</...

7.8CVSS7.4AI score0.00681EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.90 views

CVE-2020-1159

<p>An elevation of privilege vulnerability exists in the way that the StartTileData.dll handles file creation in protected locations. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.</p><p>To exploit the vulnerability, a locally authenticated at...

7.8CVSS7AI score0.00406EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.90 views

CVE-2020-17045

Windows KernelStream Information Disclosure Vulnerability

5.5CVSS7AI score0.00606EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.89 views

CVE-2019-1171

An information disclosure vulnerability exists in SymCrypt during the OAEP decryption stage. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker would have to log on to an affected syst...

5.6CVSS7AI score0.00417EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.89 views

CVE-2019-1185

An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7.8CVSS7.6AI score0.00798EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.89 views

CVE-2020-0912

<p>An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elev...

7.8CVSS7.7AI score0.00317EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.89 views

CVE-2020-1047

<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could gain elevated privileges on a target operating system.</p><p>This vulnerability by itself does not a...

7.8CVSS8.6AI score0.00744EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.89 views

CVE-2020-17027

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00681EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.89 views

CVE-2020-17046

Windows Error Reporting Denial of Service Vulnerability

5.5CVSS6.7AI score0.00366EPSS
CVE
CVE
added 2020/12/10 12:15 a.m.89 views

CVE-2020-17094

Windows Error Reporting Information Disclosure Vulnerability

5.5CVSS5.9AI score0.00542EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.88 views

CVE-2020-1038

<p>A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.</p><p>To exploit this vulnerability, an attacker would have to log on to an affec...

5.5CVSS6.8AI score0.00702EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.88 views

CVE-2020-1074

<p>A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.</p><p>An attacker could exploit this vulnerability by enticing a vict...

9.3CVSS8.3AI score0.31961EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.88 views

CVE-2020-1245

<p>An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data...

7.8CVSS7.8AI score0.0047EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.88 views

CVE-2020-16900

<p>An elevation of privilege vulnerability exists when the Windows Event System improperly handles objects in memory.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

7.8CVSS7.7AI score0.00263EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.88 views

CVE-2020-16915

<p>A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.</p><p>There are multiple ways ...

8.8CVSS8.1AI score0.12345EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.88 views

CVE-2020-17029

Windows Canonical Display Driver Information Disclosure Vulnerability

5.5CVSS7AI score0.00606EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.87 views

CVE-2019-1175

An elevation of privilege vulnerability exists in the way that the psmsrv.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7CVSS7.3AI score0.00196EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.87 views

CVE-2019-1176

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with ful...

7.2CVSS8.2AI score0.00213EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.87 views

CVE-2020-0908

<p>A remote code execution vulnerability exists when the Windows Text Service Module improperly handles memory. An attacker who successfully exploited the vulnerability could gain execution on a victim system.</p><p>An attacker could host a specially crafted website that is designed to exploit the ...

7.6CVSS8AI score0.05083EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.87 views

CVE-2020-0928

<p>An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an attacker would have to ...

5.5CVSS4.7AI score0.00986EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.87 views

CVE-2020-1129

<p>A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or ...

8.8CVSS8.7AI score0.14862EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.87 views

CVE-2020-1491

<p>An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.</p><p>To exploit the vulnerability, a locally authenticated atta...

7.8CVSS8.1AI score0.00529EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.87 views

CVE-2020-16973

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

7.8CVSS8.2AI score0.00524EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.87 views

CVE-2020-17030

Windows MSCTF Server Information Disclosure Vulnerability

5.5CVSS5.9AI score0.00606EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.87 views

CVE-2020-17056

Windows Network File System Information Disclosure Vulnerability

5.5CVSS7AI score0.00448EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.86 views

CVE-2019-0717

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

5.8CVSS5.7AI score0.01294EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.86 views

CVE-2020-0837

<p>An elevation of privilege vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests. An attacker who successfully exploited this vulnerability could bypass some, but not all, of the authentication factors.</p><p>To exploit this ...

5.3CVSS6.7AI score0.0137EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.86 views

CVE-2020-0839

<p>An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.</p><p>To exploit the vulnerability, a locally authenticated attacker could run a speci...

7.8CVSS8.1AI score0.00502EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.86 views

CVE-2020-0921

Microsoft Graphics Component Denial of Service Vulnerability

5.5CVSS6.7AI score0.01084EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.86 views

CVE-2020-0951

<p>A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC.</p><p>To exploit the ...

7.2CVSS7.7AI score0.02554EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.86 views

CVE-2020-1256

<p>An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p><p>There are multiple ways an attacker coul...

6.5CVSS6.4AI score0.158EPSS
Total number of security vulnerabilities393