751 matches found
CVE-2020-0764
<p>An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p><p>To exploit the vulnerability, an attacker would first need code execution on a victi...
CVE-2021-31187
Windows WalletService Elevation of Privilege Vulnerability
CVE-2021-31194
OLE Automation Remote Code Execution Vulnerability
CVE-2020-16910
<p>A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.</p><p>To exploit this vulnerability, an attacker could run a specia...
CVE-2021-26425
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-31961
Windows InstallService Elevation of Privilege Vulnerability
CVE-2021-34457
Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2021-34534
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2020-1509
An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service (LSASS) when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause an elevation of privilege on the targ...
CVE-2021-31183
Windows TCP/IP Driver Denial of Service Vulnerability
CVE-2021-33749
Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-36937
Windows Media MPEG-4 Video Decoder Remote Code Execution Vulnerability
CVE-2021-31971
Windows HTML Platforms Security Feature Bypass Vulnerability
CVE-2021-34533
Windows Graphics Component Font Parsing Remote Code Execution Vulnerability
CVE-2021-43215
iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
CVE-2021-24094
Windows TCP/IP Remote Code Execution Vulnerability
CVE-2021-34440
GDI+ Information Disclosure Vulnerability
CVE-2020-1577
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit the vulnerabil...
CVE-2021-26426
Windows User Account Profile Picture Elevation of Privilege Vulnerability
CVE-2021-26865
Windows Container Execution Agent Elevation of Privilege Vulnerability
CVE-2020-16911
<p>A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or d...
CVE-2020-16927
<p>A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system to stop responding.<...
CVE-2021-26885
Windows WalletService Elevation of Privilege Vulnerability
CVE-2021-34456
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-34483
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2021-38667
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2021-42279
Chakra Scripting Engine Memory Corruption Vulnerability
CVE-2021-26443
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability
CVE-2021-33756
Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-34441
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2020-1470
An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The sec...
CVE-2020-1561
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.To exploit the vulnerability, a user would have to open a specially crafted f...
CVE-2021-26431
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
CVE-2021-34455
Windows File History Service Elevation of Privilege Vulnerability
CVE-2021-34462
Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
CVE-2021-34492
Windows Certificate Spoofing Vulnerability
CVE-2021-34497
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2021-36933
Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability
CVE-2020-1243
<p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.</p><p>To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running a...
CVE-2020-1518
An elevation of privilege vulnerability exists when the Windows File Server Resource Management Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate...
CVE-2021-36965
Windows WLAN AutoConfig Service Remote Code Execution Vulnerability
CVE-2020-16887
<p>An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.</p><p>To exploit the vulnerability, a locally authenticated att...
CVE-2020-16924
<p>A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.</p><p>An attacker could exploit this vulnerability by enticing a vict...
CVE-2020-17136
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2021-31193
Windows SSDP Service Elevation of Privilege Vulnerability
CVE-2020-16940
<p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context.</p><p>To exploit this vulnerability, an attacker wou...
CVE-2021-28353
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-34454
Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2021-34530
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2021-36926
Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability