450 matches found
CVE-2021-40449
Win32k Elevation of Privilege Vulnerability
CVE-2021-1732
Windows Win32k Elevation of Privilege Vulnerability
CVE-2020-0986
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...
CVE-2020-17087
Windows Kernel Local Elevation of Privilege Vulnerability
CVE-2021-36934
<p>An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An ...
CVE-2021-41379
Windows Installer Elevation of Privilege Vulnerability
CVE-2021-36948
Windows Update Medic Service Elevation of Privilege Vulnerability
CVE-2021-34484
Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2021-31199
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
CVE-2021-31979
Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-31201
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
CVE-2021-33771
Windows Kernel Elevation of Privilege Vulnerability
CVE-2020-1464
A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.In an attack scenario, an attacker could bypass security features intended to prevent imprope...
CVE-2021-28310
Win32k Elevation of Privilege Vulnerability
CVE-2021-36955
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-40450
Win32k Elevation of Privilege Vulnerability
CVE-2021-34486
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-41357
Win32k Elevation of Privilege Vulnerability
CVE-2021-1648
Microsoft splwow64 Elevation of Privilege Vulnerability
CVE-2021-34514
Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-38633
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-36963
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2020-1337
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; ...
CVE-2021-31167
Windows Container Manager Service Elevation of Privilege Vulnerability
CVE-2021-34487
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2020-16916
<p>An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.</p><p>To exploit this vulnerability, an attacker would first have to log on to the syste...
CVE-2021-43883
Windows Installer Elevation of Privilege Vulnerability
CVE-2021-41335
Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-26868
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2021-43226
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-38671
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2021-34460
Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-43207
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-24086
Windows TCP/IP Denial of Service Vulnerability
CVE-2021-26441
Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2020-1530
An elevation of privilege vulnerability exists when Windows Remote Access improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security updat...
CVE-2021-26899
Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2020-16923
<p>A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.</p><p>To exploit the vulnerability, a user would have to open a specially...
CVE-2021-42277
Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2021-31186
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
CVE-2020-1492
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...
CVE-2020-16896
<p>An information disclosure vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s syste...
CVE-2021-43893
Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability
CVE-2021-26442
Windows HTTP.sys Elevation of Privilege Vulnerability
CVE-2021-38628
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2020-16913
<p>An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or d...
CVE-2020-1537
An elevation of privilege vulnerability exists when the Windows Remote Access improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. An...
CVE-2021-34438
Windows Font Driver Host Remote Code Execution Vulnerability
CVE-2021-34445
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2021-1638
Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG.To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the rem...