3000 matches found
CVE-2019-1162
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view,...
CVE-2019-1289
An elevation of privilege vulnerability exists when the Windows Update Delivery Optimization does not properly enforce file share permissions, aka 'Windows Update Delivery Optimization Elevation of Privilege Vulnerability'.
CVE-2021-33740
Windows Media Remote Code Execution Vulnerability
CVE-2021-33757
Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability
CVE-2022-21913
Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass
CVE-2022-22011
Windows Graphics Component Information Disclosure Vulnerability
CVE-2022-35768
Windows Kernel Elevation of Privilege Vulnerability
CVE-2019-0847
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0851, CVE-2019-0877, CVE-2019-0879.
CVE-2020-0635
An elevation of privilege vulnerability exists in Microsoft Windows when Windows fails to properly handle certain symbolic links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0644.
CVE-2020-0764
<p>An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p><p>To exploit the vulnerability, an attacker would first need code execution on a victi...
CVE-2021-31187
Windows WalletService Elevation of Privilege Vulnerability
CVE-2021-31194
OLE Automation Remote Code Execution Vulnerability
CVE-2022-24542
Windows Win32k Elevation of Privilege Vulnerability
CVE-2020-16910
<p>A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.</p><p>To exploit this vulnerability, an attacker could run a specia...
CVE-2021-26425
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-31961
Windows InstallService Elevation of Privilege Vulnerability
CVE-2021-34457
Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2021-34534
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2021-36938
Windows Cryptographic Primitives Library Information Disclosure Vulnerability
CVE-2022-30153
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
CVE-2022-30197
Windows Kernel Information Disclosure Vulnerability
CVE-2023-21765
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2018-8420
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka "MS XML Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serve...
CVE-2019-0570
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka "Windows Runtime Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, ...
CVE-2020-1509
An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service (LSASS) when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause an elevation of privilege on the targ...
CVE-2021-31183
Windows TCP/IP Driver Denial of Service Vulnerability
CVE-2021-33749
Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-36937
Windows Media MPEG-4 Video Decoder Remote Code Execution Vulnerability
CVE-2022-29140
Windows Print Spooler Information Disclosure Vulnerability
CVE-2019-0582
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...
CVE-2019-0601
An information disclosure vulnerability exists when the Human Interface Devices (HID) component improperly handles objects in memory, aka 'HID Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0600.
CVE-2019-0621
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0661, CVE-2019-0663.
CVE-2020-0910
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote Code Execution Vulnerability'.
CVE-2021-31971
Windows HTML Platforms Security Feature Bypass Vulnerability
CVE-2021-34439
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-34533
Windows Graphics Component Font Parsing Remote Code Execution Vulnerability
CVE-2021-43215
iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
CVE-2022-24483
Windows Kernel Information Disclosure Vulnerability
CVE-2022-30143
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
CVE-2022-34722
Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
CVE-2023-21771
Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability
CVE-2023-21812
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2018-0878
Windows Remote Assistance in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how X...
CVE-2019-0625
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0595, CVE-2019-0596, CVE-2019-0597, CVE-2019-0598, CVE-2019-0599.
CVE-2019-0735
An elevation of privilege vulnerability exists when the Windows Client Server Run-Time Subsystem (CSRSS) fails to properly handle objects in memory, aka 'Windows CSRSS Elevation of Privilege Vulnerability'.
CVE-2019-0943
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view,...
CVE-2021-24094
Windows TCP/IP Remote Code Execution Vulnerability
CVE-2021-34440
GDI+ Information Disclosure Vulnerability
CVE-2022-26789
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-30149
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability