3000 matches found
CVE-2020-1596
A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel.To exploit the vulnerability, an attacker would have to condu...
CVE-2020-16909
An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files. The vulnerability could allow elevation of privilege if an attacker can successfully exploit it.An attacker who successfully exploited the vulnerability could gain greater access to ...
CVE-2020-17092
Windows Network Connections Service Elevation of Privilege Vulnerability
CVE-2021-1722
Windows Fax Service Remote Code Execution Vulnerability
CVE-2021-31168
Windows Container Manager Service Elevation of Privilege Vulnerability
CVE-2021-31169
Windows Container Manager Service Elevation of Privilege Vulnerability
CVE-2021-31192
Windows Media Foundation Core Remote Code Execution Vulnerability
CVE-2021-31952
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2021-31969
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2021-31977
Windows Hyper-V Denial of Service Vulnerability
CVE-2021-34503
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-41331
Windows Media Audio Decoder Remote Code Execution Vulnerability
CVE-2022-21835
Microsoft Cryptographic Services Elevation of Privilege Vulnerability
CVE-2022-21867
Windows Push Notifications Apps Elevation of Privilege Vulnerability
CVE-2022-21964
Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability
CVE-2022-22715
Named Pipe File System Elevation of Privilege Vulnerability
CVE-2022-24488
Windows Desktop Bridge Elevation of Privilege Vulnerability
CVE-2022-24550
Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2022-34689
Windows CryptoAPI Spoofing Vulnerability
CVE-2022-41050
Windows Extensible File Allocation Table Elevation of Privilege Vulnerability
CVE-2022-44666
Windows Contacts Remote Code Execution Vulnerability
CVE-2023-21759
Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability
CVE-2018-0832
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are handled, aka "Windows Information Disclosure Vulnera...
CVE-2018-8341
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Serv...
CVE-2018-8454
An information disclosure vulnerability exists when Windows Audio Service fails to properly handle objects in memory, aka "Windows Audio Service Information Disclosure Vulnerability." This affects Windows 10 Servers, Windows 10, Windows Server 2019.
CVE-2019-0837
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Information Disclosure Vulnerability'.
CVE-2019-0907
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...
CVE-2019-1123
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1124, CVE-2019-112...
CVE-2019-1148
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker wou...
CVE-2020-0623
An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628...
CVE-2020-0690
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.
CVE-2020-1303
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context.An attacker could exploit this vulnerability by running a specially crafted applica...
CVE-2020-1379
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...
CVE-2020-1554
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...
CVE-2020-1584
An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially craft...
CVE-2020-16899
A denial of service vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to send speci...
CVE-2020-17103
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2021-28357
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-34498
Windows GDI Elevation of Privilege Vulnerability
CVE-2021-40467
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2021-40489
Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-41340
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2021-41377
Windows Fast FAT File System Driver Elevation of Privilege Vulnerability
CVE-2022-26790
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-34690
Windows Fax Service Elevation of Privilege Vulnerability
CVE-2022-41045
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
CVE-2022-41096
Microsoft DWM Core Library Elevation of Privilege Vulnerability
CVE-2017-0100
A DCOM object in Helppane.exe in Microsoft Windows 7 SP1; Windows Server 2008 R2; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows local users to gain privileges via a crafted application, aka "Windows HelpPane Elevation o...
CVE-2018-8332
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Win32k Graphics Remote Code Execution Vulnerability." This affects Windows 7, Microsoft Office, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows S...
CVE-2018-8394
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....