Lucene search

K
MicrosoftWindows 10

2979 matches found

CVE
CVE
added 2020/02/11 10:15 p.m.89 views

CVE-2020-0754

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0753.

7.8CVSS8.1AI score0.1948EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.89 views

CVE-2020-0762

An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Windows Defender Security Center Elevation of Privilege Vulnerability'. This CVE ID is uniq...

7.8CVSS8.5AI score0.00502EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.89 views

CVE-2020-0772

An elevation of privilege vulnerability exists when Windows Error Reporting improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CV...

7.8CVSS8.7AI score0.0038EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.89 views

CVE-2020-0785

An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'.

7.1CVSS8AI score0.00432EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.89 views

CVE-2020-0951

A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC.To exploit the vulnerabil...

7.2CVSS7.7AI score0.02554EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.89 views

CVE-2020-0962

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0699.

5.5CVSS6AI score0.00873EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.89 views

CVE-2020-1017

An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0940, CVE-2020-1001, CVE-2020-1006.

7.8CVSS7.8AI score0.00397EPSS
CVE
CVE
added 2020/05/21 11:15 p.m.89 views

CVE-2020-1028

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1126, CVE-2020-1136, CVE-2020-1150.

9.3CVSS8.1AI score0.23624EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.89 views

CVE-2020-1038

A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to log on to an affected system...

5.5CVSS6.8AI score0.00689EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.89 views

CVE-2020-1074

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.3AI score0.30303EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.89 views

CVE-2020-1197

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00397EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.89 views

CVE-2020-1199

An elevation of privilege vulnerability exists when the Windows Feedback Hub improperly handles objects in memory, aka 'Windows Feedback Hub Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00397EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.89 views

CVE-2020-1209

An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory, aka 'Windows Network List Service Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.13831EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.89 views

CVE-2020-1245

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; o...

7.8CVSS7.8AI score0.00454EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.89 views

CVE-2020-1263

An information disclosure vulnerability exists in the way Windows Error Reporting (WER) handles objects in memory, aka 'Windows Error Reporting Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1261.

5.5CVSS6.2AI score0.00479EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.89 views

CVE-2020-1310

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1247, CVE-2020-1251, CVE-2020-1253.

7.2CVSS7AI score0.00589EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.89 views

CVE-2020-1370

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1249, CVE-2020-1353, CVE-2020-1399, CVE-2020-1404, CVE-2020-1413, CVE-2020-1414, CVE-2020-141...

7.8CVSS7.7AI score0.00378EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.89 views

CVE-2020-1371

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID i...

7.8CVSS8.6AI score0.0061EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.89 views

CVE-2020-1422

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1249, CVE-2020-1353, CVE-2020-1370, CVE-2020-1399, CVE-2020-1404, CVE-2020-1413, CVE-2020-141...

7.8CVSS7.7AI score0.00378EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.89 views

CVE-2020-1491

An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could...

7.8CVSS8.1AI score0.00512EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.89 views

CVE-2020-1571

An elevation of privilege vulnerability exists in Windows Setup in the way it handles permissions.A locally authenticated attacker could run arbitrary code with elevated system privileges. After successfully exploiting the vulnerability, an attacker could then install programs; view, change, or del...

7.8CVSS7.5AI score0.00818EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.89 views

CVE-2020-16915

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...

8.8CVSS8.1AI score0.14818EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.89 views

CVE-2020-17029

Windows Canonical Display Driver Information Disclosure Vulnerability

5.5CVSS7AI score0.00446EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.89 views

CVE-2020-17035

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.01827EPSS
CVE
CVE
added 2021/01/12 8:15 p.m.89 views

CVE-2021-1642

Windows AppX Deployment Extensions Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.0034EPSS
CVE
CVE
added 2021/05/21 8:15 p.m.89 views

CVE-2021-21552

Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass the restricted environment and perform unauthorized actions on the af...

8.8CVSS8.3AI score0.00139EPSS
CVE
CVE
added 2021/02/25 11:15 p.m.89 views

CVE-2021-24076

Microsoft Windows VMSwitch Information Disclosure Vulnerability

5.5CVSS6.9AI score0.00285EPSS
CVE
CVE
added 2021/03/11 4:15 p.m.89 views

CVE-2021-26875

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00378EPSS
CVE
CVE
added 2021/03/11 4:15 p.m.89 views

CVE-2021-27077

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.02391EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.89 views

CVE-2021-28314

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00513EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.89 views

CVE-2021-28347

Windows Speech Runtime Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00681EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.89 views

CVE-2021-28446

Windows Portmapping Information Disclosure Vulnerability

7.1CVSS6.6AI score0.0099EPSS
CVE
CVE
added 2022/10/11 7:15 p.m.89 views

CVE-2022-37965

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

5.9CVSS6.9AI score0.01EPSS
CVE
CVE
added 2022/10/11 7:15 p.m.89 views

CVE-2022-37973

Windows Local Session Manager (LSM) Denial of Service Vulnerability

7.7CVSS7.5AI score0.01508EPSS
CVE
CVE
added 2022/10/11 7:15 p.m.89 views

CVE-2022-37994

Windows Group Policy Preference Client Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00272EPSS
CVE
CVE
added 2016/05/11 1:59 a.m.88 views

CVE-2016-0168

GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to obtain sensitive information via a crafted document, aka "Windows Graphics Component Informati...

6.5CVSS5.9AI score0.69648EPSS
CVE
CVE
added 2016/05/11 1:59 a.m.88 views

CVE-2016-0176

dxgkrnl.sys in the DirectX Graphics kernel subsystem in the kernel-mode drivers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Mi...

7.8CVSS7.3AI score0.00469EPSS
CVE
CVE
added 2016/10/14 2:59 a.m.88 views

CVE-2016-3263

Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync ...

5.5CVSS6AI score0.19061EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.88 views

CVE-2017-0063

The Color Management Module (ICM32.dll) memory handling functionality in Windows Vista SP2; Windows Server 2008 SP2 and R2; and Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to bypass ASL...

6.5CVSS5.4AI score0.18487EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.88 views

CVE-2017-0118

Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a craft...

4.3CVSS4.5AI score0.13744EPSS
CVE
CVE
added 2017/05/12 2:29 p.m.88 views

CVE-2017-0212

Windows Hyper-V allows an elevation of privilege vulnerability when Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 fail to properly validate vSMB packet data, aka "Windows Hyper-V vSMB Elevation of Privilege Vulnerability".

7.6CVSS7.6AI score0.00351EPSS
CVE
CVE
added 2017/05/12 2:29 p.m.88 views

CVE-2017-0258

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows authenticated attackers to obtain sensitive information via a specially crafted document...

4.7CVSS5.1AI score0.04995EPSS
CVE
CVE
added 2017/06/15 1:29 a.m.88 views

CVE-2017-8470

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an authenticated attacker to run a specially crafted application when the Windows kernel improperly initializ...

5CVSS4.7AI score0.15731EPSS
CVE
CVE
added 2018/09/13 12:29 a.m.88 views

CVE-2018-8337

A security feature bypass vulnerability exists when Windows Subsystem for Linux improperly handles case sensitivity, aka "Windows Subsystem for Linux Security Feature Bypass Vulnerability." This affects Windows 10, Windows 10 Servers.

5.3CVSS6.3AI score0.00241EPSS
CVE
CVE
added 2018/12/12 12:29 a.m.88 views

CVE-2018-8637

An information disclosure vulnerability exists in Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass, aka "Win32k Information Disclosure Vulnerability." This affects Windows 10 Servers, Windows 10, Window...

5.5CVSS6.2AI score0.01202EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.88 views

CVE-2019-0717

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

5.8CVSS5.7AI score0.01294EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.88 views

CVE-2019-1175

An elevation of privilege vulnerability exists in the way that the psmsrv.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7CVSS7.3AI score0.00196EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.88 views

CVE-2019-1176

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with ful...

7.2CVSS8.2AI score0.00213EPSS
CVE
CVE
added 2019/10/10 2:15 p.m.88 views

CVE-2019-1230

An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Information Disclosure Vulnerability'.

6.8CVSS7.1AI score0.02357EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.88 views

CVE-2019-1424

A security feature bypass vulnerability exists when Windows Netlogon improperly handles a secure communications channel, aka 'NetLogon Security Feature Bypass Vulnerability'.

8.1CVSS8.6AI score0.03229EPSS
Total number of security vulnerabilities2979