Lucene search

K
MicrosoftWindows 101909

1432 matches found

CVE
CVE
added 2021/09/15 12:15 p.m.108 views

CVE-2021-36972

Windows SMB Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00442EPSS
CVE
CVE
added 2021/10/13 1:15 a.m.108 views

CVE-2021-40478

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00496EPSS
CVE
CVE
added 2022/01/11 9:15 p.m.108 views

CVE-2022-21958

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

7.2CVSS8.2AI score0.02021EPSS
CVE
CVE
added 2022/02/09 5:15 p.m.108 views

CVE-2022-21993

Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability

7.8CVSS7.3AI score0.20315EPSS
CVE
CVE
added 2022/04/15 7:15 p.m.108 views

CVE-2022-26826

Windows DNS Server Remote Code Execution Vulnerability

9CVSS6.9AI score0.10713EPSS
CVE
CVE
added 2022/05/10 9:15 p.m.108 views

CVE-2022-29103

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00437EPSS
CVE
CVE
added 2019/12/10 10:15 p.m.107 views

CVE-2019-1469

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.

5.5CVSS6AI score0.0075EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.107 views

CVE-2020-0755

An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The security update addre...

5.5CVSS5.2AI score0.00996EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.107 views

CVE-2020-0814

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS6.5AI score0.00646EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.107 views

CVE-2020-1011

An elevation of privilege vulnerability exists when the Windows System Assessment Tool improperly handles file operations, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0934, CVE-2020-0983, CVE-2020-1009, CVE-2020-1015.

7.8CVSS7.8AI score0.08877EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.107 views

CVE-2020-1201

An elevation of privilege vulnerability exists in the way the Windows Now Playing Session Manager handles objects in memory, aka 'Windows Now Playing Session Manager Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00397EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.107 views

CVE-2020-1384

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359.

7.8CVSS8.5AI score0.00513EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.107 views

CVE-2020-1550

An elevation of privilege vulnerability exists when the Windows CDP User Components improperly handle memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The secur...

7.8CVSS8.1AI score0.00451EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.107 views

CVE-2020-1552

An elevation of privilege vulnerability exists when the Windows Work Folder Service improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.An attacker could exploit this vulnerability by running a specially crafted ap...

8CVSS8AI score0.00792EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.107 views

CVE-2020-16919

An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files.An attacker with unprivileged access to a vulnerable system could exploi...

5.5CVSS6.5AI score0.00455EPSS
CVE
CVE
added 2021/03/11 4:15 p.m.107 views

CVE-2021-26891

Windows Container Execution Agent Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00378EPSS
CVE
CVE
added 2021/06/08 11:15 p.m.107 views

CVE-2021-31954

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.01501EPSS
Web
CVE
CVE
added 2021/07/14 6:15 p.m.107 views

CVE-2021-33744

Windows Secure Kernel Mode Security Feature Bypass Vulnerability

7.2CVSS6.6AI score0.00191EPSS
CVE
CVE
added 2021/07/14 6:15 p.m.107 views

CVE-2021-33788

Windows LSA Denial of Service Vulnerability

7.5CVSS7.9AI score0.04338EPSS
CVE
CVE
added 2021/07/14 6:15 p.m.107 views

CVE-2021-34491

Win32k Information Disclosure Vulnerability

5.5CVSS6.5AI score0.00581EPSS
CVE
CVE
added 2021/07/14 6:15 p.m.107 views

CVE-2021-34513

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.01642EPSS
CVE
CVE
added 2021/09/15 12:15 p.m.107 views

CVE-2021-38630

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00243EPSS
CVE
CVE
added 2021/10/13 1:15 a.m.107 views

CVE-2021-40475

Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00448EPSS
CVE
CVE
added 2020/01/14 11:15 p.m.106 views

CVE-2020-0629

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627...

7.8CVSS7.7AI score0.00511EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.106 views

CVE-2020-0703

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Backup Service Elevation of Privilege Vulnerability'.

7.8CVSS8.2AI score0.0064EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.106 views

CVE-2020-0992

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.106 views

CVE-2020-1152

An elevation of privilege vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system.To exploit the vulnerability, an attacker would have to log on to an affected system and r...

7.8CVSS6.8AI score0.00246EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.106 views

CVE-2020-1308

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with ful...

7.8CVSS7.7AI score0.00909EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.106 views

CVE-2020-1382

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1381.

7.8CVSS7.7AI score0.01264EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.106 views

CVE-2020-1393

An elevation of privilege vulnerability exists when the Windows Diagnostics Hub Standard Collector Service fails to properly sanitize input, leading to an unsecure library-loading behavior, aka 'Windows Diagnostics Hub Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1418.

7.8CVSS8AI score0.00709EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.106 views

CVE-2020-1473

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

7.8CVSS8.4AI score0.03841EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.106 views

CVE-2020-1544

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security u...

7.8CVSS8.1AI score0.00387EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.106 views

CVE-2020-1553

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context.An attacker could exploit this vulnerability by running a specially crafted applica...

7.8CVSS8.1AI score0.003EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.106 views

CVE-2020-1578

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a ker...

4.7CVSS5.7AI score0.00378EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.106 views

CVE-2020-1593

A remote code execution vulnerability exists when Windows Media Audio Decoder improperly handles objects. An attacker who successfully exploited the vulnerability could take control of an affected system.There are multiple ways an attacker could exploit the vulnerability, such as by convincing a us...

8.8CVSS8.3AI score0.01223EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.106 views

CVE-2020-17057

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.10824EPSS
CVE
CVE
added 2021/01/12 8:15 p.m.106 views

CVE-2021-1667

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS8.3AI score0.07046EPSS
CVE
CVE
added 2021/02/25 11:15 p.m.106 views

CVE-2021-1726

Microsoft SharePoint Server Spoofing Vulnerability

8CVSS8AI score0.01999EPSS
CVE
CVE
added 2021/07/14 6:15 p.m.106 views

CVE-2021-33759

Windows Desktop Bridge Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00275EPSS
CVE
CVE
added 2022/01/11 9:15 p.m.106 views

CVE-2022-21903

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00516EPSS
CVE
CVE
added 2022/01/11 9:15 p.m.106 views

CVE-2022-21915

Windows GDI+ Information Disclosure Vulnerability

6.5CVSS7.4AI score0.15383EPSS
CVE
CVE
added 2022/02/09 5:15 p.m.106 views

CVE-2022-21981

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.0036EPSS
CVE
CVE
added 2022/02/09 5:15 p.m.106 views

CVE-2022-21994

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01641EPSS
CVE
CVE
added 2020/01/14 11:15 p.m.105 views

CVE-2020-0615

An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0639.

5.5CVSS6.6AI score0.00681EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.105 views

CVE-2020-0981

A security feature bypass vulnerability exists when Windows fails to properly handle token relationships.An attacker who successfully exploited the vulnerability could allow an application with a certain integrity level to execute code at a different integrity level, leading to a sandbox escape.The...

8.8CVSS8.7AI score0.00126EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.105 views

CVE-2020-1233

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1235, CVE-2020-1265, CVE-2020-1282, CVE-2020-1304, CVE-2020-1306, CVE-2020-133...

7.8CVSS7.7AI score0.12134EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.105 views

CVE-2020-1251

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1247, CVE-2020-1253, CVE-2020-1310.

7.2CVSS7AI score0.00589EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.105 views

CVE-2020-1270

An elevation of privilege vulnerability exists in the way that the wlansvc.dll handles objects in memory, aka 'Windows WLAN Service Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00502EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.105 views

CVE-2020-1534

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.13239EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.105 views

CVE-2020-16889

An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker would have to log ...

5.5CVSS6.6AI score0.01039EPSS
Total number of security vulnerabilities1432