Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows 10

206 matches found

CVE
CVEadded 2019/04/09 12:29 a.m.1089 views

CVE-2019-0703

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0704, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS
In wild
CVE
CVEadded 2016/04/12 11:59 p.m.426 views

CVE-2016-0128

The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establish an RPC channel, which allows man-in-the-middle attackers ...

6.8CVSS6.4AI score0.78649EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.372 views

CVE-2022-22048

BitLocker Security Feature Bypass Vulnerability

6.6CVSS7.2AI score0.00729EPSS
In wild
CVE
CVEadded 2017/03/17 12:59 a.m.329 views

CVE-2017-0055

Microsoft Internet Information Server (IIS) in Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to perform cross-site scripting and run scr...

6.1CVSS5.4AI score0.01387EPSS
CVE
CVEadded 2020/07/29 6:15 p.m.324 views

CVE-2020-15707

Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extrem...

6.4CVSS7.6AI score0.00033EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.319 views

CVE-2021-26414

Windows DCOM Server Security Feature Bypass

6.5CVSS6.9AI score0.14238EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.315 views

CVE-2017-8628

Microsoft Bluetooth Driver in Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703 allows a spoofing vulnerability due to Microsoft's implementation of the Bluetooth stack, aka "Microsoft Bluetooth Driver Spoofing Vulnerability".

6.8CVSS7AI score0.0067EPSS
CVE
CVEadded 2020/07/29 6:15 p.m.292 views

CVE-2020-15706

GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 ...

6.4CVSS7.7AI score0.00064EPSS
CVE
CVEadded 2020/07/29 6:15 p.m.290 views

CVE-2020-15705

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. Thi...

6.4CVSS7.1AI score0.00024EPSS
CVE
CVEadded 2019/04/09 3:29 a.m.267 views

CVE-2019-0821

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0703, CVE-2019-0704.

6.5CVSS6.8AI score0.14208EPSS
In wild
CVE
CVEadded 2019/04/09 12:29 a.m.257 views

CVE-2019-0704

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0703, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS
In wild
CVE
CVEadded 2022/01/11 9:15 p.m.218 views

CVE-2022-21839

Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability

6.1CVSS7.3AI score0.00306EPSS
CVE
CVEadded 2015/09/09 12:59 a.m.215 views

CVE-2015-2517

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.39088EPSS
In wild
CVE
CVEadded 2015/09/09 12:59 a.m.209 views

CVE-2015-2518

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.39088EPSS
In wild
CVE
CVEadded 2015/09/09 12:59 a.m.208 views

CVE-2015-2511

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.39088EPSS
In wild
CVE
CVEadded 2022/05/10 9:15 p.m.204 views

CVE-2022-22015

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

6.5CVSS7.7AI score0.09009EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.199 views

CVE-2022-44707

Windows Kernel Denial of Service Vulnerability

6.5CVSS7AI score0.02836EPSS
CVE
CVEadded 2022/08/26 6:15 p.m.193 views

CVE-2022-34303

A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use wi...

6.7CVSS8.2AI score0.00077EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.190 views

CVE-2022-34709

Windows Defender Credential Guard Security Feature Bypass Vulnerability

6CVSS7.5AI score0.0308EPSS
CVE
CVEadded 2022/03/09 5:15 p.m.188 views

CVE-2022-23253

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

6.5CVSS7.3AI score0.18159EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.181 views

CVE-2022-22042

Windows Hyper-V Information Disclosure Vulnerability

6.5CVSS7.1AI score0.18303EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.180 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.180 views

CVE-2020-0689

A security feature bypass vulnerability exists in secure boot, aka 'Microsoft Secure Boot Security Feature Bypass Vulnerability'.

6.7CVSS6.8AI score0.00158EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.172 views

CVE-2017-0174

Windows NetBIOS in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a denial of service vulnerability when it improperly handles NetBIOS packets, aka "Windows NetBIOS De...

6.5CVSS6.9AI score0.00479EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.172 views

CVE-2019-0966

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.

6.8CVSS6.5AI score0.00339EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.170 views

CVE-2019-1244

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1245, CVE-2019-1251.

6.5CVSS6.2AI score0.27638EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.170 views

CVE-2022-22023

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

6.9CVSS7.3AI score0.00399EPSS
CVE
CVEadded 2021/07/16 9:15 p.m.168 views

CVE-2021-34466

Windows Hello Security Feature Bypass Vulnerability

6.1CVSS7AI score0.00343EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.167 views

CVE-2022-29112

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.6AI score0.16898EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.157 views

CVE-2022-26935

Windows WLAN AutoConfig Service Information Disclosure Vulnerability

6.5CVSS7.6AI score0.00806EPSS
CVE
CVEadded 2022/06/15 10:15 p.m.157 views

CVE-2022-30189

Windows Autopilot Device Management and Enrollment Client Spoofing Vulnerability

6.5CVSS6.7AI score0.03358EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.154 views

CVE-2022-30208

Windows Security Account Manager (SAM) Denial of Service Vulnerability

6.5CVSS7.4AI score0.0166EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.153 views

CVE-2021-36961

Windows Installer Denial of Service Vulnerability

6.1CVSS6.7AI score0.00276EPSS
CVE
CVEadded 2022/03/09 5:15 p.m.152 views

CVE-2022-24502

Windows HTML Platforms Security Feature Bypass Vulnerability

6.5CVSS6.1AI score0.02125EPSS
CVE
CVEadded 2020/10/16 11:15 p.m.149 views

CVE-2020-16910

A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.To exploit this vulnerability, an attacker could run a specially crafte...

6.2CVSS7AI score0.02409EPSS
CVE
CVEadded 2021/07/14 6:15 p.m.149 views

CVE-2021-31961

Windows InstallService Elevation of Privilege Vulnerability

6.1CVSS6.4AI score0.00323EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.137 views

CVE-2018-0967

A denial of service vulnerability exists in the way that Windows SNMP Service handles malformed SNMP traps, aka "Windows SNMP Service Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

6.3CVSS6.3AI score0.18248EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.137 views

CVE-2022-29121

Windows WLAN AutoConfig Service Denial of Service Vulnerability

6.5CVSS7.8AI score0.00409EPSS
CVE
CVEadded 2019/04/08 11:29 p.m.136 views

CVE-2019-0614

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0774.

6.5CVSS6.7AI score0.25343EPSS
CVE
CVEadded 2019/04/09 12:29 a.m.136 views

CVE-2019-0690

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0695, CVE-2019-0701.

6.8CVSS6.9AI score0.00375EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.136 views

CVE-2022-37974

Windows Mixed Reality Developer Tools Information Disclosure Vulnerability

6.5CVSS6.4AI score0.08531EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.135 views

CVE-2022-30205

Windows Group Policy Elevation of Privilege Vulnerability

6.6CVSS7.4AI score0.00299EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.134 views

CVE-2022-26936

Windows Server Service Information Disclosure Vulnerability

6.5CVSS7.6AI score0.06617EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.133 views

CVE-2019-0713

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual mach...

6.8CVSS7.1AI score0.00518EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.133 views

CVE-2022-35797

Windows Hello Security Feature Bypass Vulnerability

6.1CVSS7.6AI score0.00693EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.132 views

CVE-2017-0170

Windows Performance Monitor in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an information disclosure vulnerability due to the way it parses XML input, aka "Windows ...

6.5CVSS6.1AI score0.18028EPSS
CVE
CVEadded 2019/03/06 12:0 a.m.130 views

CVE-2019-0660

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.130 views

CVE-2019-0882

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0758, CVE-2019-0961.

6.5CVSS6.2AI score0.25343EPSS
CVE
CVEadded 2022/08/26 6:15 p.m.130 views

CVE-2022-34302

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currentl...

6.7CVSS8.2AI score0.00098EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.130 views

CVE-2022-41086

Windows Group Policy Elevation of Privilege Vulnerability

6.4CVSS7.3AI score0.00048EPSS
Total number of security vulnerabilities206