Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
MicrosoftWindows 10

206 matches found

CVE
CVEadded 2019/04/09 12:29 a.m.1058 views

CVE-2019-0703

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0704, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS
CVE
CVEadded 2016/04/12 11:59 p.m.422 views

CVE-2016-0128

The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establish an RPC channel, which allows man-in-the-middle attackers ...

6.8CVSS6.4AI score0.34582EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.338 views

CVE-2022-22048

BitLocker Security Feature Bypass Vulnerability

6.6CVSS7.2AI score0.00265EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.325 views

CVE-2017-0055

Microsoft Internet Information Server (IIS) in Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to perform cross-site scripting and run scr...

6.1CVSS5.4AI score0.01387EPSS
CVE
CVEadded 2020/07/29 6:15 p.m.318 views

CVE-2020-15707

Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extrem...

6.4CVSS7.6AI score0.00033EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.315 views

CVE-2021-26414

Windows DCOM Server Security Feature Bypass

6.5CVSS6.9AI score0.08955EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.314 views

CVE-2017-8628

Microsoft Bluetooth Driver in Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703 allows a spoofing vulnerability due to Microsoft's implementation of the Bluetooth stack, aka "Microsoft Bluetooth Driver Spoofing Vulnerability".

6.8CVSS7AI score0.0067EPSS
CVE
CVEadded 2020/07/29 6:15 p.m.285 views

CVE-2020-15706

GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 ...

6.4CVSS7.7AI score0.00064EPSS
CVE
CVEadded 2020/07/29 6:15 p.m.284 views

CVE-2020-15705

GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. Thi...

6.4CVSS7.1AI score0.00018EPSS
CVE
CVEadded 2019/04/09 3:29 a.m.236 views

CVE-2019-0821

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0703, CVE-2019-0704.

6.5CVSS6.8AI score0.14208EPSS
CVE
CVEadded 2019/04/09 12:29 a.m.225 views

CVE-2019-0704

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0703, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.215 views

CVE-2022-21839

Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability

6.1CVSS7.3AI score0.00312EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.201 views

CVE-2022-22015

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

6.5CVSS7.7AI score0.09009EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.197 views

CVE-2022-44707

Windows Kernel Denial of Service Vulnerability

6.5CVSS7AI score0.02836EPSS
CVE
CVEadded 2022/08/26 6:15 p.m.189 views

CVE-2022-34303

A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use wi...

6.7CVSS8.2AI score0.00048EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.189 views

CVE-2022-34709

Windows Defender Credential Guard Security Feature Bypass Vulnerability

6CVSS7.5AI score0.00972EPSS
CVE
CVEadded 2022/03/09 5:15 p.m.185 views

CVE-2022-23253

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

6.5CVSS7.3AI score0.25443EPSS
CVE
CVEadded 2015/09/09 12:59 a.m.182 views

CVE-2015-2517

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.34211EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.179 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.179 views

CVE-2022-22042

Windows Hyper-V Information Disclosure Vulnerability

6.5CVSS7.1AI score0.17685EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.178 views

CVE-2020-0689

A security feature bypass vulnerability exists in secure boot, aka 'Microsoft Secure Boot Security Feature Bypass Vulnerability'.

6.7CVSS6.8AI score0.00158EPSS
CVE
CVEadded 2015/09/09 12:59 a.m.176 views

CVE-2015-2518

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.34211EPSS
CVE
CVEadded 2015/09/09 12:59 a.m.175 views

CVE-2015-2511

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.34211EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.171 views

CVE-2019-0966

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.

6.8CVSS6.5AI score0.00339EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.170 views

CVE-2017-0174

Windows NetBIOS in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a denial of service vulnerability when it improperly handles NetBIOS packets, aka "Windows NetBIOS De...

6.5CVSS6.9AI score0.00483EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.169 views

CVE-2019-1244

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1245, CVE-2019-1251.

6.5CVSS6.2AI score0.27638EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.168 views

CVE-2022-22023

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

6.9CVSS7.3AI score0.00348EPSS
CVE
CVEadded 2021/07/16 9:15 p.m.167 views

CVE-2021-34466

Windows Hello Security Feature Bypass Vulnerability

6.1CVSS7AI score0.00252EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.166 views

CVE-2022-29112

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.6AI score0.16898EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.156 views

CVE-2022-26935

Windows WLAN AutoConfig Service Information Disclosure Vulnerability

6.5CVSS7.6AI score0.00806EPSS
CVE
CVEadded 2022/06/15 10:15 p.m.156 views

CVE-2022-30189

Windows Autopilot Device Management and Enrollment Client Spoofing Vulnerability

6.5CVSS6.7AI score0.00835EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.153 views

CVE-2022-30208

Windows Security Account Manager (SAM) Denial of Service Vulnerability

6.5CVSS7.4AI score0.00374EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.151 views

CVE-2021-36961

Windows Installer Denial of Service Vulnerability

6.1CVSS6.7AI score0.00276EPSS
CVE
CVEadded 2022/03/09 5:15 p.m.151 views

CVE-2022-24502

Windows HTML Platforms Security Feature Bypass Vulnerability

6.5CVSS6.1AI score0.01564EPSS
CVE
CVEadded 2020/10/16 11:15 p.m.148 views

CVE-2020-16910

<p>A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.</p><p>To exploit this vulnerability, an attacker could run a specia...

6.2CVSS7AI score0.02409EPSS
CVE
CVEadded 2021/07/14 6:15 p.m.148 views

CVE-2021-31961

Windows InstallService Elevation of Privilege Vulnerability

6.1CVSS6.4AI score0.00323EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.136 views

CVE-2018-0967

A denial of service vulnerability exists in the way that Windows SNMP Service handles malformed SNMP traps, aka "Windows SNMP Service Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

6.3CVSS6.3AI score0.22945EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.136 views

CVE-2022-29121

Windows WLAN AutoConfig Service Denial of Service Vulnerability

6.5CVSS7.8AI score0.00409EPSS
CVE
CVEadded 2019/04/08 11:29 p.m.135 views

CVE-2019-0614

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0774.

6.5CVSS6.7AI score0.25343EPSS
CVE
CVEadded 2019/04/09 12:29 a.m.135 views

CVE-2019-0690

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0695, CVE-2019-0701.

6.8CVSS6.9AI score0.00375EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.135 views

CVE-2022-37974

Windows Mixed Reality Developer Tools Information Disclosure Vulnerability

6.5CVSS6.4AI score0.08051EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.134 views

CVE-2022-30205

Windows Group Policy Elevation of Privilege Vulnerability

6.6CVSS7.4AI score0.00296EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.133 views

CVE-2022-26936

Windows Server Service Information Disclosure Vulnerability

6.5CVSS7.6AI score0.07335EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.131 views

CVE-2017-0170

Windows Performance Monitor in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an information disclosure vulnerability due to the way it parses XML input, aka "Windows ...

6.5CVSS6.1AI score0.18028EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.131 views

CVE-2019-0713

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual mach...

6.8CVSS7.1AI score0.00518EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.131 views

CVE-2022-35797

Windows Hello Security Feature Bypass Vulnerability

6.1CVSS7.6AI score0.00242EPSS
CVE
CVEadded 2019/03/06 12:0 a.m.129 views

CVE-2019-0660

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.129 views

CVE-2019-0882

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0758, CVE-2019-0961.

6.5CVSS6.2AI score0.25343EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.129 views

CVE-2022-41086

Windows Group Policy Elevation of Privilege Vulnerability

6.4CVSS7.3AI score0.00043EPSS
CVE
CVEadded 2019/03/06 12:0 a.m.128 views

CVE-2019-0602

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS
Total number of security vulnerabilities206