2368 matches found
CVE-2017-0199
CVE-2017-0199 affects Microsoft Office client suites (Office 2007 SP3, 2010 SP2, 2013 SP1, 2016) and Windows platforms (Vista SP2, Server 2008 SP2, 7 SP1, 8.1). The vulnerability allows remote code execution via a crafted document, exploiting how Office components interact with the Windows API an...
CVE-2019-0708
CVE-2019-0708 (BlueKeep) is a remote code execution vulnerability in Windows Remote Desktop Services (RDP). Affected: Windows 7, Windows Server 2008 R2/2008 era deployments; vulnerable components include the RDP service. Root cause: use-after-free in RDP handling that enables unauthenticated, net...
CVE-2013-3900
CVE-2013-3900 describes a remote code execution in the WinVerifyTrust Authenticode verification for PE files. An attacker could modify a signed executable to execute code without invalidating the signature, potentially gaining full control of the system. Microsoft republished this CVE in the Secu...
CVE-2021-34527
CVE-2021-34527, known as PrintNightmare, is a Windows Print Spooler remote code execution vulnerability. The flaw allows an authenticated attacker to execute arbitrary code with SYSTEM privileges by abusing privileged file operations in the Print Spooler, enabling installation of programs, data a...
CVE-2022-30190
Technical details beyond the MSDT/Follina description are not provided in the connected documents. Public specifics (affected versions, exploit paths, patches) are not available here; monitor for updates.
CVE-2018-8174
CVE-2018-8174 is a Windows VBScript Engine out-of-bounds write vulnerability enabling remote code execution. Public documentation confirms an RCE when the VBScript engine handles in-memory objects, affecting Windows 7, Server 2008/2012/2016, Windows 8.1, Windows 10 and server variants. Public wri...
CVE-2021-1675
CVE-2021-1675 is the Windows Print Spooler vulnerability known as “PrintNightmare.” Public documents describe a remote code execution path via the Print Spooler service, exploitable by an authenticated attacker through RPC/Printer driver operations (e.g., RpcAddPrinterDriverEx) to execute code wi...
CVE-2010-2568
CVE-2010-2568 affects the Windows shell icon display for shortcut files, enabling arbitrary code execution when a crafted .LNK or .PIF is processed by Windows Explorer. Affected systems include Windows XP SP3, Server 2003 SP2, Windows Vista SP1/SP2, Windows Server 2008 SP2/R2, and Windows 7, with...
CVE-2018-8120
CVE-2018-8120 is a Windows Win32k privilege-escalation vulnerability where the Win32k.sys component fails to properly handle objects in memory, enabling local kernel-mode code execution. Affected products include Windows 7, Windows Server 2008/2008 R2, and related Win32k components. The root caus...
CVE-2021-40444
CVE-2021-40444 is a Microsoft MSHTML remote-code-execution vulnerability exploited via specially crafted Word documents containing malicious ActiveX controls. Public details confirm an exploit chain: a Word doc opens, a relationship in document.xml.rels points to a malicious HTML, IE Preview load...
CVE-2020-0787
CVE-2020-0787 is a privilege-escalation flaw in Microsoft Windows BITS (Background Intelligent Transfer Service) caused by improper handling of symbolic links. The issue can allow an attacker who can run code on a vulnerable host to escalate to system-level privileges and execute arbitrary code. ...
CVE-2015-1635
CVE-2015-1635 (HTTP.sys RCE) affects Microsoft Windows HTTP.sys on Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold/R2. The vulnerability enables remote code execution via crafted HTTP requests, caused by improper parsing in HTTP.sys. Public references i...
CVE-2021-40449
CVE-2021-40449 is a Win32k use-after-free local privilege escalation in GreResetDCInternal. The vulnerability arises when a user‑mode callback hook on the driver’s PDEV path (DrvEnablePDEV) can trigger a subsequent ResetDC call, freeing the original device context and causing a kernel‑mode use‑af...
CVE-2022-24521
CVE-2022-24521 is a Windows Windows Common Log File System Driver Privilege Escalation vulnerability. The CVE entry reports an elevation-of-privilege flaw in the CLFS driver; CVSS scores shown include a 2.0/2.0 base (MEDIUM) on NVD and a 3.1-based HIGH score from Microsoft, both indicating local ...
CVE-2014-1812
CVE-2014-1812 affects the Group Policy Preferences password handling in Windows (Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, 8/8.1, Server 2012), where passwords distributed via SYSVOL could be decrypted by an authenticated remote attacker, enabling privilege escalation. The issue is caused by ...
CVE-2017-8464
CVE-2017-8464 affects Windows shells that render .lnk icons. A crafted LNK file can trigger arbitrary code execution due to improper icon handling in Windows Explorer and related parsers. Affected products include Windows client and server releases spanning Windows 7 through Windows 10 and Window...
CVE-2020-17087
CVE-2020-17087 is a Windows Kernel Local Privilege Escalation vulnerability tied to a heap-based overflow in cng.sys. Connected exploit sources describe a local-vector attack requiring initial code execution, then abusing an IOCTL to .\\.GLOBALROOT\Device\Cng with a crafted size parameter that ca...
CVE-2017-0213
CVE-2017-0213 is a Windows privilege-escalation flaw in the COM Aggregate Marshaler that can be triggered by a specially crafted application to gain elevated privileges locally. Public documentation confirms affected OS ranges including Windows 7 SP1, Windows Server 2008 SP2/R2 SP1, Windows 8.1, ...
CVE-2016-0167
CVE-2016-0167 is a Windows kernel-mode Win32k Privilege Escalation vulnerability affecting multiple OS versions (e.g., Vista SP2, Windows 7 SP1, Windows 8.1, Windows Server 2008/R2, Windows 10). The issue arises in the kernel-mode driver Win32k where a crafted application can escalate privileges ...
CVE-2014-6332
CVE-2014-6332 is discussed in connected sources as being exploited by the Neptune Exploit Kit to deliver a Monero-mining payload via Internet Explorer exploits. The Neptune Campaign uses CVE-2014-6332 alongside other IE and Flash exploits to identify vulnerable targets and chain exploits in a sin...
CVE-2015-2546
CVE-2015-2546 affects the Windows kernel Win32k memory handling (kernel‑mode driver) and enables local privilege escalation via a crafted application on affected Windows versions (Vista SP2 onward, Windows 7 SP1, 8/8.1, 10, Server editions). The root cause is a memory corruption vulnerability in ...
CVE-2022-22718
CVE-2022-22718 is a Windows Print Spooler elevation of privilege vulnerability. Connected sources confirm an exploit exists (e.g., SpoolFool PoC) and that it has been tracked in exploit catalogs; Microsoft/MSRC guidance and CISA KEV catalog list it among known issues. Affected component: Windows ...
CVE-2017-0147
CVE-2017-0147 affects the SMBv1 server in multiple Windows platforms, where remote attackers can obtain sensitive information from process memory via crafted SMB packets. Affected products include Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012, ...
CVE-2020-1020
CVE-2020-1020 describes a remote code execution in Microsoft Windows via the Windows Adobe Font Manager Library when handling specially crafted Adobe Type 1 PostScript fonts. The flaw affects Windows versions other than Windows 10, with exploitation enabling code execution remotely after processi...
CVE-2022-21999
Technical details about CVE-2022-21999 are not publicly provided in the supplied connected documents. Based on the materials, we cannot specify affected software, root cause, or remediation. Monitor for updates from official advisories and vendor disclosures.
CVE-2020-0683
CVE-2020-0683 is a Windows Installer Elevation of Privilege vulnerability. The issue occurs when MSI packages process symbolic links, allowing a local attacker to bypass access restrictions and add or remove files. Technical details across connected sources confirm the affected component (Windows...
CVE-2021-41379
CVE-2021-41379 is a Windows Installer Elevation of Privilege vulnerability affecting Windows Installer across Windows 10/11 and Windows Server. Public details in connected sources describe the issue as a Windows Installer privilege-escalation flaw, with references to InstallerFileTakeOver as the ...
CVE-2022-26925
CVE-2022-26925 is a Windows Local Security Authority (LSA) spoofing vulnerability. The issue allows an unauthenticated attacker to coerce a domain controller to authenticate to the attacker using NTLM by calling a method on the LSARPC interface, enabling potential credential exposure in an NTLM-r...
CVE-2021-31956
CVE-2021-31956 is a Windows NTFS local privilege-escalation vulnerability that Microsoft and security researchers have shown can be exploited via manipulation of the Windows kernel’s WNF/NTFS interaction and pool-heap exploitation techniques to obtain SYSTEM-level access. Public materials describ...
CVE-2020-1054
CVE-2020-1054 is a Win32k kernel-mode elevation of privilege vulnerability in Windows where the Windows kernel-driver mishandles memory objects. The CVE entry is distinct from CVE-2020-1143. Public references in the provided set show an exploit for CVE-2020-1054 (Out-of-bounds write in Microsoft ...
CVE-2021-34484
CVE-2021-34484 is a Windows User Profile Service local privilege escalation caused by a race condition in CreateDirectoryJunction() that allowed a logged-on user to influence profile handling and load a malicious DLL with SYSTEM privileges. The vulnerability was initially patched but later bypass...
CVE-2021-33742
CVE-2021-33742 is a memory-corruption remote code execution vulnerability in Microsoft Windows MSHTML/Internet Explorer. The IE/MSHTML bugchain included a use-after-free (user-controlled callback between two actions) and a buffer overflow in MSHTML, enabling arbitrary code execution. In-the-wild ...
CVE-2017-0263
CVE-2017-0263: Windows Win32k local privilege escalation via kernel-mode drivers. The CVE concerns memory-object handling in Win32k.sys that allows a local attacker to gain privileges through a crafted application. Documents identify the affected Windows family (Windows 7 SP1, 8.1, Windows Server...
CVE-2019-1405
CVE-2019-1405 is a local privilege-escalation flaw in the Windows UPnP service where improper handling allows COM object creation. Root cause per the connected CISA KEV entry is improper COM object creation by the UPnP service, enabling elevation of privileges. The CVSSv3.1 metrics in the initial...
CVE-2019-0859
CVE-2019-0859 (Windows Win32k Privilege Escalation) : A local privilege escalation vulnerability in the Win32k component of Microsoft Windows arises from Win32k failing to properly handle objects in memory, enabling an attacker to run code in kernel mode. Several connected sources corroborate thi...
CVE-2021-31201
CVE-2021-31201 is a Windows privilege-escalation vulnerability affecting the Enhanced Cryptographic Provider . The available documents confirm it enables local privilege escalation (local access required) and classify the impact as elevation of privileges; exact root-cause details are not provide...
CVE-2018-8453
CVE-2018-8453 is a Windows Win32k local privilege escalation vulnerability. The flaw arises when Win32k fails to properly handle memory objects, allowing an attacker to escalate privileges via local code execution. Affected products include Windows 7, Windows 8.1, Windows 10 (and server variants ...
CVE-2021-34448
CVE-2021-34448 is a memory corruption vulnerability in the Microsoft Windows Scripting Engine (IE/JavaScript). Exploitation can be remote via a crafted web page or email, enabling code execution at the logged-on user level. Public analyses reference exploitation in the wild and Microsoft Patch Tu...
CVE-2021-31199
CVE-2021-31199 is a Windows Elevation of Privilege vulnerability in the Microsoft Enhanced Cryptographic Provider. The CVE affects Windows components and is driven by local exploitation (local access required) with low privileges needed, and no user interaction, but yields high impact on confiden...
CVE-2021-31979
CVE-2021-31979 is a Windows kernel elevation-of-privilege vulnerability that affects multiple kernel components, with confirmed in-the-wild activity. Affected areas include NTOS kernel, Win32k, and ntfs.sys, indicating local privilege escalation via kernel-level flaws. Public documentation in the...
CVE-2019-0803
CVE-2019-0803 is a Windows Win32k elevation of privilege vulnerability. Root cause: Win32k fails to properly handle objects in memory, enabling local kernel-mode code execution. Affected software: Microsoft Windows Win32k component (privilege escalation). Impact: local privilege escalation with k...
CVE-2022-21919
CVE-2022-21919 is a Windows User Profile Service elevation-of-privilege bug. Connected docs describe the root cause as improper validation in profext.dll’s CreateDirectoryJunction, enabling a directory junction attack to escalate to SYSTEM by abusing UI/UX (Narrator/consent.exe) and UAC. Some sou...
CVE-2016-3309
CVE-2016-3309 is a Windows kernel Win32k elevation-of-privilege vulnerability. A local attacker could gain SYSTEM privileges by exploiting a pool/handle-management issue in win32k, enabling code execution in kernel mode. Connected sources document an exploit (win32kfull!bFill pool overflow) and i...
CVE-2019-1458
CVE-2019-1458 is a Windows Win32k elevation-of-privilege flaw affecting win32k.sys. The root cause is an uninitialized field in the server window dispatch table (gpsi->mpFnid_serverCBWndProc[FNID_SWITCH]), which leaves extraWnd data improperly sized. This allows an attacker to write arbitrary ...
CVE-2016-0099
CVE-2016-0099 corresponds to the Windows “Secondary Logon Handle Privilege Escalation” issue. The Secondary Logon Service fails to properly process request handles, enabling local attackers to gain elevated privileges. Publicly documented in multiple sources as MS16-032, with Metasploit/Ms16-032-...
CVE-2020-1464
CVE-2020-1464 is a Windows spoofing vulnerability where improper validation of code-signing signatures allows bypassing security features and loading improperly signed files. It affects Windows and was actively exploited in the wild, per reports linked to the August 2020 Patch Tuesday. The core i...
CVE-2019-1132
CVE-2019-1132 affects Windows Win32k; the vulnerability arises from improper handling of memory objects in the Win32k subsystem, enabling local privilege escalation. In 2019 it was among Win32k 0-days observed in the wild and is listed in CISA’s Known Exploited Vulnerabilities Catalog as a Micros...
CVE-2017-8543
CVE-2017-8543 is a Windows remote code execution vulnerability in the Windows Search service. The root cause is how Windows Search handles objects in memory, allowing an attacker to take control of the affected system. Exploitation can occur by sending specially crafted messages to the Windows Se...
CVE-2021-36955
CVE-2021-36955 is a Windows privilege-escalation flaw in the Common Log File System (CLFS) driver. The vulnerability stems from the CLFS driver (clfs.sys) and enables local privilege escalation to SYSTEM when exploited. Connected guidance and threat intel cite this CVE alongside Windows CLFS-rela...
CVE-2016-7255
CVE-2016-7255 is a Windows kernel privilege-escalation issue affecting win32k.sys. The CVE arises from a local attacker crafting an exploit against a Win32k component, enabling elevation to SYSTEM via the NtSetWindowLongPtr path in win32k.sys (MS16-135). Public exploitation materials in Exploit D...