Windows 7 Security Vulnerabilities and Issues — Page 2 of Windows 7 CVE List

Lucene search

MicrosoftWindows 7

99 matches found

CVE•added 2013/02/13 12:4 p.m.•53 views

CVE-2013-1260

Race condition in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges, and consequently read the contents of arbitrary kernel ...

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•53 views

CVE-2013-1273

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•52 views

CVE-2013-1259

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•52 views

CVE-2013-1279

Race condition in the kernel in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application that leverage...

7.2CVSS6.2AI score0.00489EPSS

CVE•added 2013/10/09 2:53 p.m.•52 views

CVE-2013-3888

dxgkrnl.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka "DirectX Graphics Kernel Subsystem Double Fetch Vulnerability."

8.4CVSS6.4AI score0.00559EPSS

CVE•added 2013/02/13 12:4 p.m.•51 views

CVE-2013-1271

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/10/09 2:53 p.m.•51 views

CVE-2013-3894

The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allow remote attackers to execute arbitrary code via a crafted CMAP table in a TrueType font (TT...

9.3CVSS7.5AI score0.24627EPSS

CVE•added 2013/02/13 12:4 p.m.•50 views

CVE-2013-1275

7CVSS6.4AI score0.003EPSS

CVE•added 2013/09/11 2:3 p.m.•50 views

CVE-2013-1344

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application, aka "Win32k Multi...

7.2CVSS6.2AI score0.01084EPSS

CVE•added 2013/06/12 3:30 a.m.•50 views

CVE-2013-3136

The kernel in Microsoft Windows XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows 8 on 32-bit platforms does not properly handle unspecified page-fault system calls, which allows local users to obtain sensitive information from kernel memory via...

4.4CVSS5.3AI score0.00916EPSS

CVE•added 2013/07/10 3:46 a.m.•50 views

CVE-2013-3167

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Win32k...

7.2CVSS6.3AI score0.00679EPSS

CVE•added 2013/09/11 2:3 p.m.•50 views

CVE-2013-3865

7.2CVSS6.2AI score0.01084EPSS

CVE•added 2013/02/13 12:4 p.m.•49 views

CVE-2013-1264

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/09/11 2:3 p.m.•49 views

CVE-2013-1342

7.8CVSS6.2AI score0.01084EPSS

CVE•added 2013/09/11 2:3 p.m.•49 views

CVE-2013-1343

7.2CVSS6.2AI score0.01084EPSS

CVE•added 2013/09/11 2:3 p.m.•49 views

CVE-2013-3866

7.2CVSS6.5AI score0.0059EPSS

CVE•added 2013/02/13 12:4 p.m.•48 views

CVE-2013-1250

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•48 views

CVE-2013-1251

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•48 views

CVE-2013-1256

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•48 views

CVE-2013-1257

4.9CVSS6.4AI score0.00589EPSS

CVE•added 2013/02/13 12:4 p.m.•48 views

CVE-2013-1262

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/04/09 10:55 p.m.•48 views

CVE-2013-1291

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, Windows 7 Gold and SP1, and Windows 8 allows local users to cause a denial of service (reboot) via a crafted OpenType font, aka "OpenType Font Parsing Vulnerabilit...

7.1CVSS6.1AI score0.17931EPSS

CVE•added 2013/12/11 12:55 a.m.•48 views

CVE-2013-3907

portcls.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allows local users to gain privileges via a crafted application, aka "Port-Class Driver Double Fetch Vulnerability."

7.2CVSS6.4AI score0.01105EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1252

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1253

7CVSS6.4AI score0.003EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1258

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1266

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1267

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1272

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•47 views

CVE-2013-1274

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/03/11 10:55 a.m.•47 views

CVE-2013-2553

Unspecified vulnerability in the kernel in Microsoft Windows 7 allows local users to gain privileges via unknown vectors, as demonstrated by Nils and Jon of MWR Labs during a Pwn2Own competition at CanSecWest 2013, a different vulnerability than CVE-2013-0912.

7.2CVSS6.1AI score0.01824EPSS

CVE•added 2013/07/10 3:46 a.m.•47 views

CVE-2013-3154

The signature-update functionality in Windows Defender on Microsoft Windows 7 and Windows Server 2008 R2 relies on an incorrect pathname, which allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory, aka "Microsoft Windows 7 Defender Improper P...

6.9CVSS6.4AI score0.0232EPSS

CVE•added 2013/08/14 11:10 a.m.•47 views

CVE-2013-3196

The NT Virtual DOS Machine (NTVDM) subsystem in the kernel in Microsoft Windows XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows 8 on 32-bit platforms does not properly validate kernel-memory addresses, which allows local users to gain privileg...

7.2CVSS6.2AI score0.01283EPSS

CVE•added 2013/08/14 11:10 a.m.•47 views

CVE-2013-3197

7.2CVSS6.2AI score0.01283EPSS

CVE•added 2013/02/13 12:4 p.m.•46 views

CVE-2013-1261

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•46 views

CVE-2013-1263

4.9CVSS6.3AI score0.00434EPSS

CVE•added 2013/03/11 10:55 a.m.•46 views

CVE-2013-2554

Unspecified vulnerability in Microsoft Windows 7 allows attackers to bypass the ASLR and DEP protection mechanisms via unknown vectors, as demonstrated against Firefox by VUPEN during a Pwn2Own competition at CanSecWest 2013, a different vulnerability than CVE-2013-0787.

7.5CVSS6.1AI score0.16192EPSS

CVE•added 2013/11/13 12:55 a.m.•46 views

CVE-2013-3887

The Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 allows local users to obtain sensitive information from kernel mem...

4.9CVSS5.4AI score0.00433EPSS

CVE•added 2013/02/13 12:4 p.m.•45 views

CVE-2013-0076

The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 does not properly handle objects in memory, which allows local users to gain privileges via a crafted application, aka "Reference Count Vulnerability."

7.2CVSS6.4AI score0.008EPSS

CVE•added 2013/02/13 12:4 p.m.•45 views

CVE-2013-1254

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/07/10 3:46 a.m.•45 views

CVE-2013-3172

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to cause a denial of service (system hang) via a crafted application that leverages impr...

4.9CVSS6.4AI score0.00248EPSS

CVE•added 2013/02/13 12:4 p.m.•44 views

CVE-2013-1280

The kernel in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain privileges via a c...

7.2CVSS6.4AI score0.008EPSS

CVE•added 2013/02/13 12:4 p.m.•43 views

CVE-2013-1269

4.9CVSS6.4AI score0.00434EPSS

CVE•added 2013/02/13 12:4 p.m.•43 views

CVE-2013-1276

4.9CVSS6.4AI score0.00366EPSS

CVE•added 2013/09/11 2:3 p.m.•41 views

CVE-2013-3862

Double free vulnerability in Microsoft Windows 7 and Server 2008 R2 SP1 allows local users to gain privileges via a crafted service description that is not properly handled by services.exe in the Service Control Manager (SCM), aka "Service Control Manager Double Free Vulnerability."

6.9CVSS6.3AI score0.00461EPSS

CVE•added 2013/02/13 12:4 p.m.•40 views

CVE-2013-1268

4.9CVSS6.4AI score0.00445EPSS

CVE•added 2013/12/11 12:55 a.m.•40 views

CVE-2013-3902

Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 SP1 and Windows 7 SP1 on 64-bit platforms allows local users to gain privileges via a crafted application, aka "Win32k Use After Free Vulnerability."

7.2CVSS6.4AI score0.00363EPSS

CVE•added 2013/02/13 12:4 p.m.•39 views

CVE-2013-1265

7CVSS6.3AI score0.003EPSS

CVE•added 2013/02/13 12:4 p.m.•35 views

CVE-2013-1270

4.9CVSS6.4AI score0.00434EPSS

Total number of security vulnerabilities99