Lucene search

K
MicrosoftWindows 7

2372 matches found

CVE
CVE
added 2019/04/09 9:29 p.m.256 views

CVE-2019-0731

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS
In wild
CVE
CVE
added 2017/05/12 2:29 p.m.254 views

CVE-2017-0214

Windows COM in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation privilege vulnerability when Windows fails to properly validate input before l...

7CVSS5.9AI score0.91805EPSS
In wild
CVE
CVE
added 2019/04/09 9:29 p.m.253 views

CVE-2019-0805

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS
In wild
CVE
CVE
added 2021/12/15 3:15 p.m.253 views

CVE-2021-43217

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.25196EPSS
In wild
CVE
CVE
added 2009/10/14 10:30 a.m.249 views

CVE-2009-2524

Integer underflow in the NTLM authentication feature in the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote attackers to cause a deni...

7.8CVSS6.5AI score0.46383EPSS
CVE
CVE
added 2019/10/10 2:15 p.m.249 views

CVE-2019-1339

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1342.

7.8CVSS8.5AI score0.06219EPSS
In wild
CVE
CVE
added 2020/08/17 7:15 p.m.247 views

CVE-2020-1337

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; ...

7.8CVSS7.8AI score0.53476EPSS
In wild
CVE
CVE
added 2016/04/12 11:59 p.m.245 views

CVE-2016-0143

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vu...

7.8CVSS6.8AI score0.11623EPSS
In wild
CVE
CVE
added 2017/11/15 3:29 a.m.245 views

CVE-2017-11835

Microsoft graphics in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to potentially read data that was not intended to be disclosed due to the way that the Microsoft Windows Embedded OpenType (EOT) font engine parses specially crafted embedded fonts, aka "Windows EOT Font E...

5.5CVSS4.7AI score0.02124EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.245 views

CVE-2020-16916

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit this vulnerability, an attacker would first have to log on to the system. An atta...

7.8CVSS8.2AI score0.00744EPSS
In wild
CVE
CVE
added 2022/03/09 5:15 p.m.244 views

CVE-2022-23293

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00293EPSS
CVE
CVE
added 2023/01/10 10:15 p.m.244 views

CVE-2023-21549

Windows SMB Witness Service Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.01858EPSS
CVE
CVE
added 2019/07/15 7:15 p.m.243 views

CVE-2019-1073

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1071.

5.5CVSS5.8AI score0.00647EPSS
CVE
CVE
added 2021/12/15 3:15 p.m.243 views

CVE-2021-43883

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.08752EPSS
In wild
CVE
CVE
added 2022/05/18 11:15 p.m.243 views

CVE-2022-30138

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00726EPSS
CVE
CVE
added 2016/08/09 9:59 p.m.242 views

CVE-2016-3308

The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privi...

7.8CVSS7.5AI score0.51566EPSS
In wild
CVE
CVE
added 2020/06/09 8:15 p.m.241 views

CVE-2020-1246

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS
In wild
CVE
CVE
added 2020/06/09 8:15 p.m.241 views

CVE-2020-1262

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS
In wild
CVE
CVE
added 2017/03/17 12:59 a.m.239 views

CVE-2017-0025

The kernel-mode drivers in Microsoft Windows Vista; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k E...

7.8CVSS6.2AI score0.14476EPSS
In wild
CVE
CVE
added 2017/06/15 1:29 a.m.238 views

CVE-2017-8552

A kernel-mode driver in Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, and Windows 8 allows an elevation of privilege when it fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vuln...

7.8CVSS7.6AI score0.17937EPSS
In wild
CVE
CVE
added 2020/09/11 5:15 p.m.237 views

CVE-2020-1013

An elevation of privilege vulnerability exists when Microsoft Windows processes group policy updates. An attacker who successfully exploited this vulnerability could potentially escalate permissions or perform additional privileged actions on the target machine.To exploit this vulnerability, an att...

9.3CVSS8.1AI score0.1795EPSS
CVE
CVE
added 2022/06/15 10:15 p.m.237 views

CVE-2022-30160

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.03305EPSS
CVE
CVE
added 2021/01/12 8:15 p.m.236 views

CVE-2021-1678

Windows Print Spooler Spoofing Vulnerability

8.8CVSS8AI score0.53619EPSS
Web
CVE
CVE
added 2017/03/17 12:59 a.m.235 views

CVE-2017-0047

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka "Windows GDI ...

7.8CVSS6.2AI score0.14476EPSS
In wild
CVE
CVE
added 2019/10/10 2:15 p.m.235 views

CVE-2019-1342

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1339.

7.8CVSS8.5AI score0.06219EPSS
In wild
CVE
CVE
added 2022/08/09 8:15 p.m.235 views

CVE-2022-34691

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS9.1AI score0.0122EPSS
CVE
CVE
added 2021/12/15 3:15 p.m.233 views

CVE-2021-43226

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.10241EPSS
In wild
CVE
CVE
added 2020/02/11 10:15 p.m.229 views

CVE-2020-0686

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0683.

7.8CVSS8AI score0.30475EPSS
In wild
CVE
CVE
added 2022/03/09 5:15 p.m.227 views

CVE-2022-24459

Windows Fax and Scan Service Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.00227EPSS
CVE
CVE
added 2017/07/11 9:29 p.m.226 views

CVE-2017-8563

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Kerberos falling back to NT LAN Manager (NTLM) Authentication Pro...

8.1CVSS7.1AI score0.17921EPSS
CVE
CVE
added 2020/05/21 11:15 p.m.225 views

CVE-2020-1143

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1054.

7.8CVSS7.8AI score0.76297EPSS
In wild
CVE
CVE
added 2020/06/09 8:15 p.m.225 views

CVE-2020-1299

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

9.3CVSS8.4AI score0.32912EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.224 views

CVE-2020-1301

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'.

8.8CVSS8.5AI score0.34234EPSS
CVE
CVE
added 2022/03/09 5:15 p.m.224 views

CVE-2022-23281

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00475EPSS
CVE
CVE
added 2022/04/15 7:15 p.m.224 views

CVE-2022-24533

Remote Desktop Protocol Remote Code Execution Vulnerability

8.5CVSS8.9AI score0.06599EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.223 views

CVE-2019-0633

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0630.

9CVSS9.3AI score0.33738EPSS
CVE
CVE
added 2021/12/15 3:15 p.m.223 views

CVE-2021-43207

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00265EPSS
In wild
CVE
CVE
added 2020/06/09 8:15 p.m.222 views

CVE-2020-1300

A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files.To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or spoof a network printer and trick a user into installing a malicious ...

8.8CVSS8.3AI score0.40477EPSS
CVE
CVE
added 2021/08/12 6:15 p.m.222 views

CVE-2021-36936

Windows Print Spooler Remote Code Execution Vulnerability

9.8CVSS9AI score0.03552EPSS
CVE
CVE
added 2022/04/15 7:15 p.m.219 views

CVE-2022-24534

Win32 Stream Enumeration Remote Code Execution Vulnerability

7.5CVSS8.7AI score0.03631EPSS
CVE
CVE
added 2023/01/10 10:15 p.m.219 views

CVE-2023-21746

Windows NTLM Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.43078EPSS
CVE
CVE
added 2016/08/09 9:59 p.m.218 views

CVE-2016-3311

The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privi...

7.8CVSS7.5AI score0.51566EPSS
In wild
CVE
CVE
added 2021/05/11 7:15 p.m.218 views

CVE-2021-28476

Windows Hyper-V Remote Code Execution Vulnerability

9.9CVSS9.7AI score0.63205EPSS
CVE
CVE
added 2022/02/09 5:15 p.m.217 views

CVE-2022-21989

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.01829EPSS
CVE
CVE
added 2022/05/10 9:15 p.m.217 views

CVE-2022-22019

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.02889EPSS
CVE
CVE
added 2012/03/13 9:55 p.m.216 views

CVE-2012-0152

The Remote Desktop Protocol (RDP) service in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote attackers to cause a denial of service (application hang) via a series of crafted packets, aka "Terminal Server Denial of Service Vulnerability."

4.3CVSS8.7AI score0.85393EPSS
Web
CVE
CVE
added 2019/07/15 7:15 p.m.216 views

CVE-2019-0887

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

8.5CVSS8AI score0.54304EPSS
CVE
CVE
added 2015/09/09 12:59 a.m.215 views

CVE-2015-2517

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.39088EPSS
In wild
CVE
CVE
added 2022/07/12 11:15 p.m.213 views

CVE-2022-22024

Windows Fax Service Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01341EPSS
CVE
CVE
added 2022/03/09 5:15 p.m.211 views

CVE-2022-24454

Windows Security Support Provider Interface Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00227EPSS
Total number of security vulnerabilities2372