Windows 8.1@- Security Vulnerabilities and Issues — Page 5 of Windows 8.1@- CVE List

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0683.

7.8CVSS8AI score0.27418EPSS

CVE•added 2022/01/11 9:15 p.m.•198 views

CVE-2022-21893

Remote Desktop Protocol Remote Code Execution Vulnerability

8.5CVSS8.9AI score0.05377EPSS

CVE•added 2022/08/09 8:15 p.m.•198 views

CVE-2022-35769

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability

7.5CVSS8.4AI score0.03028EPSS

CVE•added 2022/12/13 7:15 p.m.•198 views

CVE-2022-44707

Windows Kernel Denial of Service Vulnerability

6.5CVSS7AI score0.02836EPSS

CVE•added 2020/12/10 12:15 a.m.•197 views

CVE-2020-17096

Windows NTFS Remote Code Execution Vulnerability

9CVSS8AI score0.08663EPSS

CVE•added 2022/05/10 9:15 p.m.•197 views

CVE-2022-29132

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00205EPSS

CVE•added 2020/02/11 10:15 p.m.•196 views

CVE-2020-0668

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0669, CVE-2020-0670, CVE-2020-0671, CVE-2020-0672.

7.8CVSS7.7AI score0.79504EPSS

CVE•added 2023/01/10 10:15 p.m.•196 views

CVE-2023-21556

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00689EPSS

CVE•added 2020/05/21 11:15 p.m.•195 views

CVE-2020-1143

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1054.

7.8CVSS7.8AI score0.80387EPSS

CVE•added 2021/09/15 12:15 p.m.•195 views

CVE-2021-38671

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8AI score0.0043EPSS

CVE•added 2022/03/09 5:15 p.m.•195 views

CVE-2022-23297

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00325EPSS

CVE•added 2021/07/16 9:15 p.m.•194 views

CVE-2021-34460

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00317EPSS

CVE•added 2022/04/15 7:15 p.m.•193 views

CVE-2022-26831

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

7.5CVSS8.4AI score0.14047EPSS

CVE•added 2019/07/15 7:15 p.m.•192 views

CVE-2019-1089

An elevation of privilege vulnerability exists in rpcss.dll when the RPC service Activation Kernel improperly handles an RPC request. To exploit this vulnerability, a low level authenticated attacker could run a specially crafted application. The security update addresses this vulnerability by corr...

7.8CVSS7.5AI score0.03914EPSS

CVE•added 2022/04/15 7:15 p.m.•192 views

CVE-2022-26919

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.3CVSS9AI score0.04136EPSS

CVE•added 2022/07/12 11:15 p.m.•192 views

CVE-2022-30226

Windows Print Spooler Elevation of Privilege Vulnerability

7.1CVSS7.7AI score0.00198EPSS

CVE•added 2021/12/15 3:15 p.m.•190 views

CVE-2021-43207

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00251EPSS

CVE•added 2022/09/13 7:15 p.m.•190 views

CVE-2022-34718

Windows TCP/IP Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.84756EPSS

CVE•added 2019/03/06 12:0 a.m.•189 views

CVE-2019-0630

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0633.

9CVSS9.3AI score0.33738EPSS

CVE•added 2021/08/12 6:15 p.m.•189 views

CVE-2021-34480

Scripting Engine Memory Corruption Vulnerability

8.8CVSS7.8AI score0.01736EPSS

CVE•added 2022/08/26 6:15 p.m.•189 views

CVE-2022-34303

A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use wi...

6.7CVSS8.2AI score0.00048EPSS

CVE•added 2022/10/11 7:15 p.m.•189 views

CVE-2022-37991

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00843EPSS

CVE•added 2019/07/15 7:15 p.m.•188 views

CVE-2019-1088

An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1086, CVE-2019-1087.

7.8CVSS7.6AI score0.00278EPSS

CVE•added 2022/05/10 9:15 p.m.•188 views

CVE-2022-29129

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9CVSS9.4AI score0.13617EPSS

CVE•added 2021/02/25 11:15 p.m.•186 views

CVE-2021-24086

Windows TCP/IP Denial of Service Vulnerability

7.5CVSS8.5AI score0.37202EPSS

CVE•added 2021/08/12 6:15 p.m.•185 views

CVE-2021-36947

Windows Print Spooler Remote Code Execution Vulnerability

8.8CVSS9AI score0.04539EPSS

CVE•added 2022/01/11 9:15 p.m.•185 views

CVE-2022-21857

Active Directory Domain Services Elevation of Privilege Vulnerability

9CVSS9.1AI score0.02533EPSS

CVE•added 2022/07/12 11:15 p.m.•185 views

CVE-2022-22034

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0324EPSS

CVE•added 2022/03/09 5:15 p.m.•185 views

CVE-2022-23253

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

6.5CVSS7.3AI score0.25443EPSS

CVE•added 2023/01/10 10:15 p.m.•185 views

CVE-2023-21541

Windows Task Scheduler Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00236EPSS

CVE•added 2019/01/08 9:29 p.m.•184 views

CVE-2019-0584

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2022/05/10 9:15 p.m.•184 views

CVE-2022-29104

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.019EPSS

CVE•added 2022/07/12 11:15 p.m.•184 views

CVE-2022-30224

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

7CVSS7.7AI score0.00611EPSS

CVE•added 2023/01/10 10:15 p.m.•184 views

CVE-2023-21524

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00421EPSS

CVE•added 2015/09/09 12:59 a.m.•183 views

CVE-2015-2517

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.34211EPSS

CVE•added 2020/02/11 10:15 p.m.•182 views

CVE-2020-0662

A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.

9CVSS8.4AI score0.34804EPSS

CVE•added 2021/05/11 7:15 p.m.•182 views

CVE-2021-28455

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.09683EPSS

CVE•added 2022/04/15 7:15 p.m.•182 views

CVE-2022-24492

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9.3CVSS9.4AI score0.01592EPSS

CVE•added 2019/08/14 9:15 p.m.•180 views

CVE-2019-1151

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.33915EPSS

CVE•added 2020/01/14 11:15 p.m.•180 views

CVE-2020-0642

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0624.

7.8CVSS8.5AI score0.15527EPSS

CVE•added 2021/10/13 1:15 a.m.•180 views

CVE-2021-26441

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00371EPSS

CVE•added 2021/06/08 11:15 p.m.•180 views

CVE-2021-31962

Kerberos AppContainer Security Feature Bypass Vulnerability

9.8CVSS9.2AI score0.08182EPSS

CVE•added 2022/01/11 9:15 p.m.•180 views

CVE-2022-21836

Windows Certificate Spoofing Vulnerability