Windows 8.1@- Security Vulnerabilities and Issues — Page 8 of Windows 8.1@- CVE List

An elevation of privilege vulnerability exists in the Microsoft XmlDocument class that could allow an attacker to escape from the AppContainer sandbox in the browser, aka "Microsoft XmlDocument Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Serve...

7.8CVSS7.5AI score0.00818EPSS

CVE•added 2021/06/08 11:15 p.m.•153 views

CVE-2021-31959

Scripting Engine Memory Corruption Vulnerability

7.8CVSS7AI score0.0488EPSS

CVE•added 2021/07/14 6:15 p.m.•153 views

CVE-2021-33750

Windows DNS Snap-in Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01415EPSS

CVE•added 2022/07/12 11:15 p.m.•153 views

CVE-2022-30208

Windows Security Account Manager (SAM) Denial of Service Vulnerability

6.5CVSS7.4AI score0.00374EPSS

CVE•added 2022/10/11 7:15 p.m.•153 views

CVE-2022-33634

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00247EPSS

CVE•added 2022/10/11 7:15 p.m.•153 views

CVE-2022-37988

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00843EPSS

CVE•added 2019/05/16 7:29 p.m.•152 views

CVE-2019-0881

An elevation of privilege vulnerability exists when the Windows Kernel improperly handles key enumeration, aka 'Windows Kernel Elevation of Privilege Vulnerability'.

7.8CVSS7.5AI score0.01729EPSS

CVE•added 2022/07/12 11:15 p.m.•152 views

CVE-2022-22050

Windows Fax Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00667EPSS

CVE•added 2022/04/15 7:15 p.m.•152 views

CVE-2022-26810

Windows File Server Resource Management Service Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00271EPSS

CVE•added 2022/05/10 9:15 p.m.•152 views

CVE-2022-29127

BitLocker Security Feature Bypass Vulnerability

4.2CVSS6.5AI score0.00193EPSS

CVE•added 2023/01/10 10:15 p.m.•152 views

CVE-2023-21682

Windows Point-to-Point Protocol (PPP) Information Disclosure Vulnerability

5.3CVSS5.3AI score0.01967EPSS

CVE•added 2015/08/15 12:59 a.m.•151 views

CVE-2015-2454

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly constrain impersonation levels, which allows local users to gain privileges via a crafted ...

2.1CVSS6.3AI score0.01042EPSS

CVE•added 2019/03/06 12:0 a.m.•151 views

CVE-2019-0595

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0596, CVE-2019-0597, CVE-2019-0598, CVE-2019-0599, CVE-2019-0625.

9.3CVSS8.4AI score0.32161EPSS

CVE•added 2019/09/11 10:15 p.m.•151 views

CVE-2019-1241

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1242, CVE-2019-1243, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248,...

9.3CVSS8.5AI score0.35463EPSS

CVE•added 2019/09/11 10:15 p.m.•151 views

CVE-2019-1242

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1243, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248,...

9.3CVSS8.5AI score0.35463EPSS

CVE•added 2021/09/15 12:15 p.m.•151 views

CVE-2021-36961

Windows Installer Denial of Service Vulnerability

6.1CVSS6.7AI score0.00276EPSS

CVE•added 2021/10/13 1:15 a.m.•151 views

CVE-2021-40454

Rich Text Edit Control Information Disclosure Vulnerability

5.5CVSS6.7AI score0.00145EPSS

CVE•added 2022/05/10 9:15 p.m.•151 views

CVE-2022-26934

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.6AI score0.16898EPSS

CVE•added 2022/08/09 8:15 p.m.•151 views

CVE-2022-34701

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability

7.5CVSS8.4AI score0.03028EPSS

CVE•added 2014/04/08 11:55 p.m.•150 views

CVE-2014-0315

Untrusted search path vulnerability in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a Tr...

6.9CVSS6.3AI score0.2964EPSS

CVE•added 2019/08/14 9:15 p.m.•150 views

CVE-2019-1162

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view,...

7.8CVSS8.6AI score0.0047EPSS

CVE•added 2021/07/14 6:15 p.m.•150 views

CVE-2021-33757

Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability

9.8CVSS6.7AI score0.01355EPSS

CVE•added 2022/01/11 9:15 p.m.•150 views

CVE-2022-21913

Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass

7.5CVSS7AI score0.00961EPSS

CVE•added 2022/05/10 9:15 p.m.•150 views

CVE-2022-22011

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS7AI score0.00618EPSS

CVE•added 2022/08/09 8:15 p.m.•150 views

CVE-2022-35768

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00455EPSS

CVE•added 2015/03/11 10:59 a.m.•149 views

CVE-2015-0096

Untrusted search path vulnerability in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a Trojan horse DLL in the cu...

9.3CVSS6.8AI score0.88654EPSS

CVE•added 2019/04/09 9:29 p.m.•149 views

CVE-2019-0847

9.3CVSS8.4AI score0.2548EPSS

CVE•added 2020/01/14 11:15 p.m.•149 views

CVE-2020-0635

An elevation of privilege vulnerability exists in Microsoft Windows when Windows fails to properly handle certain symbolic links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0644.

7.8CVSS8.4AI score0.00404EPSS

CVE•added 2021/05/11 7:15 p.m.•149 views

CVE-2021-31194

OLE Automation Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.06956EPSS

CVE•added 2022/04/15 7:15 p.m.•149 views

CVE-2022-24542

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.01719EPSS

CVE•added 2021/08/12 6:15 p.m.•148 views

CVE-2021-26425

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00184EPSS

CVE•added 2021/07/16 9:15 p.m.•148 views

CVE-2021-34457

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.6AI score0.0052EPSS

CVE•added 2022/06/15 10:15 p.m.•148 views

CVE-2022-30153

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.09164EPSS

CVE•added 2023/01/10 10:15 p.m.•148 views

CVE-2023-21730

Microsoft Cryptographic Services Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00322EPSS

CVE•added 2023/01/10 10:15 p.m.•148 views

CVE-2023-21765

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00708EPSS

CVE•added 2018/09/13 12:29 a.m.•147 views

CVE-2018-8420

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka "MS XML Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serve...

9.3CVSS8.2AI score0.55029EPSS

CVE•added 2019/01/08 9:29 p.m.•147 views

CVE-2019-0570

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka "Windows Runtime Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, ...

7.8CVSS7.5AI score0.0089EPSS

CVE•added 2020/08/17 7:15 p.m.•147 views

CVE-2020-1509

An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service (LSASS) when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause an elevation of privilege on the targ...

8.8CVSS8.1AI score0.06869EPSS

CVE•added 2021/07/14 6:15 p.m.•147 views

CVE-2021-31183

Windows TCP/IP Driver Denial of Service Vulnerability

7.5CVSS7.9AI score0.14302EPSS

CVE•added 2021/07/14 6:15 p.m.•147 views

CVE-2021-33749

Windows DNS Snap-in Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.03544EPSS

Total number of security vulnerabilities1841