Lucene search

K
MicrosoftWindows 8.16.3.0

354 matches found

CVE
CVE
added 2019/08/14 9:15 p.m.132 views

CVE-2019-1150

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS8.7AI score0.27004EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.131 views

CVE-2019-0713

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual mach...

6.8CVSS7.1AI score0.00518EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.131 views

CVE-2021-28434

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.130 views

CVE-2019-1144

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.41601EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.130 views

CVE-2020-17001

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00619EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.130 views

CVE-2021-27072

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.0054EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.129 views

CVE-2019-0722

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system that could caus...

9CVSS8.1AI score0.12753EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.129 views

CVE-2019-1145

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.3187EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.129 views

CVE-2020-1516

An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The sec...

7.8CVSS8.1AI score0.00387EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.128 views

CVE-2019-0941

A denial of service exists in Microsoft IIS Server when the optional request filtering feature improperly handles requests. An attacker who successfully exploited this vulnerability could perform a temporary denial of service against pages configured to use request filtering.To exploit this vulnera...

7.5CVSS6.1AI score0.02839EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.128 views

CVE-2020-1564

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.8AI score0.09677EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.127 views

CVE-2019-0948

An information disclosure vulnerability exists in the Windows Event Viewer (eventvwr.msc) when it improperly parses XML input containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity (XXE) declarati...

5.5CVSS6AI score0.42662EPSS
CVE
CVE
added 2021/01/12 8:15 p.m.127 views

CVE-2021-1666

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.3AI score0.01239EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.126 views

CVE-2020-1474

An information disclosure vulnerability exists when the Windows Image Acquisition (WIA) Service improperly discloses contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, an aut...

7.8CVSS7.8AI score0.01199EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.126 views

CVE-2020-1477

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...

7.8CVSS8.2AI score0.04189EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.126 views

CVE-2021-28335

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.126 views

CVE-2021-28340

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.09536EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.126 views

CVE-2021-28341

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.126 views

CVE-2021-28354

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.125 views

CVE-2020-1383

An information disclosure vulnerability exists in RPC if the server has Routing and Remote Access enabled. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s systemTo exploit this vulnerability, an attacker would need to run a special...

5.5CVSS6.9AI score0.00958EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.125 views

CVE-2020-16939

<p>An elevation of privilege vulnerability exists when Group Policy improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>To exploit the vulnerability, an attacker would first have to log on to the system, and then run ...

7.8CVSS8AI score0.23226EPSS
CVE
CVE
added 2021/01/12 8:15 p.m.125 views

CVE-2021-1674

Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability

8.8CVSS8.7AI score0.00889EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.125 views

CVE-2021-28329

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.125 views

CVE-2021-28337

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.125 views

CVE-2021-28345

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.124 views

CVE-2020-1488

An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges.T...

7.8CVSS7.5AI score0.00289EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.124 views

CVE-2020-1558

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.8AI score0.1249EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.124 views

CVE-2020-1587

An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate p...

7.8CVSS8.7AI score0.00428EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.124 views

CVE-2021-28355

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.123 views

CVE-2020-1039

<p>A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.</p><p>An attacker could exploit this vulnerability by enticing a vict...

9.3CVSS8.3AI score0.10479EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.123 views

CVE-2020-16922

<p>A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.</p><p>In an attack scenario, an attacker could bypass security features intended to preve...

5.5CVSS6.6AI score0.00564EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.123 views

CVE-2021-28332

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.123 views

CVE-2021-28334

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.123 views

CVE-2021-28342

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.122 views

CVE-2019-1152

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.3187EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.122 views

CVE-2021-28338

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.122 views

CVE-2021-28344

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.09536EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.121 views

CVE-2020-1031

<p>An information disclosure vulnerability exists in the way that the Windows Server DHCP service improperly discloses the contents of its memory.</p><p>To exploit the vulnerability, an unauthenticated attacker could send a specially crafted packet to an affected DHCP server. An attacker who succes...

7.5CVSS7.5AI score0.15202EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.121 views

CVE-2020-1083

<p>An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an at...

5.5CVSS6.3AI score0.01084EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.121 views

CVE-2020-16897

<p>An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an a...

5.5CVSS6.6AI score0.0047EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.121 views

CVE-2021-28327

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.09379EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.121 views

CVE-2021-28336

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.121 views

CVE-2021-28352

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.120 views

CVE-2020-1377

An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system.A locally authenticated attacker could exploit this vulnerability by...

7.8CVSS8AI score0.00408EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.120 views

CVE-2020-1562

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.To exploit the vulnerability, a user would have to open a specially crafted f...

9.3CVSS8.6AI score0.1249EPSS
CVE
CVE
added 2021/01/12 8:15 p.m.120 views

CVE-2021-1657

Windows Fax Compose Form Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.00558EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.120 views

CVE-2021-28346

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS
CVE
CVE
added 2020/08/17 7:15 p.m.119 views

CVE-2020-1339

A remote code execution vulnerability exists when Windows Media Audio Codec improperly handles objects. An attacker who successfully exploited the vulnerability could take control of an affected system.There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user...

9.3CVSS8.8AI score0.12139EPSS
CVE
CVE
added 2020/10/16 11:15 p.m.119 views

CVE-2020-16920

<p>An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p><p>To exploit the vulnerability, an attacker would first n...

7.8CVSS8.2AI score0.10918EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.119 views

CVE-2021-28330

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS
Total number of security vulnerabilities354