Windows 8.1@6.3.0 Security Vulnerabilities and Issues — Page 6 of Windows 8.1@6.3.0 CVE List

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could exploit th...

5.5CVSS5.9AI score0.00896EPSS

CVE•added 2020/09/11 5:15 p.m.•97 views

CVE-2020-1091

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could ...

6.5CVSS6.9AI score0.22282EPSS

CVE•added 2020/08/17 7:15 p.m.•97 views

CVE-2020-1547

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security u...

7.8CVSS8.1AI score0.00378EPSS

CVE•added 2021/04/13 8:15 p.m.•97 views

CVE-2021-28437

Windows Installer Information Disclosure Vulnerability

5.5CVSS6.7AI score0.00448EPSS

CVE•added 2021/04/13 8:15 p.m.•97 views

CVE-2021-28445

Windows Network File System Remote Code Execution Vulnerability

8.8CVSS8.5AI score0.17466EPSS

CVE•added 2019/08/14 9:15 p.m.•96 views

CVE-2019-1177

An elevation of privilege vulnerability exists in the way that the rpcss.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted ...

7CVSS7.3AI score0.00196EPSS

CVE•added 2020/10/16 11:15 p.m.•96 views

CVE-2020-16935

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit this vulnerability, an attacker would first have to log on to the syste...

7.8CVSS8.2AI score0.00993EPSS

CVE•added 2020/11/11 7:15 a.m.•96 views

CVE-2020-17000

Remote Desktop Protocol Client Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00542EPSS

CVE•added 2021/02/25 11:15 p.m.•96 views

CVE-2021-24103

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00371EPSS

CVE•added 2021/04/13 8:15 p.m.•96 views

CVE-2021-28323

Windows DNS Information Disclosure Vulnerability

6.5CVSS7.1AI score0.12484EPSS

CVE•added 2020/11/11 7:15 a.m.•95 views

CVE-2020-17025

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00514EPSS

CVE•added 2020/11/11 7:15 a.m.•95 views

CVE-2020-17036

Windows Function Discovery SSDP Provider Information Disclosure Vulnerability

5.5CVSS7AI score0.00429EPSS

CVE•added 2021/01/12 8:15 p.m.•95 views

CVE-2021-1702

Windows Remote Procedure Call Runtime Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.00288EPSS

CVE•added 2019/08/14 9:15 p.m.•94 views

CVE-2019-1172

An information disclosure vulnerability exists in Azure Active Directory (AAD) Microsoft Account (MSA) during the login request session. An attacker who successfully exploited the vulnerability could take over a user's account.To exploit the vulnerability, an attacker would have to trick a user int...

4.3CVSS6AI score0.065EPSS

CVE•added 2020/09/11 5:15 p.m.•94 views

CVE-2020-0911

An elevation of privilege vulnerability exists when Windows Modules Installer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context.An attacker could exploit this vulnerability by running a specially...

7.8CVSS8.1AI score0.00576EPSS

CVE•added 2020/09/11 5:15 p.m.•94 views

CVE-2020-1115

An elevation of privilege vulnerability exists when the <a href="https://technet.microsoft.com/library/security/dn848375.aspx#CLFS">Windows Common Log File System (CLFS)</a> driver improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes...

7.8CVSS8.1AI score0.00524EPSS

CVE•added 2020/11/11 7:15 a.m.•94 views

CVE-2020-17011

Windows Port Class Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0073EPSS

CVE•added 2020/11/11 7:15 a.m.•94 views

CVE-2020-17047

Windows Network File System Denial of Service Vulnerability

7.8CVSS8.2AI score0.15305EPSS

CVE•added 2020/11/11 7:15 a.m.•94 views

CVE-2020-17069

Windows NDIS Information Disclosure Vulnerability

5.5CVSS7AI score0.00403EPSS

CVE•added 2021/01/12 8:15 p.m.•94 views

CVE-2021-1659

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00256EPSS

CVE•added 2021/04/13 8:15 p.m.•94 views

CVE-2021-27094

Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability

4.4CVSS6.3AI score0.00407EPSS

CVE•added 2021/04/13 8:15 p.m.•94 views

CVE-2021-28443

Windows Console Driver Denial of Service Vulnerability

5.5CVSS6.7AI score0.00267EPSS

CVE•added 2019/08/14 9:15 p.m.•93 views

CVE-2019-1187

A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input. An attacker who successfully exploited this vulnerability could cause a denial of service against an XML application.A remote unauthenticated attacker could exploit this vulnerability by iss...

5.5CVSS7AI score0.03246EPSS

CVE•added 2020/09/11 5:15 p.m.•93 views

CVE-2020-0782

An elevation of privilege vulnerability exists when the Windows Cryptographic Catalog Services improperly handle objects in memory. An attacker who successfully exploited this vulnerability could modify the cryptographic catalog.To exploit this vulnerability, an attacker would first have ...

7.8CVSS8.1AI score0.00726EPSS

CVE•added 2020/11/11 7:15 a.m.•93 views

CVE-2020-17032

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00514EPSS

CVE•added 2021/01/12 8:15 p.m.•93 views

CVE-2021-1661

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.0044EPSS

CVE•added 2021/01/12 8:15 p.m.•93 views

CVE-2021-1683

Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG.To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the rem...

5.5CVSS6.5AI score0.03167EPSS

CVE•added 2021/01/12 8:15 p.m.•93 views

CVE-2021-1710

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.01784EPSS

CVE•added 2021/02/25 11:15 p.m.•93 views

CVE-2021-1734

Windows Remote Procedure Call Information Disclosure Vulnerability

7.5CVSS8.3AI score0.12209EPSS

CVE•added 2020/09/11 5:15 p.m.•92 views

CVE-2020-0838

An elevation of privilege vulnerability exists when NTFS improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context.To exploit the vulnerability, an attacker would first have to log on to the system, and then run a specia...

7.8CVSS8AI score0.00726EPSS

CVE•added 2020/09/11 5:15 p.m.•92 views

CVE-2020-1598

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs...

7.8CVSS7.4AI score0.01512EPSS

CVE•added 2020/11/11 7:15 a.m.•92 views

CVE-2020-17034

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00681EPSS

CVE•added 2021/01/12 8:15 p.m.•92 views

CVE-2021-1652

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS

CVE•added 2021/01/12 8:15 p.m.•92 views

CVE-2021-1688

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00256EPSS

CVE•added 2021/01/12 8:15 p.m.•92 views

CVE-2021-1708

Windows GDI+ Information Disclosure Vulnerability

5.7CVSS6.6AI score0.07968EPSS

CVE•added 2021/04/13 8:15 p.m.•92 views

CVE-2021-28439

Windows TCP/IP Driver Denial of Service Vulnerability

7.5CVSS7.9AI score0.17798EPSS

CVE•added 2020/11/11 7:15 a.m.•91 views

CVE-2020-17004

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS7AI score0.00448EPSS

CVE•added 2020/11/11 7:15 a.m.•91 views

CVE-2020-17033

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00514EPSS

CVE•added 2020/11/11 7:15 a.m.•91 views

CVE-2020-17041

Windows Print Configuration Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00428EPSS

CVE•added 2020/11/11 7:15 a.m.•91 views

CVE-2020-17068

Windows GDI+ Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.0073EPSS

CVE•added 2021/02/25 11:15 p.m.•91 views

CVE-2020-17162

Microsoft Windows Security Feature Bypass Vulnerability

8.8CVSS8.5AI score0.10614EPSS

CVE•added 2020/09/11 5:15 p.m.•90 views

CVE-2020-0922

A remote code execution vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.To exploit the vulnerability, a user would have to open a specially cr...

9.3CVSS8.7AI score0.129EPSS

CVE•added 2020/11/11 7:15 a.m.•90 views

CVE-2020-17045

Windows KernelStream Information Disclosure Vulnerability

5.5CVSS7AI score0.00606EPSS

CVE•added 2021/01/12 8:15 p.m.•90 views

CVE-2021-1693

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS

CVE•added 2021/04/13 8:15 p.m.•90 views

CVE-2021-28328

Windows DNS Information Disclosure Vulnerability