Lucene search
K
MicrosoftWindows Rt

216 matches found

CVE
CVE
added 2014/11/11 10:0 p.m.1280 views

CVE-2014-6332

CVE-2014-6332 is discussed in connected sources as being exploited by the Neptune Exploit Kit to deliver a Monero-mining payload via Internet Explorer exploits. The Neptune Campaign uses CVE-2014-6332 alongside other IE and Flash exploits to identify vulnerable targets and chain exploits in a sin...

9.3CVSS8.8AI score0.94996EPSS
In wild
CVE
CVE
added 2015/09/09 12:0 a.m.1274 views

CVE-2015-2546

CVE-2015-2546 affects the Windows kernel Win32k memory handling (kernel‑mode driver) and enables local privilege escalation via a crafted application on affected Windows versions (Vista SP2 onward, Windows 7 SP1, 8/8.1, 10, Server editions). The root cause is a memory corruption vulnerability in ...

8.2CVSS8.5AI score0.10929EPSS
In wild
CVE
CVE
added 2014/10/22 2:0 p.m.1061 views

CVE-2014-6352

CVE-2014-6352 is an OLE remote code execution vulnerability in Microsoft Windows where a crafted OLE object can trigger arbitrary code execution. The issue affected Windows Vista SP2, Windows 7 SP1, Windows 8/8.1, Windows Server 2008/2012 variants, and Windows RT, with public exploitation reporte...

9.3CVSS7.6AI score0.77553EPSS
In wildWeb
CVE
CVE
added 2013/05/24 8:0 p.m.1046 views

CVE-2013-3660

CVE-2013-3660 describes a local privilege-escalation in Microsoft Windows via Win32k.sys (EPATHOBJ::pprFlattenRec) where a pointer for the next object in a PATHREC list is not properly initialized. According to the CVE description and linked documents, local users could gain write access to the P...

7.8CVSS6.5AI score0.39578EPSS
In wild
CVE
CVE
added 2014/10/15 10:0 a.m.1004 views

CVE-2014-4113

CVE-2014-4113 corresponds to a Windows kernel-win32k.sys local privilege escalation (MS14-058) affecting multiple Windows editions (e.g., Windows 7/8/8.1 and corresponding server variants). The vulnerability arises in win32k.sys kernel-mode drivers and allows a crafted user-mode application to ga...

7.8CVSS8AI score0.87042EPSS
In wild
CVE
CVE
added 2014/10/15 10:0 a.m.980 views

CVE-2014-4114

CVE-2014-4114 is the Windows OLE Remote Code Execution vulnerability exploited via a crafted OLE object embedded in a Office document. Affected products include Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8/8.1, Windows Server 2012 Gold and R2, and Windows RT Gol...

9.3CVSS9.5AI score0.81628EPSS
In wild
CVE
CVE
added 2015/01/13 10:0 p.m.936 views

CVE-2015-0016

The CVE-2015-0016 issue corresponds to a directory traversal elevation-of-privilege vulnerability in the TS WebProxy (TSWbPrxy) component affecting multiple Windows versions (Vista SP2, Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8/8.1, Windows Server 2012/2012 R2, Windows RT/8.1). The und...

9.3CVSS6.8AI score0.7594EPSS
In wildWeb
CVE
CVE
added 2014/10/15 10:0 a.m.931 views

CVE-2014-4148

CVE-2014-4148 is a remote code execution vulnerability in Windows kernel-mode driver win32k.sys caused by improper handling of TrueType fonts. It affects multiple Windows versions (server 2003 SP2, Vista, 2008, 7, 8/8.1, Server 2012) and is referenced publicly as MS14-058. Public exploitation exi...

9.3CVSS7.9AI score0.50703EPSS
In wild
CVE
CVE
added 2015/08/15 12:0 a.m.927 views

CVE-2015-1769

CVE-2015-1769 is a Windows privilege-escalation issue in the Mount Manager where symbolic link handling can be abused by inserting a malicious USB device. The vulnerability affects multiple Windows client/server releases (Vista SP2, 2008 SP2/R2, 7 SP1, 8/8.1, 2012/2012 R2, RT/RT 8.1, 10) and is c...

7.2CVSS7.3AI score0.04339EPSS
In wild
CVE
CVE
added 2015/07/14 10:0 p.m.924 views

CVE-2015-2387

CVE-2015-2387 discusses a local privilege-escalation in the ATMFD.DLL component of the Windows Adobe Type Manager Font Driver. Concrete details from connected sources show multiple OTF/TTF vulnerabilities in ATMFD.DLL (and related font subsystems) that allowed memory corruption via crafted font d...

7.8CVSS6.2AI score0.36738EPSS
In wild
CVE
CVE
added 2015/07/20 6:0 p.m.922 views

CVE-2015-2426

CVE-2015-2426 is a Windows OpenType Font Driver vulnerability (ATMFD.DLL) that causes a pool/heap overflow when processing OpenType fonts, allowing remote code execution. The issue arises from a flawed handling of font data (notably the Class1Count field in the GPOS/CFF paths) where an invalid ze...

9.3CVSS7.4AI score0.8669EPSS
In wild
CVE
CVE
added 2015/06/10 1:0 a.m.893 views

CVE-2015-2360

CVE-2015-2360 is a local privilege-escalation in Windows kernel-mode driver Win32k.sys affecting multiple Windows versions (Server 2003 SP2/R2 SP2, Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1, 8/8.1, Server 2012/2012 R2, RT/RT 8.1). The underlying issue is in Win32k.sys that allows crafted a...

8.8CVSS6.5AI score0.14958EPSS
In wild
CVE
CVE
added 2015/02/11 2:0 a.m.233 views

CVE-2015-0008

CVE-2015-0008 affects Windows clients/servers (Windows Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, 7 SP1, 8/8.1, Server 2012/2012 R2, RT/RT 8.1) where UNC-based policy data transfers during Group Policy processing allow remote code execution due to lack of server-to-client authentication. The...

8.3CVSS8.1AI score0.2858EPSS
Web
CVE
CVE
added 2015/09/09 12:0 a.m.231 views

CVE-2015-2517

CVE-2015-2517 is a local privilege escalation in Windows Win32k memory corruption affecting multiple Windows releases (Vista to Windows 10). Connected sources confirm public exploitation (Exploit-DB 38278) and reference a memory-corruption root cause in the Win32k subsystem; no remediation detail...

6.9CVSS8.5AI score0.0419EPSS
In wild
CVE
CVE
added 2015/09/09 12:0 a.m.226 views

CVE-2015-2511

CVE-2015-2511 is a kernel-mode Win32k memory corruption privilege-escalation vulnerability that affects multiple Windows versions (Vista SP2 to Windows 10). The flaw is triggered by a crafted application via the Windows kernel-mode driver, leading to local privilege elevation. Public exploit refe...

6.9CVSS8.5AI score0.04206EPSS
In wild
CVE
CVE
added 2015/09/09 12:0 a.m.221 views

CVE-2015-2518

Technical details for CVE-2015-2518 are not provided in the supplied documents. No affected products, root cause, or remediation are stated here. Monitor updates from official advisories and connected sources.

6.9CVSS8.5AI score0.04206EPSS
In wild
CVE
CVE
added 2013/08/14 10:0 a.m.216 views

CVE-2013-3175

CVE-2013-3175 is a Windows elevation-of-privilege issue in the handling of asynchronous RPC requests. Affected products include Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT. Root cause...

10CVSS7.5AI score0.27538EPSS
CVE
CVE
added 2015/12/09 11:0 a.m.210 views

CVE-2015-6108

CVE-2015-6108 affects the Windows font library across multiple Windows OS versions (Vista through Windows 8.1/Server 2012) and related Microsoft products, where a crafted embedded font can trigger remote code execution. The vulnerability is described as a memory corruption issue in handling embed...

9.3CVSS7.4AI score0.25998EPSS
CVE
CVE
added 2015/03/06 5:0 p.m.188 views

CVE-2015-1637

CVE-2015-1637 is listed in OpenSSL TLS Export Cipher Suite Downgrade advisories (FREAK family). IBM AIX/OpenSSL references indicate OpenSSL on AIX platforms is affected by export-RSA downgrade threats and provides fixes via interim patches (IV69033s9a/b/c) for openssl.base 1.0.1.513 on AIX 5.3/6....

4.3CVSS6.2AI score0.13151EPSS
CVE
CVE
added 2013/01/09 6:0 p.m.184 views

CVE-2013-0007

CVE-2013-0007 impacts Microsoft XML Core Services (MSXML) versions 4.0–6.0. A parsing fault in MSXML can allow remote code execution when a user visits a crafted web page (MSXML XSLT vulnerability). Affected components include MSXML DLLs; root cause is improper XML content parsing. Mitigation is ...

9.3CVSS7.5AI score0.31574EPSS
CVE
CVE
added 2015/03/11 10:0 a.m.179 views

CVE-2015-0096

CVE-2015-0096 is a Windows DLL search-order/shortcut (LNK) loading vulnerability (MS15-020 family). A crafted LNK with dynamic icon and SpecialFolderDataBlock can bypass earlier whitelisting, causing Windows to load a malicious DLL when icons are rendered (e.g., in Explorer), potentially executin...

9.3CVSS6.8AI score0.71075EPSS
CVE
CVE
added 2013/10/09 2:44 p.m.170 views

CVE-2013-3128

CVE-2013-3128 describes a vulnerability in OpenType font parsing that affects kernel-mode drivers across multiple Windows editions (XP SP2/3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, 8, Server 2012, Windows RT) and certain .NET Framework versions. The issue arises in how Ope...

9.3CVSS7.3AI score0.50374EPSS
CVE
CVE
added 2013/06/12 1:0 a.m.168 views

CVE-2013-3138

CVE-2013-3138 is a denial-of-service vulnerability arising from an integer overflow in the TCP/IP kernel-mode driver. The affected software set includes Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8; Windows Server 2012; Windows RT. An attacker can cause a system...

7.1CVSS6.7AI score0.63518EPSS
CVE
CVE
added 2014/04/08 9:0 p.m.167 views

CVE-2014-0315

CVE-2014-0315 corresponds to the Windows File Handling vulnerability fixed by MS14-019. It is a local privilege-escalation/binary-hijacking issue caused by untrusted search path handling for .bat/.cmd files when CreateProcess() is used and the first token is CMD, which can execute a rogue cmd.exe...

6.9CVSS6.3AI score0.14736EPSS
CVE
CVE
added 2015/08/15 12:0 a.m.165 views

CVE-2015-2454

CVE-2015-2454 concerns a vulnerability in the Windows kernel-mode driver where impersonation level handling is not properly constrained. The issue allows a local attacker to gain privileges by crafting an application, affecting multiple Windows versions listed in the initial document (Vista SP2, ...

2.1CVSS6.3AI score0.02097EPSS
CVE
CVE
added 2013/01/09 6:0 p.m.164 views

CVE-2013-0013

The CVE-2013-0013 issue affects the Windows SSL/TLS stack: multiple Windows versions (Vista SP2, Server 2008 SP2/R2 and SP1, Windows 7, 8, Server 2012, Windows RT) have a flaw in the SSL provider that mishandles encrypted packets, enabling a man-in-the-middle to downgrade SSLv2 and intercept hand...

5.8CVSS6.3AI score0.06351EPSS
CVE
CVE
added 2013/11/12 1:0 a.m.164 views

CVE-2013-3918

CVE-2013-3918 is an out-of-bounds write vulnerability in the InformationCardSigninHelper Class ActiveX control (icardie.dll) used by Internet Explorer. The flaw exists when the ActiveX control is instantiated via a crafted webpage, enabling remote code execution with the current user’s privileges...

9.3CVSS7.5AI score0.73872EPSS
In wild
CVE
CVE
added 2013/11/13 12:0 a.m.159 views

CVE-2013-3869

The CVE-2013-3869 issue affects a broad set of Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8, 8.1, Server 2012/R2, and Windows RT). The vulnerability stems from improper handling of X.509 certificates during validation, allowing remote...

5CVSS6.5AI score0.17977EPSS
CVE
CVE
added 2014/02/12 2:0 a.m.153 views

CVE-2014-0263

CVE-2014-0263 concerns a remote code execution vulnerability in the Windows Graphics Component (Direct2D). The issue arises when the Direct2D implementation in affected Windows versions encounters a large 2D geometric figure, processed via Internet Explorer, leading to memory corruption that can ...

9.3CVSS7.5AI score0.18885EPSS
CVE
CVE
added 2014/06/11 1:0 a.m.150 views

CVE-2014-1811

CVE-2014-1811 affects the Windows TCP/IP stack in Windows Vista SP2, Windows Server 2008 SP2/R2, Windows 7 SP1, Windows 8/8.1, Windows Server 2012, and Windows RT (and related editions). The vulnerability arises from handling malformed data in the TCP header Options field, leading to remote denia...

5CVSS6.5AI score0.18221EPSS
CVE
CVE
added 2013/08/14 10:0 a.m.149 views

CVE-2013-3183

Microsoft Windows ICMPv6 Packet Denial of Service (CVE-2013-3183) affects multiple Windows platforms (Vista SP2, 2008 SP2/R2 SP1, 7 SP1, 8, 2012, RT) where the TCP/IP stack improperly allocates memory for inbound ICMPv6 packets, causing remote denial of service (system hang) via crafted packets. ...

7.8CVSS6.5AI score0.80473EPSS
CVE
CVE
added 2013/12/11 12:0 a.m.148 views

CVE-2013-5056

The CVE-2013-5056 issue is a use-after-free vulnerability in the Microsoft Scripting Runtime Object Library (scrrun.dll) that allows remote code execution when a user visits a crafted website via Internet Explorer. Affected products span multiple Windows versions (XP SP2/SP3, Server 2003 SP2, Vis...

9.3CVSS7.3AI score0.20353EPSS
CVE
CVE
added 2015/07/14 10:0 p.m.144 views

CVE-2015-2370

CVE-2015-2370 involves an elevation-of-privilege flaw in Windows RPC/DCOM: the DCE/RPC reflection enables a local attacker to gain privileges via a crafted OBJREF, allowing a local user to trigger RPC auth relaying. Affected products span Windows Server 2003 SP2/R2 SP2, Vista SP2, Server 2008 SP2...

7.2CVSS6.5AI score0.04417EPSS
CVE
CVE
added 2015/02/11 2:0 a.m.136 views

CVE-2015-0009

CVE-2015-0009 is the Group Policy Security Feature Bypass vulnerability affecting multiple Windows platforms (Windows Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7, 8/8.1, Server 2012) where a man-in-the-middle attacker can spoof domain-controller responses to disable a signing requir...

3.3CVSS6.2AI score0.08074EPSS
CVE
CVE
added 2013/01/09 6:0 p.m.135 views

CVE-2013-0006

CVE-2013-0006 is associated with OSIsoft PI Interface for OPC XML-DA (ICS advisory ICSA-20-315-01) and Microsoft MSXML/MS13-002 context. Connected documents identify the affected product as PI Interface for OPC XML-DA versions prior to 1.7.3.x, where the vulnerability stems from numeric errors/st...

9.3CVSS7.5AI score0.28084EPSS
CVE
CVE
added 2014/11/11 10:0 p.m.135 views

CVE-2014-6321

CVE-2014-6321 is a Microsoft Schannel remote code execution vulnerability affecting Windows Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, 8/8.1, Server 2012 (Gold/R2) and Windows RT/8.1. The issue arises from improper processing of crafted packets in Schannel, enabling remote cod...

10CVSS7.2AI score0.95988EPSS
In wild
CVE
CVE
added 2015/08/15 12:0 a.m.134 views

CVE-2015-2464

CVE-2015-2463 and CVE-2015-2464 describe a TrueType font parsing vulnerability that allows remote code execution. Affected products include Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8/8.1, Windows Server 2012 Gold/R2, Windows RT 8.1, Office 2007 SP3 and 2010 SP2, L...

9.3CVSS7.3AI score0.35562EPSS
CVE
CVE
added 2016/08/09 9:0 p.m.128 views

CVE-2016-3237

CVE-2016-3237 is a Kerberos authentication bypass in multiple Windows versions where domain password changes may fall back to NTLM, enabling MITM style bypass of authentication. Affected: Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold/R...

7.5CVSS7.4AI score0.17181EPSS
CVE
CVE
added 2015/02/11 2:0 a.m.124 views

CVE-2015-0057

CVE-2015-0057 is a local privilege escalation in the Windows kernel-mode driver win32k.sys. The vulnerability in Win32k.sys allows local attackers to gain elevated privileges by exploiting crafted applications, specifically tied to MS15-010. Public exploits exist (e.g., Exploit-DB MS15-010 entry ...

7.2CVSS6.4AI score0.12752EPSS
CVE
CVE
added 2014/07/08 10:0 p.m.118 views

CVE-2014-1767

CVE-2014-1767 is a local privilege-escalation vulnerability in the Windows Ancillary Function Driver (afd.sys) leveraged via a dangling/double-free condition in kernel-mode code (AFD). Public materials indicate Microsoft MS14-040 addressed this flaw, affecting multiple Windows versions from Windo...

7.2CVSS6.3AI score0.12694EPSS
CVE
CVE
added 2015/11/11 11:0 a.m.118 views

CVE-2015-6111

CVE-2015-6111 describes a Denial of Service affecting Windows IPSec: IPSec in Windows 8/8.1, Windows Server 2012 (Gold/R2), Windows RT (Gold/8.1), and Windows 10 (Gold/1511) mishandles encryption negotiation, allowing an authenticated remote attacker to cause the system to hang via crafted IP tra...

6.8CVSS6.3AI score0.0779EPSS
CVE
CVE
added 2015/10/14 1:0 a.m.114 views

CVE-2015-2554

CVE-2015-2554 is a Windows kernel elevation-of-privilege vulnerability (Windows 8/8.1, Windows Server 2012 RT/R2, Windows RT 8.1, Windows 10). The issue allows local attackers to gain privileges via a crafted application and is addressed by MS15-111 (KB3096447). Public exploits exist (per Exploit...

7.2CVSS6.3AI score0.03553EPSS
CVE
CVE
added 2015/01/13 10:0 p.m.109 views

CVE-2015-0002

CVE-2015-0002 (AppCompat Cache Elevation of Privilege) affects Windows via AhcVerifyAdminContext in ahcache.sys, introduced with Windows 8/8.1 era. The root cause is improper validation of the caller’s impersonation token: the code retrieves the token and checks for LocalSystem or Administrators,...

7.2CVSS6.5AI score0.13802EPSS
CVE
CVE
added 2015/09/09 12:0 a.m.108 views

CVE-2015-2506

The CVE-2015-2506 issue is a remote DoS in the Windows Adobe Type Manager Library (atmfd.dll) triggered by specially crafted OpenType fonts. The vulnerable component is the Adobe Type Manager Library integrated in Windows (atmfd.dll). Underlying cause is improper parsing/handling of OpenType font...

9.3CVSS6.4AI score0.15881EPSS
CVE
CVE
added 2015/08/15 12:0 a.m.107 views

CVE-2015-2463

CVE-2015-2463/2464 describe a TrueType font parsing vulnerability affecting multiple Windows variants (Vista SP2, 7 SP1, 8/8.1, Server 2008/2012, RT, Office 2007/2010, Silverlight, .NET Framework). The issue allows remote code execution via a crafted TrueType font, caused by a parsing flaw in the...

9.3CVSS7.3AI score0.34475EPSS
CVE
CVE
added 2015/12/09 11:0 a.m.106 views

CVE-2015-6132

CVE-2015-6132 is the Windows library loading remote code execution vulnerability affecting multiple Windows versions. Root cause: mishandled library loading enabling local privilege escalation via a crafted application. The MS15-132 security update fixes this, with public exploits and a Metasploi...

7.2CVSS7AI score0.84701EPSS
CVE
CVE
added 2015/08/15 12:0 a.m.104 views

CVE-2015-2435

CVE-2015-2435 is a TrueType font parsing vulnerability impacting Microsoft Windows (multiple editions listed) and related components (e.g., Silverlight, Office) that allows remote code execution via a crafted font. The issue is documented with a CVSS v2 base score of 9.3 (high) and network attack...

9.3CVSS7.4AI score0.2187EPSS
CVE
CVE
added 2015/08/15 12:0 a.m.104 views

CVE-2015-2455

CVE-2015-2455 (TrueType Font Parsing Vulnerability) is a Windows font-processing defect discovered via Project Zero fuzzing of the Windows kernel font stack (win32k.sys and ATMFD.DLL) affecting TrueType fonts and related SFNT tables. The Google Project Zero report outlines that incorrect handling...

9.3CVSS7.3AI score0.37429EPSS
CVE
CVE
added 2015/08/15 12:0 a.m.102 views

CVE-2015-2432

CVE-2015-2432 affects ATMFD.DLL in the Windows Adobe Type Manager Library, enabling remote code execution via crafted OpenType fonts. Affected products include Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, Windows 7 SP1, Windows 8/8.1, Windows Server 2012 (and RT variants). The root cause is...

9.3CVSS7.5AI score0.30271EPSS
CVE
CVE
added 2015/08/15 12:0 a.m.102 views

CVE-2015-2456

Summary from Project Zero (2016) : Windows kernel font handling (TTF/OTF) contained multiple vulnerabilities discovered via fuzzing (ATMFD.DLL, win32k.sys) with several CVEs (notably CVE-2015-2455 and CVE-2015-2456). Root cause highlighted: the IUP instruction handler in win32k!itrp_IUP failed to...

9.3CVSS7.3AI score0.35562EPSS
Total number of security vulnerabilities216