Windows Rt 8.1@- Security Vulnerabilities and Issues — Page 17 of Windows Rt 8.1@- CVE List

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader curren...

6.7CVSS8.2AI score0.00085EPSS

CVE•added 2023/01/10 10:15 p.m.•116 views

CVE-2023-21558

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00198EPSS

CVE•added 2023/01/10 10:15 p.m.•116 views

CVE-2023-21748

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00278EPSS

CVE•added 2014/11/11 10:55 p.m.•115 views

CVE-2014-6321

Schannel in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via crafted packets, aka "Microsoft Schannel Re...

10CVSS7.2AI score0.93398EPSS

CVE•added 2018/04/12 1:29 a.m.•115 views

CVE-2018-0957

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Information Disclosure Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Se...

5.3CVSS5.9AI score0.00978EPSS

CVE•added 2018/04/12 1:29 a.m.•115 views

CVE-2018-0971

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2...

5.5CVSS5AI score0.04687EPSS

CVE•added 2018/07/11 12:29 a.m.•115 views

CVE-2018-8308

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Window...

8.5CVSS6.5AI score0.02909EPSS

CVE•added 2018/08/15 5:29 p.m.•115 views

CVE-2018-8339

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior, aka "Windows Installer Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows ...

7CVSS6.6AI score0.00329EPSS

CVE•added 2018/11/14 1:29 a.m.•115 views

CVE-2018-8553

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Win...

9.3CVSS7.7AI score0.16169EPSS

CVE•added 2019/04/09 12:29 a.m.•115 views

CVE-2019-0754

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.

5.5CVSS6.4AI score0.00337EPSS

CVE•added 2019/08/14 9:15 p.m.•115 views

CVE-2019-1147

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS7.9AI score0.09677EPSS

CVE•added 2020/02/11 10:15 p.m.•115 views

CVE-2020-0655

A remote code execution vulnerability exists in Remote Desktop Services â€“ formerly known as Terminal Services â€“ when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop ServicesÂ Remote Code Execution Vulnerability'.

8.5CVSS8.4AI score0.45678EPSS

CVE•added 2020/03/12 4:15 p.m.•115 views

CVE-2020-0887

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0788, CVE-2020-0877.

7.8CVSS7.6AI score0.13359EPSS

CVE•added 2021/04/13 8:15 p.m.•115 views

CVE-2021-28333

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.09536EPSS

CVE•added 2021/07/14 6:15 p.m.•115 views

CVE-2021-33763

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00429EPSS

CVE•added 2021/07/14 6:15 p.m.•115 views

CVE-2021-33765

Windows Installer Spoofing Vulnerability

6.2CVSS7.1AI score0.00603EPSS

CVE•added 2021/07/14 6:15 p.m.•115 views

CVE-2021-33783

Windows SMB Information Disclosure Vulnerability

6.5CVSS7.1AI score0.13694EPSS

CVE•added 2021/09/15 12:15 p.m.•115 views

CVE-2021-38629

Windows Ancillary Function Driver for WinSock Information Disclosure Vulnerability

6.5CVSS7.2AI score0.14182EPSS

CVE•added 2021/10/13 1:15 a.m.•115 views

CVE-2021-40488

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00496EPSS

CVE•added 2021/10/13 1:15 a.m.•115 views

CVE-2021-41343

Windows Fast FAT File System Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00448EPSS

CVE•added 2021/11/10 1:19 a.m.•115 views

CVE-2021-41366

Credential Security Support Provider Protocol (CredSSP) Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00174EPSS

CVE•added 2022/06/15 10:15 p.m.•115 views

CVE-2022-30140

Windows iSCSI Discovery Service Remote Code Execution Vulnerability

7.5CVSS8.2AI score0.00575EPSS

CVE•added 2022/06/15 10:15 p.m.•115 views

CVE-2022-30166

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.09827EPSS

CVE•added 2022/10/11 7:15 p.m.•115 views

CVE-2022-38037

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.02169EPSS

CVE•added 2018/02/15 2:29 a.m.•114 views

CVE-2018-0830

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory a...

4.7CVSS4.9AI score0.11699EPSS

CVE•added 2018/04/12 1:29 a.m.•114 views

CVE-2018-0974

5.5CVSS5AI score0.04687EPSS

CVE•added 2018/06/14 12:29 p.m.•114 views

CVE-2018-8205

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka "Windows Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windo...

5.5CVSS6.4AI score0.00652EPSS

CVE•added 2018/07/11 12:29 a.m.•114 views

CVE-2018-8309

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka "Windows Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 ...

5.5CVSS6.4AI score0.00453EPSS

CVE•added 2019/04/08 11:29 p.m.•114 views

CVE-2019-0603

A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code with elevated permissions on a target system. To exploit the vulnerability, an attack...

8.5CVSS8.3AI score0.33096EPSS

CVE•added 2019/08/14 9:15 p.m.•114 views

CVE-2019-0716

A denial of service vulnerability exists when Windows improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to log on to an affected system and run a special...

6.8CVSS7.1AI score0.00965EPSS

CVE•added 2019/05/16 7:29 p.m.•114 views

CVE-2019-0890

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895, CVE-2019-0896,...

9.3CVSS8.1AI score0.29592EPSS

CVE•added 2020/08/17 7:15 p.m.•114 views

CVE-2020-1541

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security u...

7.8CVSS8.1AI score0.00387EPSS

CVE•added 2020/08/17 7:15 p.m.•114 views

CVE-2020-1579

An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privil...

7.8CVSS8.6AI score0.00397EPSS

CVE•added 2020/11/11 7:15 a.m.•114 views

CVE-2020-17088

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00513EPSS

CVE•added 2020/12/10 12:15 a.m.•114 views

CVE-2020-17098

Windows GDI+ Information Disclosure Vulnerability

5.5CVSS6.3AI score0.00677EPSS

CVE•added 2021/04/13 8:15 p.m.•114 views

CVE-2021-28339

Remote Procedure Call Runtime Remote Code Execution Vulnerability