Windows Server 1803 Security Vulnerabilities and Issues — Page 15 of Windows Server 1803 CVE List

7.8CVSS8.5AI score0.0038EPSS

CVE-2020-1078

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS8.5AI score0.00274EPSS

CVE-2020-1132

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles file and folder links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'.

CVE-2020-1149

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1090, CVE-2020-1125, CVE-2020-1139, CVE-2020-1151, CVE-2020-115...

CVE-2020-1151

CVE-2020-1184

An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory, aka 'Windows State Repository Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1124, CVE-2020-1131, CVE-2020-1134, CVE-2020-1144, CVE-2020...

5.5CVSS6.1AI score0.00571EPSS

CVE-2020-0658

An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'.

7.8CVSS7.7AI score0.00549EPSS

CVE-2020-0723

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0724, CVE...

5.5CVSS6.3AI score0.13946EPSS

CVE-2020-0728

An information vulnerability exists when Windows Modules Installer Service improperly discloses file information, aka 'Windows Modules Installer Service Information Disclosure Vulnerability'.

5.5CVSS5.2AI score0.00996EPSS

CVE-2020-0748

CVE•added 2020/05/21 11:15 p.m.•74 views

CVE-2020-1125

CVE•added 2020/05/21 11:15 p.m.•74 views

CVE-2020-1144

CVE•added 2019/11/12 7:15 p.m.•73 views

CVE-2019-1324

An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles IPv6 flowlabel filled in packets, aka 'Windows TCP/IP Information Disclosure Vulnerability'.

5.3CVSS6.4AI score0.0203EPSS

CVE•added 2019/11/12 7:15 p.m.•73 views

CVE-2019-1409

An information disclosure vulnerability exists when the Windows Remote Procedure Call (RPC) runtime improperly initializes objects in memory, aka 'Windows Remote Procedure Call Information Disclosure Vulnerability'.

5.5CVSS6.6AI score0.00655EPSS

CVE•added 2020/02/11 10:15 p.m.•73 views

CVE-2020-0725

7.8CVSS7.7AI score0.00549EPSS

CVE•added 2020/02/11 10:15 p.m.•73 views

CVE-2020-0752

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0666, CVE-2020-0667, CVE-2020-0735.

7.8CVSS8.1AI score0.00511EPSS

CVE•added 2020/03/12 4:15 p.m.•73 views

CVE-2020-0763

An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Windows Defender Security Center Elevation of Privilege Vulnerability'. This CVE ID is uniq...

7.8CVSS8.5AI score0.00502EPSS

CVE•added 2020/03/12 4:15 p.m.•73 views

CVE-2020-0780

An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory, aka 'Windows Network List Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00502EPSS

CVE•added 2020/03/12 4:15 p.m.•73 views

CVE-2020-0897

An elevation of privilege vulnerability exists when the Windows Work Folder Service improperly handles file operations, aka 'Windows Work Folder Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0777, CVE-2020-0797, CVE-2020-0800, CVE-2020-0864, CVE-2020-0865, CVE-2...

7.8CVSS7.6AI score0.00538EPSS

CVE•added 2020/05/21 11:15 p.m.•73 views

CVE-2020-1021

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1082, CVE-2020-1088.

7.8CVSS8.5AI score0.00285EPSS

CVE•added 2019/11/12 7:15 p.m.•72 views

CVE-2019-1415

7.8CVSS8.5AI score0.0038EPSS

CVE•added 2020/02/11 10:15 p.m.•72 views

CVE-2020-0727

An elevation of privilege vulnerability exists when the Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00502EPSS

CVE•added 2020/03/12 4:15 p.m.•72 views

CVE-2020-0779

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0798, CVE-2020-0814, CVE-2020-0842, CVE-2020-0843.

5.5CVSS6.4AI score0.00646EPSS

CVE•added 2020/03/12 4:15 p.m.•72 views

CVE-2020-0867

An elevation of privilege vulnerability exists when the Windows Update Orchestrator Service improperly handles file operations, aka 'Windows Update Orchestrator Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0868.

7.8CVSS8.5AI score0.0037EPSS

7.8CVSS8.5AI score0.00397EPSS

CVE-2020-1068

An elevation of privilege vulnerability exists in Windows Media Service that allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2...

7.8CVSS8.4AI score0.00397EPSS

CVE-2020-1079

An elevation of privilege vulnerability exists when the Windows fails to properly handle objects in memory, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1010, CVE-2020-1068.

7.8CVSS8.5AI score0.00231EPSS

CVE-2020-1081

An elevation of privilege vulnerability exists when the Windows Printer Service improperly validates file paths while loading printer drivers, aka 'Windows Printer Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00285EPSS

CVE-2020-1082

CVE-2020-1131

CVE-2020-1139

5.5CVSS6.5AI score0.2819EPSS

CVE-2020-1141

An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0963...

CVE•added 2019/11/12 7:15 p.m.•71 views

CVE-2019-1418

An information vulnerability exists when Windows Modules Installer Service improperly discloses file information, aka 'Windows Modules Installer Service Information Disclosure Vulnerability'.

3.3CVSS5.8AI score0.01042EPSS

CVE•added 2019/11/12 7:15 p.m.•71 views

CVE-2019-1420

An elevation of privilege vulnerability exists in the way that the dssvc.dll handles file creation allowing for a file overwrite or creation in a secured location, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1422, CVE-2019-1423.

7.8CVSS8.5AI score0.10472EPSS

CVE•added 2020/04/15 3:15 p.m.•71 views

CVE-2020-0699

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0962.

5.5CVSS6AI score0.00873EPSS

CVE•added 2020/02/11 10:15 p.m.•71 views

CVE-2020-0705

An information disclosure vulnerability exists when the Windows Network Driver Interface Specification (NDIS) improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Network Driver Interface Specification (NDIS) Info...

5.5CVSS6.3AI score0.00983EPSS

CVE•added 2020/03/12 4:15 p.m.•71 views

CVE-2020-0820

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'.

5.5CVSS6.6AI score0.00996EPSS

CVE•added 2020/05/21 11:15 p.m.•71 views

CVE-2020-1188

CVE•added 2020/02/11 10:15 p.m.•70 views

CVE-2020-0750

An elevation of privilege vulnerability exists in the way that the Connected Devices Platform Service handles objects in memory, aka 'Connected Devices Platform Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0740, CVE-2020-0741, CVE-2020-0742, CVE-2020-0743, CVE-...

7.8CVSS7.7AI score0.00502EPSS

CVE•added 2020/03/12 4:15 p.m.•70 views

CVE-2020-0882

6.5CVSS6.2AI score0.29411EPSS

CVE•added 2020/05/21 11:15 p.m.•70 views

CVE-2020-1124

An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory, aka 'Windows State Repository Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1131, CVE-2020-1134, CVE-2020-1144, CVE-2020-1184, CVE-2020...

CVE•added 2020/05/21 11:15 p.m.•70 views

CVE-2020-1156

CVE•added 2020/05/21 11:15 p.m.•70 views

CVE-2020-1164