Lucene search

K
MicrosoftWindows Server 1803*

661 matches found

CVE
CVE
added 2020/02/11 10:15 p.m.100 views

CVE-2020-0735

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0666, CVE-2020-0667, CVE-2020-0752.

7.8CVSS8.1AI score0.00511EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.100 views

CVE-2020-0896

An elevation of privilege vulnerability exists when Windows improperly handles hard links, aka 'Windows Hard Link Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0840, CVE-2020-0841, CVE-2020-0849.

7.8CVSS7.5AI score0.00397EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.100 views

CVE-2020-0945

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0937, CVE-2020-0939, CVE-2020-0946, CVE-2020-0947.

5.5CVSS5.6AI score0.24868EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.100 views

CVE-2020-1207

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1247, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310.

7.8CVSS7AI score0.00798EPSS
CVE
CVE
added 2019/04/09 12:29 a.m.99 views

CVE-2019-0698

A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows DHCP Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0697, CVE-2019-0726.

9.8CVSS9.5AI score0.46058EPSS
CVE
CVE
added 2019/10/10 2:15 p.m.99 views

CVE-2019-1166

A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka 'Windows NTLM Tampering Vulnerability'.

5.9CVSS7AI score0.02573EPSS
CVE
CVE
added 2019/09/11 10:15 p.m.99 views

CVE-2019-1294

A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'.

4.6CVSS6.1AI score0.00936EPSS
CVE
CVE
added 2019/10/10 2:15 p.m.99 views

CVE-2019-1326

A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability'.

7.8CVSS8.1AI score0.11204EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.99 views

CVE-2019-1397

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1389, CVE-2019-1398.

8.4CVSS9.2AI score0.01157EPSS
CVE
CVE
added 2020/01/14 11:15 p.m.99 views

CVE-2020-0614

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628...

7.8CVSS7.7AI score0.00511EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.99 views

CVE-2020-0669

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0668, CVE-2020-0670, CVE-2020-0671, CVE-2020-0672.

7.8CVSS7.7AI score0.79504EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.99 views

CVE-2020-0671

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0668, CVE-2020-0669, CVE-2020-0670, CVE-2020-0672.

7.8CVSS7.5AI score0.79504EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.99 views

CVE-2020-0913

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1000, CVE-2020-1003, CVE-2020-1027.

7.8CVSS7.8AI score0.13396EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.99 views

CVE-2020-0985

An elevation of privilege vulnerability exists when the Windows Update Stack fails to properly handle objects in memory, aka 'Windows Update Stack Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0996.

7.8CVSS8AI score0.00397EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.99 views

CVE-2020-0994

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992,...

9.3CVSS8AI score0.33652EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.99 views

CVE-2020-1004

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00397EPSS
CVE
CVE
added 2019/09/11 10:15 p.m.98 views

CVE-2019-0928

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.

6.2CVSS6.6AI score0.0021EPSS
CVE
CVE
added 2019/07/15 7:15 p.m.98 views

CVE-2019-1074

An elevation of privilege vulnerability exists in Microsoft Windows where certain folders, with local service privilege, are vulnerable to symbolic link attack. An attacker who successfully exploited this vulnerability could potentially access unauthorized information. The update addresses this vul...

5.5CVSS6.1AI score0.00372EPSS
CVE
CVE
added 2019/09/11 10:15 p.m.98 views

CVE-2019-1248

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1243, CVE-2019-1246, CVE-2019-1247,...

9.3CVSS8.5AI score0.35463EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.98 views

CVE-2019-1456

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1419.

8.8CVSS9.3AI score0.23721EPSS
CVE
CVE
added 2020/01/14 11:15 p.m.98 views

CVE-2020-0641

An elevation of privilege vulnerability exists in Windows Media Service that allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00549EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.98 views

CVE-2020-0684

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

8.8CVSS8.2AI score0.33494EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.98 views

CVE-2020-0708

A remote code execution vulnerability exists when the Windows Imaging Library improperly handles memory.To exploit this vulnerability, an attacker would first have to coerce a victim to open a specially crafted file.The security update addresses the vulnerability by correcting how the Windows Imagi...

7.8CVSS8.3AI score0.20038EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.98 views

CVE-2020-0717

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0716.

5.5CVSS6AI score0.00978EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.98 views

CVE-2020-0840

An elevation of privilege vulnerability exists when Windows improperly handles hard links, aka 'Windows Hard Link Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0841, CVE-2020-0849, CVE-2020-0896.

7.8CVSS7.5AI score0.00397EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.98 views

CVE-2020-0965

A remoted code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'.

7.8CVSS8.2AI score0.01329EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.98 views

CVE-2020-1000

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1003, CVE-2020-1027.

7.8CVSS7.8AI score0.13396EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.98 views

CVE-2020-1208

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1236.

9.3CVSS8.4AI score0.33652EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.98 views

CVE-2020-1235

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1265, CVE-2020-1282, CVE-2020-1304, CVE-2020-1306, CVE-2020-133...

7.8CVSS7.7AI score0.12134EPSS
CVE
CVE
added 2019/07/15 7:15 p.m.97 views

CVE-2019-0811

A denial of service vulnerability exists in Windows DNS Server when it fails to properly handle DNS queries, aka 'Windows DNS Server Denial of Service Vulnerability'.

7.5CVSS7.1AI score0.0859EPSS
CVE
CVE
added 2019/07/29 2:11 p.m.97 views

CVE-2019-1121

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1122, CVE-2019-1123, CVE-2019-1124, CVE-2019-112...

9.3CVSS8.4AI score0.40075EPSS
CVE
CVE
added 2019/12/10 10:15 p.m.97 views

CVE-2019-1488

A security feature bypass vulnerability exists when Microsoft Defender improperly handles specific buffers, aka 'Microsoft Defender Security Feature Bypass Vulnerability'.

3.3CVSS5.7AI score0.0046EPSS
CVE
CVE
added 2020/01/14 11:15 p.m.97 views

CVE-2020-0613

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628...

7.8CVSS7.7AI score0.00511EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.97 views

CVE-2020-0704

An elevation of privilege vulnerability exists when the Windows Wireless Network Manager improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Wireless Network Manager Elevation of Privilege Vulnerability'.

7.8CVSS8.2AI score0.00463EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.97 views

CVE-2020-0858

An elevation of privilege vulnerability exists when the "Public Account Pictures" folder improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CV...

7.8CVSS8.7AI score0.00495EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.97 views

CVE-2020-0960

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0988, CVE-2020-0992, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.97 views

CVE-2020-0964

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

9.3CVSS8.8AI score0.29439EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.97 views

CVE-2020-0995

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992,...

9.3CVSS8AI score0.33652EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.97 views

CVE-2020-1160

An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka 'Microsoft Graphics Component Information Disclosure Vulnerability'.

5.5CVSS6.1AI score0.00661EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.97 views

CVE-2020-1162

An elevation of privilege (user to user) vulnerability exists in Windows Security Health Service when handling certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from...

7.8CVSS8AI score0.00681EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.97 views

CVE-2020-1282

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, CVE-2020-1265, CVE-2020-1304, CVE-2020-1306, CVE-2020-133...

7.8CVSS7.7AI score0.12134EPSS
CVE
CVE
added 2019/10/10 2:15 p.m.96 views

CVE-2019-1060

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'.

9.3CVSS9.3AI score0.22645EPSS
CVE
CVE
added 2019/07/15 7:15 p.m.96 views

CVE-2019-1097

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1093.

5.5CVSS5.8AI score0.0143EPSS
CVE
CVE
added 2019/10/10 2:15 p.m.96 views

CVE-2019-1321

An elevation of privilege vulnerability exists when Windows CloudStore improperly handles file Discretionary Access Control List (DACL), aka 'Microsoft Windows CloudStore Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00397EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.96 views

CVE-2019-1391

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2018-12207.

5.5CVSS7.2AI score0.00471EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.96 views

CVE-2020-0739

An elevation of privilege vulnerability exists in the way that the dssvc.dll handles file creation allowing for a file overwrite or creation in a secured location, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0737.

7.8CVSS8AI score0.00377EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.96 views

CVE-2020-0784

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0888.

7.8CVSS8.1AI score0.00372EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.96 views

CVE-2020-0803

An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory, aka 'Windows Network Connections Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0778, CVE-2020-0802, CVE-2020-0804, CVE-2020-0845.

7.8CVSS8.1AI score0.00549EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.96 views

CVE-2020-0988

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0992, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.96 views

CVE-2020-1253

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1247, CVE-2020-1251, CVE-2020-1310.

7.2CVSS7AI score0.00798EPSS
Total number of security vulnerabilities661