70 matches found
CVE-2020-1599
Windows Spoofing Vulnerability
CVE-2021-24084
Windows Mobile Device Management Information Disclosure Vulnerability
CVE-2021-31191
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
CVE-2020-1383
An information disclosure vulnerability exists in RPC if the server has Routing and Remote Access enabled. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s systemTo exploit this vulnerability, an attacker would need to run a special...
CVE-2020-16922
<p>A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.</p><p>In an attack scenario, an attacker could bypass security features intended to preve...
CVE-2021-28479
Windows CSC Service Information Disclosure Vulnerability
CVE-2020-1083
<p>An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an at...
CVE-2020-16897
<p>An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an a...
CVE-2021-1645
Windows Docker Information Disclosure Vulnerability
CVE-2021-31184
Microsoft Windows Infrared Data Association (IrDA) Information Disclosure Vulnerability
CVE-2020-1596
<p>A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel.</p><p>To exploit the vulnerability, an attacker would hav...
CVE-2020-0941
<p>An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit the vulnerability, an attacker would have t...
CVE-2020-0914
<p>An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.</p><p>An attacker could exploit this vulnerab...
CVE-2020-16914
<p>An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface Plus (GDI+) handles objects in memory, allowing an attacker to retrieve information from a targeted system. By itself, the information disclosure does not allow arbitrary code execution; however,...
CVE-2020-17098
Windows GDI+ Information Disclosure Vulnerability
CVE-2020-16919
<p>An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files.</p><p>An attacker with unprivileged access to a vulnerable system co...
CVE-2021-1656
TPM Device Driver Information Disclosure Vulnerability
CVE-2020-16889
<p>An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an attacker would ha...
CVE-2021-1637
Windows DNS Query Information Disclosure Vulnerability
CVE-2020-16901
<p>An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.</p><p>To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain inform...
CVE-2020-16921
<p>An information disclosure vulnerability exists in Text Services Framework when it fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could potentially read data that was not intended to be disclosed. Note that this vulnerability would not allow ...
CVE-2021-1676
Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability
CVE-2021-33760
Media Foundation Information Disclosure Vulnerability
CVE-2021-1699
Windows (modem.sys) Information Disclosure Vulnerability
CVE-2020-1485
An information disclosure vulnerability exists when the Windows Image Acquisition (WIA) Service improperly discloses contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, an aut...
CVE-2021-28318
Windows GDI+ Information Disclosure Vulnerability
CVE-2021-1696
Windows Graphics Component Information Disclosure Vulnerability
CVE-2021-24079
Windows Backup Engine Information Disclosure Vulnerability
CVE-2021-28437
Windows Installer Information Disclosure Vulnerability
CVE-2020-17036
Windows Function Discovery SSDP Provider Information Disclosure Vulnerability
CVE-2021-1731
PFX Encryption Security Feature Bypass Vulnerability
CVE-2020-17069
Windows NDIS Information Disclosure Vulnerability
CVE-2021-28443
Windows Console Driver Denial of Service Vulnerability
CVE-2021-1683
Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG.To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the rem...
CVE-2021-1672
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
CVE-2021-1708
Windows GDI+ Information Disclosure Vulnerability
CVE-2020-17004
Windows Graphics Component Information Disclosure Vulnerability
CVE-2020-17045
Windows KernelStream Information Disclosure Vulnerability
CVE-2021-28438
Windows Console Driver Denial of Service Vulnerability
CVE-2020-17046
Windows Error Reporting Denial of Service Vulnerability
CVE-2020-17094
Windows Error Reporting Information Disclosure Vulnerability
CVE-2021-28309
Windows Kernel Information Disclosure Vulnerability
CVE-2020-1038
<p>A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.</p><p>To exploit this vulnerability, an attacker would have to log on to an affec...
CVE-2020-17029
Windows Canonical Display Driver Information Disclosure Vulnerability
CVE-2020-0928
<p>An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an attacker would have to ...
CVE-2020-17030
Windows MSCTF Server Information Disclosure Vulnerability
CVE-2020-17056
Windows Network File System Information Disclosure Vulnerability
CVE-2021-24076
Microsoft Windows VMSwitch Information Disclosure Vulnerability
CVE-2020-0837
<p>An elevation of privilege vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests. An attacker who successfully exploited this vulnerability could bypass some, but not all, of the authentication factors.</p><p>To exploit this ...
CVE-2020-0921
Microsoft Graphics Component Denial of Service Vulnerability