2548 matches found
CVE-2021-38628
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2023-23410
Windows HTTP.sys Elevation of Privilege Vulnerability
CVE-2024-26200
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2025-21341
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2010-0806
Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, a...
CVE-2022-24540
Windows ALPC Elevation of Privilege Vulnerability
CVE-2022-33635
Windows GDI+ Remote Code Execution Vulnerability
CVE-2024-20661
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2024-20662
Windows Online Certificate Status Protocol (OCSP) Information Disclosure Vulnerability
CVE-2024-26228
Windows Cryptographic Services Security Feature Bypass Vulnerability
CVE-2024-49082
Windows File Explorer Information Disclosure Vulnerability
CVE-2022-34706
Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
CVE-2024-26210
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2019-1019
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request. An attacker who successfully exploited this vulnerability could access anothe...
CVE-2019-1291
A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1290.
CVE-2020-1537
An elevation of privilege vulnerability exists when the Windows Remote Access improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. An...
CVE-2021-34444
Windows DNS Server Denial of Service Vulnerability
CVE-2022-21922
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2022-41058
Windows Network Address Translation (NAT) Denial of Service Vulnerability
CVE-2018-8550
An elevation of privilege exists in Windows COM Aggregate Marshaler, aka "Windows COM Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Serve...
CVE-2022-22026
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
CVE-2022-30203
Windows Boot Manager Security Feature Bypass Vulnerability
CVE-2023-24910
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2012-0004
Unspecified vulnerability in DirectShow in DirectX in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted media file, related to Quartz.dll, ...
CVE-2013-0007
Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML XSLT Vulnerability."
CVE-2017-0267
Microsoft Server Message Block 1.0 (SMBv1) allows an information disclosure vulnerability in the way that Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 handles...
CVE-2018-1016
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Win...
CVE-2021-1658
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-40447
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-34708
Windows Kernel Information Disclosure Vulnerability
CVE-2022-38040
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2023-21750
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-21313
Windows TCP/IP Information Disclosure Vulnerability
CVE-2025-21327
Windows Digital Media Elevation of Privilege Vulnerability
CVE-2012-0013
Incomplete blacklist vulnerability in the Windows Packager configuration in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted ClickOnce app...
CVE-2021-33750
Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2022-30208
Windows Security Account Manager (SAM) Denial of Service Vulnerability
CVE-2022-33634
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
CVE-2022-37988
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-28253
Windows Kernel Information Disclosure Vulnerability
CVE-2013-3128
The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT, and .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5, allow remote attackers to execute arbitrary...
CVE-2019-0881
An elevation of privilege vulnerability exists when the Windows Kernel improperly handles key enumeration, aka 'Windows Kernel Elevation of Privilege Vulnerability'.
CVE-2022-22050
Windows Fax Service Elevation of Privilege Vulnerability
CVE-2022-26822
Windows DNS Server Remote Code Execution Vulnerability
CVE-2022-29127
BitLocker Security Feature Bypass Vulnerability
CVE-2023-21682
Windows Point-to-Point Protocol (PPP) Information Disclosure Vulnerability
CVE-2023-28251
Windows Driver Revocation List Security Feature Bypass Vulnerability
CVE-2023-28275
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-26208
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2010-0476
The SMB client in Microsoft Windows Server 2003 SP2, Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and reboot) via a crafted SMB transaction response ...