302 matches found
CVE-2021-26881
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-26901
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-28309
Windows Kernel Information Disclosure Vulnerability
CVE-2020-0856
<p>An information disclosure vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system.</p><p>To exploit this condition,...
CVE-2020-1038
<p>A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.</p><p>To exploit this vulnerability, an attacker would have to log on to an affec...
CVE-2020-1074
<p>A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.</p><p>An attacker could exploit this vulnerability by enticing a vict...
CVE-2020-1245
<p>An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data...
CVE-2020-16900
<p>An elevation of privilege vulnerability exists when the Windows Event System improperly handles objects in memory.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...
CVE-2020-17029
Windows Canonical Display Driver Information Disclosure Vulnerability
CVE-2021-26413
Windows Installer Spoofing Vulnerability
CVE-2021-26875
Windows Win32k Elevation of Privilege Vulnerability
CVE-2021-27077
Windows Win32k Elevation of Privilege Vulnerability
CVE-2021-28446
Windows Portmapping Information Disclosure Vulnerability
CVE-2020-0664
<p>An information disclosure vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system.</p><p>To exploit this condition,...
CVE-2020-1491
<p>An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.</p><p>To exploit the vulnerability, a locally authenticated atta...
CVE-2020-17056
Windows Network File System Information Disclosure Vulnerability
CVE-2021-24076
Microsoft Windows VMSwitch Information Disclosure Vulnerability
CVE-2021-28316
Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability
CVE-2020-0718
<p>A remote code execution vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account</p><p>To exploit the vulnerability, ...
CVE-2020-0921
Microsoft Graphics Component Denial of Service Vulnerability
CVE-2020-1256
<p>An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p><p>There are multiple ways an attacker coul...
CVE-2020-0790
<p>A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited the vulnerability could elevate privileges on an affected system from low-integrity to medium-integrity.</p><p>This vulnerability by itself does not allow arbitra...
CVE-2021-27093
Windows Kernel Information Disclosure Vulnerability
CVE-2021-28317
Microsoft Windows Codecs Library Information Disclosure Vulnerability
CVE-2020-1030
<p>An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install program...
CVE-2020-1052
<p>An elevation of privilege vulnerability exists in the way that the ssdpsrv.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.</p><p>To exploit the vulnerability, a locally authenticated attacker could run a specia...
CVE-2020-17024
Windows Client Side Rendering Print Provider Elevation of Privilege Vulnerability
CVE-2021-27091
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
CVE-2020-16980
<p>An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p><p>To exploit the vulnerability, an attacker would first need code execution on a ...
CVE-2021-26898
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2020-1097
<p>An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.</p><p>There are multiple ways an attacker could ...
CVE-2020-1589
<p>An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an attacker would have to ...
CVE-2021-24107
Windows Event Tracing Information Disclosure Vulnerability
CVE-2021-26896
Windows DNS Server Denial of Service Vulnerability
CVE-2020-0998
<p>An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>In a local attack scenario, an attacker could exploit this vulnerab...
CVE-2020-0875
<p>An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity).</p><p>This vulnerability by itself does not al...
CVE-2020-1250
<p>An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.</p><p>To exploit this vulnerability, an attacker would have ...
CVE-2021-26882
Remote Access API Elevation of Privilege Vulnerability
CVE-2020-0836
<p>A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries. An attacker who successfully exploited this vulnerability could cause the DNS service to become nonresponsive.</p><p>To exploit the vulnerability, an authenticated attacker could send malicious DNS ...
CVE-2020-1252
<p>A remote code execution vulnerability exists when Windows improperly handles objects in memory. To exploit the vulnerability an attacker would have to convince a user to run a specially crafted application.</p><p>An attacker who successfully exploited this vulnerability could execute arbitrary c...
CVE-2021-26862
Windows Installer Elevation of Privilege Vulnerability
CVE-2021-27063
Windows DNS Server Denial of Service Vulnerability
CVE-2020-1559
<p>An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p><p>To exploit the vulnerability, an attacker would first need code execution on a victi...
CVE-2021-26873
Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2021-26884
Windows Media Photo Codec Information Disclosure Vulnerability
CVE-2020-1228
<p>A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries. An attacker who successfully exploited this vulnerability could cause the DNS service to become nonresponsive.</p><p>To exploit the vulnerability, an authenticated attacker could send malicious DNS ...
CVE-2021-26878
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2021-26887
<p>An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has been enabled via Group Policy. When folder redirection file server is co-located with Terminal server, an attacker who successfully exploited the vulnerability would be able to begin redirecting anoth...
CVE-2021-26872
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-26869
Windows ActiveX Installer Service Information Disclosure Vulnerability