CVE-2020-0615

An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0639.

CVE-2020-1009

An elevation of privilege vulnerability exists in the way that the Microsoft Store Install Service handles file operations in protected locations, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0934, CVE-2020-0983, CVE-2020-1011, CVE-2020-1015.

CVE-2020-1234

An elevation of privilege vulnerability exists when Windows Error Reporting improperly handles objects in memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.

CVE-2020-1251

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1247, CVE-2020-1253, CVE-2020-1310.

CVE-2020-1270

An elevation of privilege vulnerability exists in the way that the wlansvc.dll handles objects in memory, aka 'Windows WLAN Service Elevation of Privilege Vulnerability'.

CVE-2021-36969

Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability

CVE-2021-41370

NTFS Elevation of Privilege Vulnerability

CVE-2022-21876

Win32k Information Disclosure Vulnerability

CVE-2022-30198

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-35834

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35837

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-35841

Windows Enterprise App Management Service Remote Code Execution Vulnerability

CVE-2022-37995

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-44667

Windows Media Remote Code Execution Vulnerability

CVE-2023-21699

Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability

CVE-2023-21700

Windows iSCSI Discovery Service Denial of Service Vulnerability

CVE-2023-32054

Volume Shadow Copy Elevation of Privilege Vulnerability

CVE-2023-35383

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2023-36003

XAML Diagnostics Elevation of Privilege Vulnerability

CVE-2023-36907

Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2023-36908

Windows Hyper-V Information Disclosure Vulnerability

CVE-2024-30032

Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2024-38121

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-38138

Windows Deployment Services Remote Code Execution Vulnerability

CVE-2024-38180

Windows SmartScreen Security Feature Bypass Vulnerability

CVE-2024-38223

Windows Initial Machine Configuration Elevation of Privilege Vulnerability

CVE-2025-21318

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2017-0014

The Windows Graphics Component in Microsoft Office 2010 SP2; Windows Server 2008 R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, ak...

CVE-2017-0162

A remote code execution vulnerability exists when Windows Hyper-V Network Switch running on a Windows 10, Windows 8.1, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Remote Code Executi...

CVE-2018-8134

An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions, aka "Windows Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers.

CVE-2019-0893

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0894, CVE-2019-0895, CVE-2019-0896,...

CVE-2019-1359

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1358.

CVE-2019-1466

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1465, CVE-2019-1467.

CVE-2020-0791

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0898.

CVE-2020-0916

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, aka 'Windows GDI Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0915.

CVE-2020-1211

An elevation of privilege vulnerability exists in the way that the Connected Devices Platform Service handles objects in memory, aka 'Connected Devices Platform Service Elevation of Privilege Vulnerability'.

CVE-2021-40470

DirectX Graphics Kernel Elevation of Privilege Vulnerability

CVE-2022-21834

Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability

CVE-2022-21904

Windows GDI Information Disclosure Vulnerability

CVE-2022-29125

Windows Push Notifications Apps Elevation of Privilege Vulnerability

CVE-2022-35830

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2022-41090

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

CVE-2024-30071

Windows Remote Access Connection Manager Information Disclosure Vulnerability

CVE-2024-30087

Win32k Elevation of Privilege Vulnerability

CVE-2024-38134

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

CVE-2025-21208

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2017-0166

An elevation of privilege vulnerability exists in Windows when LDAP request buffer lengths are improperly calculated. In a remote attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to send malicious traffic to a Domain Controller, aka "LDAP Elev...

CVE-2017-8676

The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, 1607, 1703, and Server 2016; Office 2007 SP3; Office 2010 SP2; Word Viewer; Office for Mac 2011 and 2016; ...

CVE-2019-0707

An elevation of privilege vulnerability exists in the Network Driver Interface Specification (NDIS) when ndis.sys fails to check the length of a buffer prior to copying memory to it.To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to el...

CVE-2019-0758

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0882, CVE-2019-0961.