2649 matches found
CVE-2020-1031
An information disclosure vulnerability exists in the way that the Windows Server DHCP service improperly discloses the contents of its memory.To exploit the vulnerability, an unauthenticated attacker could send a specially crafted packet to an affected DHCP server. An attacker who successfully exp...
CVE-2020-1083
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker wou...
CVE-2020-1112
An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.
CVE-2020-1133
An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.An attacker could exploit this vulnerability by running a specially cra...
CVE-2020-1531
An elevation of privilege vulnerability exists when the Windows Accounts Control improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The securit...
CVE-2020-16897
An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker wo...
CVE-2021-28327
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-28336
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-28346
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-28352
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-31184
Microsoft Windows Infrared Data Association (IrDA) Information Disclosure Vulnerability
CVE-2021-34512
Storage Spaces Controller Elevation of Privilege Vulnerability
CVE-2021-38639
Win32k Elevation of Privilege Vulnerability
CVE-2022-30155
Windows Kernel Denial of Service Vulnerability
CVE-2022-41053
Windows Kerberos Denial of Service Vulnerability
CVE-2022-41057
Windows HTTP.sys Elevation of Privilege Vulnerability
CVE-2022-41109
Windows Win32k Elevation of Privilege Vulnerability
CVE-2023-21760
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2023-21774
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-24942
Remote Procedure Call Runtime Denial of Service Vulnerability
CVE-2023-28224
Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
CVE-2023-28225
Windows NTLM Elevation of Privilege Vulnerability
CVE-2023-36909
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2018-8417
A security feature bypass vulnerability exists in Microsoft JScript that could allow an attacker to bypass Device Guard, aka "Microsoft JScript Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers.
CVE-2019-0600
An information disclosure vulnerability exists when the Human Interface Devices (HID) component improperly handles objects in memory, aka 'HID Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0601.
CVE-2019-0627
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0631, CVE-2019-0632.
CVE-2019-0631
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0632.
CVE-2019-0774
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0614.
CVE-2019-1333
A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'.
CVE-2020-1377
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system.A locally authenticated attacker could exploit this vulnerability by...
CVE-2020-1562
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.To exploit the vulnerability, a user would have to open a specially crafted f...
CVE-2020-17092
Windows Network Connections Service Elevation of Privilege Vulnerability
CVE-2021-1645
Windows Docker Information Disclosure Vulnerability
CVE-2021-1657
Windows Fax Compose Form Remote Code Execution Vulnerability
CVE-2021-34499
Windows DNS Server Denial of Service Vulnerability
CVE-2021-40460
Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
CVE-2021-41332
Windows Print Spooler Information Disclosure Vulnerability
CVE-2021-42275
Microsoft COM for Windows Remote Code Execution Vulnerability
CVE-2022-21960
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-44666
Windows Contacts Remote Code Execution Vulnerability
CVE-2023-23402
Windows Media Remote Code Execution Vulnerability
CVE-2023-24863
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-24870
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-28243
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
CVE-2023-35630
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
CVE-2017-0100
A DCOM object in Helppane.exe in Microsoft Windows 7 SP1; Windows Server 2008 R2; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows local users to gain privileges via a crafted application, aka "Windows HelpPane Elevation o...
CVE-2018-1040
A denial of service vulnerability exists in the way that the Windows Code Integrity Module performs hashing, aka "Windows Code Integrity Module Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Wi...
CVE-2018-8167
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka "Windows Common Log File System Driver Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server...
CVE-2019-1087
An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1086, CVE-2019-1088.
CVE-2019-1095
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1094, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.