3812 matches found
CVE-2024-38260
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
CVE-2024-43450
Windows DNS Spoofing Vulnerability
CVE-2024-43643
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
CVE-2024-49081
Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability
CVE-2025-21237
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21330
Windows Remote Desktop Services Denial of Service Vulnerability
CVE-2025-24050
Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.
CVE-2025-24996
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.
CVE-2025-26665
Sensitive data storage in improperly locked memory in Windows upnphost.dll allows an authorized attacker to elevate privileges locally.
CVE-2025-26686
Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVE-2025-27474
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
CVE-2025-27735
Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.
CVE-2025-27740
Weak authentication in Windows Active Directory Certificate Services allows an authorized attacker to elevate privileges over a network.
CVE-2019-0712
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1309, CVE-2019-1310, CVE-20...
CVE-2019-1277
An elevation of privilege vulnerability exists in Windows Audio Service when a malformed parameter is processed, aka 'Windows Audio Service Elevation of Privilege Vulnerability'.
CVE-2019-1309
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0712, CVE-2019-1310, CVE-20...
CVE-2019-1436
An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1440.
CVE-2020-0740
An elevation of privilege vulnerability exists in the way that the Connected Devices Platform Service handles objects in memory, aka 'Connected Devices Platform Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0741, CVE-2020-0742, CVE-2020-0743, CVE-2020-0749, CVE-...
CVE-2020-0861
An information disclosure vulnerability exists when the Windows Network Driver Interface Specification (NDIS) improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Network Driver Interface Specification (NDIS) Info...
CVE-2020-0870
An elevation of privilege vulnerability exists when the Shell infrastructure component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context.To exploit this vulnerability, an attacker would first have to log on to ...
CVE-2020-1267
This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request, aka 'Local Security Authority Subsystem Service Denial of Service Vulnerability'.
CVE-2020-1369
An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory, aka 'Windows WalletService Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1344, CVE-2020-1362.
CVE-2020-1389
An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1367, CVE-2020-1419, CVE-2020-1426.
CVE-2020-1418
An elevation of privilege vulnerability exists when the Windows Diagnostics Execution Service fails to properly sanitize input, leading to an unsecure library-loading behavior, aka 'Windows Diagnostics Hub Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1393.
CVE-2020-1559
An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. ...
CVE-2021-26866
Windows Update Service Elevation of Privilege Vulnerability
CVE-2021-26873
Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2021-26884
Windows Media Photo Codec Information Disclosure Vulnerability
CVE-2021-43219
DirectX Graphics Kernel File Denial of Service Vulnerability
CVE-2024-37971
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37972
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-37983
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
CVE-2024-38046
PowerShell Elevation of Privilege Vulnerability
CVE-2024-38052
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-38070
Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability
CVE-2024-38091
Microsoft WS-Discovery Denial of Service Vulnerability
CVE-2024-38237
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2024-43487
Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2024-43501
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2024-43575
Windows Hyper-V Denial of Service Vulnerability
CVE-2024-43615
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
CVE-2024-49119
Windows Remote Desktop Services Remote Code Execution Vulnerability
CVE-2025-21252
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21282
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21294
Microsoft Digest Authentication Remote Code Execution Vulnerability
CVE-2025-21296
BranchCache Remote Code Execution Vulnerability
CVE-2025-24044
Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.
CVE-2025-27477
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-27741
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
CVE-2020-0679
An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory, aka 'Windows Function Discovery Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0680, CVE-2020-0682.