CVE-2022-21906

Windows Defender Application Control Security Feature Bypass Vulnerability

CVE-2022-22022

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-23298

Windows NT OS Kernel Elevation of Privilege Vulnerability

CVE-2022-26828

Windows Bluetooth Driver Elevation of Privilege Vulnerability

CVE-2022-33647

Windows Kerberos Elevation of Privilege Vulnerability

CVE-2023-21527

Windows iSCSI Service Denial of Service Vulnerability

CVE-2023-23420

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-24861

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2023-28222

Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-28238

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

CVE-2023-29351

Windows Group Policy Elevation of Privilege Vulnerability

CVE-2025-21245

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2019-0846

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0847, CVE-2019-0851, CVE-2019-0877, CVE-2019-0879.

CVE-2020-0738

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'.

CVE-2021-36933

Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability

CVE-2022-21883

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

CVE-2022-22001

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

CVE-2022-26814

Windows DNS Server Remote Code Execution Vulnerability

CVE-2022-29137

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2022-38046

Web Account Manager Information Disclosure Vulnerability

CVE-2022-41118

Windows Scripting Languages Remote Code Execution Vulnerability

CVE-2023-23385

Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Privilege Vulnerability

CVE-2023-23412

Windows Accounts Picture Elevation of Privilege Vulnerability

CVE-2023-28227

Windows Bluetooth Driver Remote Code Execution Vulnerability

CVE-2023-29359

GDI Elevation of Privilege Vulnerability

CVE-2023-32022

Windows Server Service Security Feature Bypass Vulnerability

CVE-2024-26220

Windows Mobile Hotspot Information Disclosure Vulnerability

CVE-2024-26240

Secure Boot Security Feature Bypass Vulnerability

CVE-2024-26241

Win32k Elevation of Privilege Vulnerability

CVE-2019-0795

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0792, CVE-2019-0793.

CVE-2019-0879

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0847, CVE-2019-0851, CVE-2019-0877.

CVE-2019-1273

A cross-site-scripting (XSS) vulnerability exists when Active Directory Federation Services (ADFS) does not properly sanitize certain error messages, aka 'Active Directory Federation Services XSS Vulnerability'.

CVE-2019-1282

An information disclosure exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle sandbox checks, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'.

CVE-2021-31193

Windows SSDP Service Elevation of Privilege Vulnerability

CVE-2021-36965

Windows WLAN AutoConfig Service Remote Code Execution Vulnerability

CVE-2022-21848

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

CVE-2022-21863

Windows StateRepository API Server file Elevation of Privilege Vulnerability

CVE-2022-21889

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

CVE-2022-24487

Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability

CVE-2022-26827

Windows File Server Resource Management Service Elevation of Privilege Vulnerability

CVE-2022-34727

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2023-36882

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

CVE-2024-26231

Windows DNS Server Remote Code Execution Vulnerability

CVE-2019-0688

An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles fragmented IP packets, aka 'Windows TCP/IP Information Disclosure Vulnerability'.

CVE-2019-0697

A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows DHCP Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0698, CVE-2019-0726.

CVE-2019-0732

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Security Feature Bypass Vulnerability'.

CVE-2019-0792

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0793, CVE-2019-0795.

CVE-2019-0848

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0814.

CVE-2021-36926

Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability

CVE-2022-21897

Windows Common Log File System Driver Elevation of Privilege Vulnerability