Lucene search
K
MicrosoftWindows Server 20h2

52 matches found

CVE
CVE
added 2020/08/17 7:13 p.m.4333 views

CVE-2020-1472

CVE-2020-1472 (Zerologon) is referenced in connected records as affecting Samba packages. Two advisories note affected versions and fixes: CVE-2020-1472 in Samba for versions < 4.18.3-1 (CBLMARINER:36991) and

10CVSS7.8AI score0.99512EPSS
In wildWeb
CVE
CVE
added 2021/07/02 9:25 p.m.2639 views

CVE-2021-34527

CVE-2021-34527, known as PrintNightmare, is a Windows Print Spooler remote code execution vulnerability. The flaw allows an authenticated attacker to execute arbitrary code with SYSTEM privileges by abusing privileged file operations in the Print Spooler, enabling installation of programs, data a...

9CVSS9AI score0.99759EPSS
In wild
CVE
CVE
added 2022/06/01 8:10 p.m.2201 views

CVE-2022-30190

Technical details beyond the MSDT/Follina description are not provided in the connected documents. Public specifics (affected versions, exploit paths, patches) are not available here; monitor for updates.

9.3CVSS8.5AI score0.99374EPSS
In wild
CVE
CVE
added 2021/08/12 6:12 p.m.2088 views

CVE-2021-36942

CVE-2021-36942 corresponds to Windows LSA Spoofing vulnerability (LSARPC) that can coerce a domain controller to authenticate to an attacker host via NTLM. In August 2021 Microsoft Patch Tuesday released fixes (KB5005413) and mitigations; multiple sources note patching as a priority. CISA’s KEV c...

7.5CVSS7.2AI score0.66023EPSS
In wildWeb
CVE
CVE
added 2021/11/10 12:47 a.m.1732 views

CVE-2021-42278

CVE-2021-42278 is an Active Directory Domain Services privilege-escalation vulnerability in Microsoft Windows. The connected documents describe exploits/frameworks (e.g., Pachine, sam-the-admin, noPac) that impersonate a Domain Administrator from a standard domain user using Kerberos delegation t...

7.5CVSS8.2AI score0.70207EPSS
In wild
CVE
CVE
added 2021/09/15 11:24 a.m.1560 views

CVE-2021-40444

CVE-2021-40444 is a Microsoft MSHTML remote-code-execution vulnerability exploited via specially crafted Word documents containing malicious ActiveX controls. Public details confirm an exploit chain: a Word doc opens, a relationship in document.xml.rels points to a malicious HTML, IE Preview load...

8.8CVSS7.3AI score0.96843EPSS
In wild
CVE
CVE
added 2021/05/11 7:11 p.m.1546 views

CVE-2021-31166

CVE-2021-31166 : A use-after-free in Microsoft’s HTTP Protocol Stack (http.sys) enables remote code execution. The issue occurs in http!UlpParseContentCoding: a local LIST_ENTRY is built and then moved into the Request structure without nulling the local list, leaving entries dangling and allowin...

9.8CVSS8.8AI score0.99657EPSS
In wildWeb
CVE
CVE
added 2021/02/25 11:1 p.m.1525 views

CVE-2021-1732

CVE-2021-1732 is a Windows Win32k local privilege escalation vulnerability. The root cause is a flaw in how the WndExtra field is handled as an offset, enabling an out-of-bounds write that grants SYSTEM privileges. Public exploit activity exists in multiple GitHub repos that demonstrate a local p...

7.8CVSS8AI score0.78376EPSS
In wild
CVE
CVE
added 2022/04/15 7:3 p.m.1488 views

CVE-2022-24521

CVE-2022-24521 is a Windows Windows Common Log File System Driver Privilege Escalation vulnerability. The CVE entry reports an elevation-of-privilege flaw in the CLFS driver; CVSS scores shown include a 2.0/2.0 base (MEDIUM) on NVD and a 3.1-based HIGH score from Microsoft, both indicating local ...

7.8CVSS8.9AI score0.07304EPSS
In wild
CVE
CVE
added 2021/10/13 12:26 a.m.1483 views

CVE-2021-40449

CVE-2021-40449 is a Win32k use-after-free local privilege escalation in GreResetDCInternal. The vulnerability arises when a user‑mode callback hook on the driver’s PDEV path (DrvEnablePDEV) can trigger a subsequent ResetDC call, freeing the original device context and causing a kernel‑mode use‑af...

7.8CVSS8AI score0.73381EPSS
In wild
CVE
CVE
added 2022/01/11 8:22 p.m.1361 views

CVE-2022-21882

CVE-2022-21882 is a Windows Win32k local privilege-escalation vulnerability. It arises when an incomplete patch for CVE-2021-1732 leaves a bypass path that lets attackers trigger the vulnerability via a manipulated user-callback flow in Win32k, enabling a full compromise of the affected process. ...

7.8CVSS7.8AI score0.55711EPSS
In wild
CVE
CVE
added 2022/02/09 4:36 p.m.1281 views

CVE-2022-21971

CVE-2022-21971 is a Windows Runtime Remote Code Execution vulnerability. The CVE entry references a Windows Runtime flaw with high severity, and connected sources corroborate that patches exist (MSRC/update guides and CISA-kev). Malwarebytes’ 2022 article notes Microsoft patches for CVE-2022-2197...

9.3CVSS8.3AI score0.53655EPSS
In wild
CVE
CVE
added 2022/02/09 4:37 p.m.1270 views

CVE-2022-22718

CVE-2022-22718 is a Windows Print Spooler elevation of privilege vulnerability. Connected sources confirm an exploit exists (e.g., SpoolFool PoC) and that it has been tracked in exploit catalogs; Microsoft/MSRC guidance and CISA KEV catalog list it among known issues. Affected component: Windows ...

7.8CVSS7.8AI score0.18464EPSS
In wild
CVE
CVE
added 2022/02/09 4:36 p.m.1236 views

CVE-2022-21999

Technical details about CVE-2022-21999 are not publicly provided in the supplied connected documents. Based on the materials, we cannot specify affected software, root cause, or remediation. Monitor for updates from official advisories and vendor disclosures.

7.8CVSS7.7AI score0.41683EPSS
In wild
CVE
CVE
added 2022/05/10 8:33 p.m.1225 views

CVE-2022-26925

CVE-2022-26925 is a Windows Local Security Authority (LSA) spoofing vulnerability. The issue allows an unauthenticated attacker to coerce a domain controller to authenticate to the attacker using NTLM by calling a method on the LSARPC interface, enabling potential credential exposure in an NTLM-r...

8.1CVSS7.5AI score0.10461EPSS
In wild
CVE
CVE
added 2021/06/08 10:46 p.m.1220 views

CVE-2021-31956

CVE-2021-31956 is a Windows NTFS local privilege-escalation vulnerability that Microsoft and security researchers have shown can be exploited via manipulation of the Windows kernel’s WNF/NTFS interaction and pool-heap exploitation techniques to obtain SYSTEM-level access. Public materials describ...

9.3CVSS8.5AI score0.20268EPSS
In wild
CVE
CVE
added 2021/11/10 12:46 a.m.1220 views

CVE-2021-41379

CVE-2021-41379 is a Windows Installer Elevation of Privilege vulnerability affecting Windows Installer across Windows 10/11 and Windows Server. Public details in connected sources describe the issue as a Windows Installer privilege-escalation flaw, with references to InstallerFileTakeOver as the ...

7.8CVSS7AI score0.20099EPSS
In wild
CVE
CVE
added 2021/08/12 6:11 p.m.1205 views

CVE-2021-34484

CVE-2021-34484 is a Windows User Profile Service local privilege escalation caused by a race condition in CreateDirectoryJunction() that allowed a logged-on user to influence profile handling and load a malicious DLL with SYSTEM privileges. The vulnerability was initially patched but later bypass...

7.8CVSS8.6AI score0.14393EPSS
In wild
CVE
CVE
added 2021/08/12 6:12 p.m.1198 views

CVE-2021-36948

Technical details are not publicly provided in the available documents. The CVE is described as Windows Update Medic Service EoP, with some sources noting exploitation in the wild, but there is no concrete root cause, affected versions, or fix details here.

7.8CVSS8.2AI score0.1991EPSS
In wild
CVE
CVE
added 2021/06/08 10:46 p.m.1190 views

CVE-2021-31201

CVE-2021-31201 is a Windows privilege-escalation vulnerability affecting the Enhanced Cryptographic Provider . The available documents confirm it enables local privilege escalation (local access required) and classify the impact as elevation of privileges; exact root-cause details are not provide...

7.8CVSS7.2AI score0.02617EPSS
In wild
CVE
CVE
added 2021/06/08 10:46 p.m.1186 views

CVE-2021-31199

CVE-2021-31199 is a Windows Elevation of Privilege vulnerability in the Microsoft Enhanced Cryptographic Provider. The CVE affects Windows components and is driven by local exploitation (local access required) with low privileges needed, and no user interaction, but yields high impact on confiden...

7.8CVSS7.2AI score0.02954EPSS
In wild
CVE
CVE
added 2021/07/14 5:53 p.m.1185 views

CVE-2021-31979

CVE-2021-31979 is a Windows kernel elevation-of-privilege vulnerability that affects multiple kernel components, with confirmed in-the-wild activity. Affected areas include NTOS kernel, Win32k, and ntfs.sys, indicating local privilege escalation via kernel-level flaws. Public documentation in the...

7.8CVSS8.3AI score0.02634EPSS
In wild
CVE
CVE
added 2021/06/08 10:46 p.m.1183 views

CVE-2021-31955

CVE-2021-31955 is a Windows kernel information-disclosure vulnerability in ntoskrnl.exe related to the SuperFetch feature. By sending a SystemSuperfetchInformation query via NtQuerySystemInformation, an attacker can obtain the kernel address of the current process’s EPROCESS, which also contains ...

5.5CVSS6.3AI score0.81107EPSS
In wild
CVE
CVE
added 2022/01/11 8:23 p.m.1174 views

CVE-2022-21919

CVE-2022-21919 is a Windows User Profile Service elevation-of-privilege bug. Connected docs describe the root cause as improper validation in profext.dll’s CreateDirectoryJunction, enabling a directory junction attack to escalate to SYSTEM by abusing UI/UX (Narrator/consent.exe) and UAC. Some sou...

7CVSS8.2AI score0.0295EPSS
In wild
CVE
CVE
added 2021/06/08 10:46 p.m.1164 views

CVE-2021-33739

This CVE (CVE-2021-33739) concerns the Microsoft Desktop Window Manager (DWM) Core Library in Windows. Affected component: dwmcore.dll within Windows 10/Server environments. Root cause: a use-after-free-style issue tied to a Tracker Binding Manager object in the DWM core, leading to an elevation ...

8.4CVSS7.8AI score0.06555EPSS
In wild
CVE
CVE
added 2021/07/14 5:53 p.m.1158 views

CVE-2021-33771

CVE-2021-33771 is a Windows Kernel Elevation of Privilege vulnerability affecting Windows kernels; multiple sources classify it as a local, low-complexity EoP with high impact. Several connected documents reference active exploitation in the wild or near-wild activity, including reports of target...

7.8CVSS8.3AI score0.06255EPSS
In wild
CVE
CVE
added 2021/04/13 7:32 p.m.1148 views

CVE-2021-28310

CVE-2021-28310 is a Win32k Elevation of Privilege vulnerability in Microsoft Windows. Project Zero’s 2021 review notes Win32k 0-day activity among in-the-wild exploits, with CVE-2021-28310 listed as one of the Windows 0-days targeted in 2021 (alongside other Win32k issues). The CVE entry is suppo...

7.8CVSS8.2AI score0.0833EPSS
In wild
CVE
CVE
added 2021/09/15 11:23 a.m.1139 views

CVE-2021-36955

CVE-2021-36955 is a Windows privilege-escalation flaw in the Common Log File System (CLFS) driver. The vulnerability stems from the CLFS driver (clfs.sys) and enables local privilege escalation to SYSTEM when exploited. Connected guidance and threat intel cite this CVE alongside Windows CLFS-rela...

7.8CVSS8AI score0.03229EPSS
In wild
CVE
CVE
added 2022/04/15 7:5 p.m.1119 views

CVE-2022-26904

CVE-2022-26904 is a Windows User Profile Service Elevation of Privilege vulnerability. The issue is a race-condition–driven LPE in the User Profile Service, with attacker-controlled code execution at SYSTEM granted by bypasses and PoCs described in public sources. A Metasploit module exists for t...

7CVSS8.2AI score0.09817EPSS
In wild
CVE
CVE
added 2022/07/12 10:37 p.m.1105 views

CVE-2022-22047

CVE-2022-22047 is a Windows CSRSS Elevation of Privilege vulnerability. The CSRSS component may allow a local attacker who can execute code on the target to gain SYSTEM privileges. Public exploitation has been reported; Microsoft’s July 2022 Patch Tuesday addressed this family of issues (CSRSS Eo...

7.8CVSS8.3AI score0.18765EPSS
In wild
CVE
CVE
added 2021/10/13 12:26 a.m.1094 views

CVE-2021-40450

CVE-2021-40450 is a Win32k elevation-of-privilege vulnerability (local, privilege escalation) in Windows. The CVE is described as a Win32k Privilege Escalation issue with high impact (confidentiality, integrity, availability) per CVSS 3.1/3.1 vector; attack is local and requires no user interacti...

7.8CVSS7.9AI score0.01968EPSS
In wild
CVE
CVE
added 2021/08/12 6:11 p.m.1091 views

CVE-2021-34486

CVE-2021-34486 is a Windows Event Tracing Elevation of Privilege vulnerability. The referenced data identify ETW as the affected component with a local attack vector and privilege escalation impact (CVE severity up to HIGH in CVSS‑3.1). Microsoft and related catalogs describe this as a Windows ET...

7.8CVSS7.6AI score0.07428EPSS
In wild
CVE
CVE
added 2022/08/09 7:55 p.m.1085 views

CVE-2022-34713

CVE-2022-34713 (DogWalk) is a remote code execution vulnerability in Microsoft Windows MSDT that is triggered when MSDT is invoked via the URL protocol from a calling application (e.g., Word). The CVSS 3.1 entry indicates a local attack vector with low attack complexity, no privileges required, b...

7.8CVSS8.9AI score0.6798EPSS
In wild
CVE
CVE
added 2021/10/13 12:28 a.m.1083 views

CVE-2021-41357

CVE-2021-41357 is a Windows Win32k privilege-escalation vulnerability (local, low complexity, no user interaction) with CVSS v3.1 base score 7.8 (high). Affected component is Win32k; root cause involves elevation of privileges on Windows systems. Public disclosures in the connected documents indi...

7.8CVSS7.5AI score0.01968EPSS
In wild
CVE
CVE
added 2021/12/15 2:15 p.m.256 views

CVE-2021-43226

CVE-2021-43226 pertains to the Windows Common Log File System (CLFS) Driver. The available documents identify a local privilege-escalation vulnerability in CLFS that could allow a privileged attacker on a Windows host to gain higher privileges. The CVE is listed in the KEV catalog as a Microsoft ...

7.8CVSS8.6AI score0.03072EPSS
In wild
CVE
CVE
added 2023/05/31 6:7 p.m.148 views

CVE-2022-35744

Technical details (affected product, root cause, impact, or fixes) are not provided in the supplied documents. Monitor for updates from official CVE sources; no specifics about exploitation, vectors, or mitigations are included here.

9.8CVSS9.6AI score0.01979EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.139 views

CVE-2022-35756

Technical details about CVE-2022-35756 (affected products, root cause, impact, fix) are not provided in the connected documents. Monitor for official disclosures and updates from Microsoft and CVE listings.

7.8CVSS8.6AI score0.11306EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.128 views

CVE-2022-35749

Technical details about CVE-2022-35749 are not provided in the supplied documents. Available references confirm the CVE title and severity, but no affected product/version or root cause are detailed here. Monitor for official disclosures and updates.

7.8CVSS8.6AI score0.00545EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.126 views

CVE-2022-35750

Technical details about CVE-2022-35750 (affected product/component, versions, root cause, exploitability) are not publicly available in the provided Connected Documents. Monitor for updates and new disclosures in authoritative sources.

7.8CVSS8.6AI score0.06478EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.126 views

CVE-2022-35755

Technical details about CVE-2022-35755 (affected software, root cause, impact, or patch specifics) are not provided in the connected documents; monitor official CVE/NVD updates for details.

7.3CVSS8.2AI score0.09795EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.124 views

CVE-2022-35748

Technical details about CVE-2022-35748 are not provided in the supplied documents; no specific affected product/version/fix is disclosed here. Monitor for updates as more information becomes public.

7.5CVSS8.4AI score0.47226EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.124 views

CVE-2022-35752

Technical details about CVE-2022-35752 are not publicly available in the provided connected documents. Monitor for updates.

8.1CVSS9AI score0.01226EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.123 views

CVE-2022-35754

Technical details (affected product, version, root cause, and remediation) are not publicly available in the provided documents. Monitor for updates.

6.7CVSS7.9AI score0.0041EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.119 views

CVE-2022-35743

CVE-2022-35743 is a Microsoft Windows MSDT Remote Code Execution vulnerability. Documents indicate an exploitation path that is Local with Low Attack Complexity and requires User Interaction, yielding high confidentiality, integrity, and availability impact. CVSS 3.1 base score 7.8 (HIGH). No exp...

7.8CVSS8.8AI score0.01453EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.117 views

CVE-2022-35745

Technical details about CVE-2022-35745 are not publicly provided in the supplied documents. Please monitor official advisories for updates on affected products, vectors, impacts, and remediation.

8.1CVSS9AI score0.01226EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.115 views

CVE-2022-35751

Technical details about CVE-2022-35751 are not publicly available in the provided documents. No information on affected products, root cause, impact, or fixes is provided here; monitor for updates.

7.8CVSS8.6AI score0.05461EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.108 views

CVE-2022-35758

Technical details about CVE-2022-35758 (affected product/component, root cause, impact, or remediation) are not publicly provided in the supplied connected documents. Monitor for updates from official sources.

5.5CVSS7AI score0.00497EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.106 views

CVE-2022-35753

Technical details (affected products/versions, impact, root cause, or fixes) for CVE-2022-35753 are not provided in the connected documents. Monitor official sources (MSRC/NVD) for concrete details and remediation guidance.

8.1CVSS9AI score0.01226EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.103 views

CVE-2022-35759

Technical details for CVE-2022-35759 (affected product, root cause, impact, and fix) are not provided in the connected documents. Monitor for updates.

6.5CVSS7.8AI score0.01695EPSS
CVE
CVE
added 2023/05/31 6:7 p.m.100 views

CVE-2022-35757

CVE-2022-35757 affects the Windows Cloud Files Mini Filter Driver and is rated HIGH with LOCAL attacker access, requiring LOW privileges and USER interaction to exploit. The issue is an elevation-of-privilege in the Mini Filter Driver, enabling a local attacker to gain higher privileges. Microsof...

7.3CVSS7.6AI score0.00776EPSS
Total number of security vulnerabilities52