CVE-2025-27736

Exposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally.

CVE-2018-8477

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Wind...

CVE-2019-1126

A security feature bypass vulnerability exists in Active Directory Federation Services (ADFS) which could allow an attacker to bypass the extranet lockout policy.To exploit this vulnerability, an attacker could run a specially crafted application, which would allow an attacker to launch a password ...

CVE-2020-0643

An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface Plus (GDI+) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka 'Windows GDI+ Information Disclosure Vulnerability'.

CVE-2020-0941

An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, an attacker would have to either l...

CVE-2022-30213

Windows GDI+ Information Disclosure Vulnerability

CVE-2024-30096

Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2020-0914

An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.An attacker could exploit this vulnerability by r...

CVE-2022-22002

Windows User Account Profile Picture Denial of Service Vulnerability

CVE-2025-21274

Windows Event Tracing Denial of Service Vulnerability

CVE-2019-0714

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

CVE-2019-0754

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.

CVE-2021-33763

Windows Remote Access Connection Manager Information Disclosure Vulnerability

CVE-2021-41343

Windows Fast FAT File System Driver Information Disclosure Vulnerability

CVE-2022-24484

Windows Cluster Shared Volume (CSV) Denial of Service Vulnerability

CVE-2022-41098

Windows GDI+ Information Disclosure Vulnerability

CVE-2023-29355

DHCP Server Service Information Disclosure Vulnerability

CVE-2024-30016

Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2020-16914

An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface Plus (GDI+) handles objects in memory, allowing an attacker to retrieve information from a targeted system. By itself, the information disclosure does not allow arbitrary code execution; however, it...

CVE-2020-17098

Windows GDI+ Information Disclosure Vulnerability

CVE-2021-38636

Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability

CVE-2023-21525

Remote Procedure Call Runtime Denial of Service Vulnerability

CVE-2018-8330

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Wind...

CVE-2019-0776

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.

CVE-2019-1039

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to f...

CVE-2023-32020

Windows DNS Spoofing Vulnerability

CVE-2023-36889

Windows Group Policy Security Feature Bypass Vulnerability

CVE-2024-38041

Windows Kernel Information Disclosure Vulnerability

CVE-2019-0553

An information disclosure vulnerability exists when Windows Subsystem for Linux improperly handles objects in memory, aka "Windows Subsystem for Linux Information Disclosure Vulnerability." This affects Windows 10 Servers, Windows 10, Windows Server 2019.

CVE-2021-36959

Windows Authenticode Spoofing Vulnerability

CVE-2022-21877

Storage Spaces Controller Information Disclosure Vulnerability

CVE-2023-21693

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2019-1337

An information disclosure vulnerability exists when Windows Update Client fails to properly handle objects in memory, aka 'Windows Update Client Information Disclosure Vulnerability'.

CVE-2021-36962

Windows Installer Information Disclosure Vulnerability

CVE-2022-35831

Windows Remote Access Connection Manager Information Disclosure Vulnerability

CVE-2025-47160

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.

CVE-2019-0718

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

CVE-2020-0677

An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The security update addre...

CVE-2021-31970

Windows TCP/IP Driver Security Feature Bypass Vulnerability

CVE-2021-38663

Windows exFAT File System Information Disclosure Vulnerability

CVE-2023-21753

Event Tracing for Windows Information Disclosure Vulnerability

CVE-2019-1318

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'.

CVE-2021-1656

TPM Device Driver Information Disclosure Vulnerability

CVE-2021-33782

Windows Authenticode Spoofing Vulnerability

CVE-2021-36972

Windows SMB Information Disclosure Vulnerability

CVE-2021-41361

Active Directory Federation Server Spoofing Vulnerability

CVE-2022-41074

Windows Graphics Component Information Disclosure Vulnerability

CVE-2025-24068

Buffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

CVE-2019-1078

An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.An authenticated attacker could exploit this vulnerabil...

CVE-2019-1469

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.