1009 matches found
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2013-3900
Why is Microsoft republishing a CVE from 2013?We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the format i...
CVE-2023-50387
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG ...
CVE-2023-21554
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2023-28252
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-24880
Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2023-21823
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2022-38023
Netlogon RPC Elevation of Privilege Vulnerability
CVE-2023-21768
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2023-23376
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-36803
Windows Kernel Information Disclosure Vulnerability
CVE-2023-36434
Windows IIS Server Elevation of Privilege Vulnerability
CVE-2023-38147
Windows Miracast Wireless Display Remote Code Execution Vulnerability
CVE-2023-24932
Secure Boot Security Feature Bypass Vulnerability
CVE-2022-26809
Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2022-29130
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
CVE-2022-30209
Windows IIS Server Elevation of Privilege Vulnerability
CVE-2023-23415
Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability
CVE-2023-32049
Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2022-37967
Windows Kerberos Elevation of Privilege Vulnerability
CVE-2023-38162
DHCP Server Service Denial of Service Vulnerability
CVE-2023-32046
Windows MSHTML Platform Elevation of Privilege Vulnerability
CVE-2023-23392
HTTP Protocol Stack Remote Code Execution Vulnerability
CVE-2023-36801
DHCP Server Service Information Disclosure Vulnerability
CVE-2023-28229
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
CVE-2023-38161
Windows GDI Elevation of Privilege Vulnerability
CVE-2022-24508
Win32 File Enumeration Remote Code Execution Vulnerability
CVE-2024-38202
SummaryMicrosoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attack...
CVE-2023-36804
Windows GDI Elevation of Privilege Vulnerability
CVE-2023-38152
DHCP Server Service Information Disclosure Vulnerability
CVE-2023-35349
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2023-38171
Microsoft QUIC Denial of Service Vulnerability
CVE-2022-37966
Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability
CVE-2023-36577
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-36435
Microsoft QUIC Denial of Service Vulnerability
CVE-2023-38159
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2023-36722
Active Directory Domain Services Information Disclosure Vulnerability
CVE-2023-36702
Microsoft DirectMusic Remote Code Execution Vulnerability
CVE-2023-36589
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2023-36602
Windows TCP/IP Denial of Service Vulnerability
CVE-2023-36711
Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
CVE-2023-36567
Windows Deployment Services Information Disclosure Vulnerability
CVE-2023-41767
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-36436
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2023-36596
Remote Procedure Call Information Disclosure Vulnerability
CVE-2023-36571
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2023-36718
Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability
CVE-2023-36570
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2023-36574
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2023-36723
Windows Container Manager Service Elevation of Privilege Vulnerability