Windows Group Policy
by Microsoft
CVEs (10)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-3223 | Hig | 0.57 | 8.1 | 0.21 | Jun 16, 2016 | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle LDAP authentication, which allows man-in-the-middle attackers to gain privileges by modifying… | ||
| CVE-2020-16939 | 0.02 | — | 0.02 | Oct 16, 2020 | An elevation of privilege vulnerability exists when Group Policy improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context. To exploit the vulnerability, an attacker would first have to log on to the… | |||
| CVE-2020-1317 | 0.01 | — | 0.04 | Jun 9, 2020 | An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'. | |||
| CVE-2024-20657 | 0.00 | — | 0.01 | Jan 9, 2024 | Windows Group Policy Elevation of Privilege Vulnerability | |||
| CVE-2023-36889 | 0.00 | — | 0.01 | Aug 8, 2023 | Windows Group Policy Security Feature Bypass Vulnerability | |||
| CVE-2023-29351 | 0.00 | — | 0.02 | Jun 13, 2023 | Windows Group Policy Elevation of Privilege Vulnerability | |||
| CVE-2023-28276 | 0.00 | — | 0.00 | Apr 11, 2023 | Windows Group Policy Security Feature Bypass Vulnerability | |||
| CVE-2022-37992 | 0.00 | — | 0.00 | Nov 9, 2022 | Windows Group Policy Elevation of Privilege Vulnerability | |||
| CVE-2022-41086 | 0.00 | — | 0.00 | Nov 9, 2022 | Windows Group Policy Elevation of Privilege Vulnerability | |||
| CVE-2022-30205 | 0.00 | — | 0.01 | Jul 12, 2022 | Windows Group Policy Elevation of Privilege Vulnerability |
- risk 0.57cvss 8.1epss 0.21
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle LDAP authentication, which allows man-in-the-middle attackers to gain privileges by modifying…
- CVE-2020-16939Oct 16, 2020risk 0.02cvss —epss 0.02
An elevation of privilege vulnerability exists when Group Policy improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context. To exploit the vulnerability, an attacker would first have to log on to the…
- CVE-2020-1317Jun 9, 2020risk 0.01cvss —epss 0.04
An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'.
- CVE-2024-20657Jan 9, 2024risk 0.00cvss —epss 0.01
Windows Group Policy Elevation of Privilege Vulnerability
- CVE-2023-36889Aug 8, 2023risk 0.00cvss —epss 0.01
Windows Group Policy Security Feature Bypass Vulnerability
- CVE-2023-29351Jun 13, 2023risk 0.00cvss —epss 0.02
Windows Group Policy Elevation of Privilege Vulnerability
- CVE-2023-28276Apr 11, 2023risk 0.00cvss —epss 0.00
Windows Group Policy Security Feature Bypass Vulnerability
- CVE-2022-37992Nov 9, 2022risk 0.00cvss —epss 0.00
Windows Group Policy Elevation of Privilege Vulnerability
- CVE-2022-41086Nov 9, 2022risk 0.00cvss —epss 0.00
Windows Group Policy Elevation of Privilege Vulnerability
- CVE-2022-30205Jul 12, 2022risk 0.00cvss —epss 0.01
Windows Group Policy Elevation of Privilege Vulnerability