IIS Server
by Microsoft
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-0645 | 0.01 | — | 0.09 | Mar 12, 2020 | A tampering vulnerability exists when Microsoft IIS Server improperly handles malformed request headers, aka 'Microsoft IIS Server Tampering Vulnerability'. | |||
| CVE-2023-36434 | 0.00 | — | 0.02 | Oct 10, 2023 | Windows IIS Server Elevation of Privilege Vulnerability | |||
| CVE-2019-1365 | 0.00 | — | 0.02 | Oct 10, 2019 | An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability can allow an unprivileged function ran by the user to execute code in the… | |||
| CVE-2019-0941 | 0.00 | — | 0.03 | Jun 12, 2019 | A denial of service exists in Microsoft IIS Server when the optional request filtering feature improperly handles requests. An attacker who successfully exploited this vulnerability could perform a temporary denial of service against pages configured to use request filtering. To… |
- CVE-2020-0645Mar 12, 2020risk 0.01cvss —epss 0.09
A tampering vulnerability exists when Microsoft IIS Server improperly handles malformed request headers, aka 'Microsoft IIS Server Tampering Vulnerability'.
- CVE-2023-36434Oct 10, 2023risk 0.00cvss —epss 0.02
Windows IIS Server Elevation of Privilege Vulnerability
- CVE-2019-1365Oct 10, 2019risk 0.00cvss —epss 0.02
An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability can allow an unprivileged function ran by the user to execute code in the…
- CVE-2019-0941Jun 12, 2019risk 0.00cvss —epss 0.03
A denial of service exists in Microsoft IIS Server when the optional request filtering feature improperly handles requests. An attacker who successfully exploited this vulnerability could perform a temporary denial of service against pages configured to use request filtering. To…