Windows 7
by Microsoft
CVEs (1,811)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-21997 | Hig | 0.46 | 7.1 | 0.01 | Feb 9, 2022 | Windows Print Spooler Elevation of Privilege Vulnerability | ||
| CVE-2022-21903 | Hig | 0.46 | 7.0 | 0.01 | Jan 11, 2022 | Windows GDI Elevation of Privilege Vulnerability | ||
| CVE-2022-21862 | Hig | 0.46 | 7.0 | 0.01 | Jan 11, 2022 | Windows Application Model Core API Elevation of Privilege Vulnerability | ||
| CVE-2022-21859 | Hig | 0.46 | 7.0 | 0.01 | Jan 11, 2022 | Windows Accounts Control Elevation of Privilege Vulnerability | ||
| CVE-2022-21834 | Hig | 0.46 | 7.0 | 0.01 | Jan 11, 2022 | Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability | ||
| CVE-2021-26442 | Hig | 0.46 | 7.0 | 0.01 | Oct 13, 2021 | Windows HTTP.sys Elevation of Privilege Vulnerability | ||
| CVE-2021-31201 | Med | 0.46 | 5.2 | 0.03 | KEV | Jun 8, 2021 | Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability | |
| CVE-2021-31199 | Med | 0.46 | 5.2 | 0.03 | KEV | Jun 8, 2021 | Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability | |
| CVE-2021-31182 | Hig | 0.46 | 7.1 | 0.01 | May 11, 2021 | Microsoft Bluetooth Driver Spoofing Vulnerability | ||
| CVE-2021-28446 | Hig | 0.46 | 7.1 | 0.01 | Apr 13, 2021 | Windows Portmapping Information Disclosure Vulnerability | ||
| CVE-2021-28440 | Hig | 0.46 | 7.0 | 0.01 | Apr 13, 2021 | Windows Installer Elevation of Privilege Vulnerability | ||
| CVE-2021-26873 | Hig | 0.46 | 7.0 | 0.01 | Mar 11, 2021 | Windows User Profile Service Elevation of Privilege Vulnerability | ||
| CVE-2021-26862 | Hig | 0.46 | 7.0 | 0.01 | Mar 11, 2021 | Windows Installer Elevation of Privilege Vulnerability | ||
| CVE-2021-1709 | Hig | 0.46 | 7.0 | 0.01 | Jan 12, 2021 | Windows Win32k Elevation of Privilege Vulnerability | ||
| CVE-2020-16900 | Hig | 0.46 | 7.0 | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows Event System improperly handles objects in memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted… | ||
| CVE-2020-1245 | Hig | 0.46 | 7.0 | 0.01 | Sep 11, 2020 | An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view,… | ||
| CVE-2020-0912 | Hig | 0.46 | 7.0 | 0.01 | Sep 11, 2020 | An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially… | ||
| CVE-2020-1477 | Hig | 0.46 | 7.0 | 0.03 | Aug 17, 2020 | A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are… | ||
| CVE-2020-1473 | Hig | 0.46 | 7.0 | 0.03 | Aug 17, 2020 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by… | ||
| CVE-2019-1178 | Hig | 0.46 | 7.0 | 0.01 | Aug 14, 2019 | An elevation of privilege vulnerability exists in the way that the ssdpsrv.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could… |
- risk 0.46cvss 7.1epss 0.01
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows GDI Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows Application Model Core API Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows Accounts Control Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows HTTP.sys Elevation of Privilege Vulnerability
- risk 0.46cvss 5.2epss 0.03
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
- risk 0.46cvss 5.2epss 0.03
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
- risk 0.46cvss 7.1epss 0.01
Microsoft Bluetooth Driver Spoofing Vulnerability
- risk 0.46cvss 7.1epss 0.01
Windows Portmapping Information Disclosure Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows Installer Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows User Profile Service Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows Installer Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows Win32k Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists when the Windows Event System improperly handles objects in memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted…
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view,…
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially…
- risk 0.46cvss 7.0epss 0.03
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are…
- risk 0.46cvss 7.0epss 0.03
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by…
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists in the way that the ssdpsrv.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could…
Page 47 of 91