Defender
by Microsoft
CVEs (40)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-24860 | 0.00 | — | 0.03 | Apr 11, 2023 | Microsoft Defender Denial of Service Vulnerability | |||
| CVE-2023-23389 | 0.00 | — | 0.00 | Mar 14, 2023 | Microsoft Defender Elevation of Privilege Vulnerability | |||
| CVE-2023-23379 | 0.00 | — | 0.00 | Feb 14, 2023 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | |||
| CVE-2022-24548 | 0.00 | — | 0.03 | Apr 15, 2022 | Microsoft Defender Denial of Service Vulnerability | |||
| CVE-2022-23266 | 0.00 | — | 0.01 | Mar 9, 2022 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | |||
| CVE-2022-23265 | 0.00 | — | 0.03 | Mar 9, 2022 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-43889 | 0.00 | — | 0.02 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-43882 | 0.00 | — | 0.02 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-42315 | 0.00 | — | 0.02 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-42314 | 0.00 | — | 0.02 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-42313 | 0.00 | — | 0.04 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-42312 | 0.00 | — | 0.01 | Dec 15, 2021 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | |||
| CVE-2021-42310 | 0.00 | — | 0.02 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-42311 | 0.00 | — | 0.04 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-41365 | 0.00 | — | 0.03 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | |||
| CVE-2021-34522 | 0.00 | — | 0.03 | Jul 14, 2021 | Microsoft Defender Remote Code Execution Vulnerability | |||
| CVE-2020-1461 | 0.00 | — | 0.01 | Jul 14, 2020 | An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'. | |||
| CVE-2020-1002 | 0.00 | — | 0.01 | Apr 15, 2020 | An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'. | |||
| CVE-2019-1488 | 0.00 | — | 0.01 | Dec 10, 2019 | A security feature bypass vulnerability exists when Microsoft Defender improperly handles specific buffers, aka 'Microsoft Defender Security Feature Bypass Vulnerability'. | |||
| CVE-2019-1161 | 0.00 | — | 0.01 | Aug 14, 2019 | An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could… |
- CVE-2023-24860Apr 11, 2023risk 0.00cvss —epss 0.03
Microsoft Defender Denial of Service Vulnerability
- CVE-2023-23389Mar 14, 2023risk 0.00cvss —epss 0.00
Microsoft Defender Elevation of Privilege Vulnerability
- CVE-2023-23379Feb 14, 2023risk 0.00cvss —epss 0.00
Microsoft Defender for IoT Elevation of Privilege Vulnerability
- CVE-2022-24548Apr 15, 2022risk 0.00cvss —epss 0.03
Microsoft Defender Denial of Service Vulnerability
- CVE-2022-23266Mar 9, 2022risk 0.00cvss —epss 0.01
Microsoft Defender for IoT Elevation of Privilege Vulnerability
- CVE-2022-23265Mar 9, 2022risk 0.00cvss —epss 0.03
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-43889Dec 15, 2021risk 0.00cvss —epss 0.02
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-43882Dec 15, 2021risk 0.00cvss —epss 0.02
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-42315Dec 15, 2021risk 0.00cvss —epss 0.02
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-42314Dec 15, 2021risk 0.00cvss —epss 0.02
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-42313Dec 15, 2021risk 0.00cvss —epss 0.04
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-42312Dec 15, 2021risk 0.00cvss —epss 0.01
Microsoft Defender for IoT Elevation of Privilege Vulnerability
- CVE-2021-42310Dec 15, 2021risk 0.00cvss —epss 0.02
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-42311Dec 15, 2021risk 0.00cvss —epss 0.04
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-41365Dec 15, 2021risk 0.00cvss —epss 0.03
Microsoft Defender for IoT Remote Code Execution Vulnerability
- CVE-2021-34522Jul 14, 2021risk 0.00cvss —epss 0.03
Microsoft Defender Remote Code Execution Vulnerability
- CVE-2020-1461Jul 14, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'.
- CVE-2020-1002Apr 15, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'.
- CVE-2019-1488Dec 10, 2019risk 0.00cvss —epss 0.01
A security feature bypass vulnerability exists when Microsoft Defender improperly handles specific buffers, aka 'Microsoft Defender Security Feature Bypass Vulnerability'.
- CVE-2019-1161Aug 14, 2019risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could…
Page 2 of 2