Powershell
by Microsoft
CVEs (58)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-24895 | 0.00 | — | 0.01 | Jun 14, 2023 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | |||
| CVE-2023-24897 | 0.00 | — | 0.01 | Jun 14, 2023 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | |||
| CVE-2023-33128 | 0.00 | — | 0.01 | Jun 13, 2023 | .NET and Visual Studio Remote Code Execution Vulnerability | |||
| CVE-2023-33126 | 0.00 | — | 0.01 | Jun 13, 2023 | .NET and Visual Studio Remote Code Execution Vulnerability | |||
| CVE-2023-32032 | 0.00 | — | 0.01 | Jun 13, 2023 | .NET and Visual Studio Elevation of Privilege Vulnerability | |||
| CVE-2023-28260 | 0.00 | — | 0.02 | Apr 11, 2023 | .NET DLL Hijacking Remote Code Execution Vulnerability | |||
| CVE-2023-21808 | 0.00 | — | 0.01 | Feb 14, 2023 | .NET and Visual Studio Remote Code Execution Vulnerability | |||
| CVE-2023-21538 | 0.00 | — | 0.03 | Jan 10, 2023 | .NET Denial of Service Vulnerability | |||
| CVE-2022-41089 | 0.00 | — | 0.01 | Dec 13, 2022 | .NET Framework Remote Code Execution Vulnerability | |||
| CVE-2022-34716 | 0.00 | — | 0.02 | Aug 9, 2022 | .NET Spoofing Vulnerability | |||
| CVE-2022-32973 | 0.00 | — | 0.01 | Jun 21, 2022 | An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges. | |||
| CVE-2022-26788 | 0.00 | — | 0.01 | Apr 15, 2022 | PowerShell Elevation of Privilege Vulnerability | |||
| CVE-2020-1108 | 0.00 | — | 0.12 | May 21, 2020 | A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'. | |||
| CVE-2019-1167 | 0.00 | — | 0.01 | Jul 19, 2019 | A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Security Feature Bypass Vulnerability'. | |||
| CVE-2019-0631 | 0.00 | — | 0.01 | Mar 6, 2019 | A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0632. | |||
| CVE-2019-0632 | 0.00 | — | 0.01 | Mar 6, 2019 | A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0631. | |||
| CVE-2019-0627 | 0.00 | — | 0.01 | Mar 6, 2019 | A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0631, CVE-2019-0632. | |||
| CVE-2018-8415 | 0.00 | — | 0.01 | Nov 14, 2018 | A tampering vulnerability exists in PowerShell that could allow an attacker to execute unlogged code, aka "Microsoft PowerShell Tampering Vulnerability." This affects Windows 7, PowerShell Core 6.1, Windows Server 2012 R2, Windows RT 8.1, PowerShell Core 6.0, Windows Server… |
- CVE-2023-24895Jun 14, 2023risk 0.00cvss —epss 0.01
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
- CVE-2023-24897Jun 14, 2023risk 0.00cvss —epss 0.01
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
- CVE-2023-33128Jun 13, 2023risk 0.00cvss —epss 0.01
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2023-33126Jun 13, 2023risk 0.00cvss —epss 0.01
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2023-32032Jun 13, 2023risk 0.00cvss —epss 0.01
.NET and Visual Studio Elevation of Privilege Vulnerability
- CVE-2023-28260Apr 11, 2023risk 0.00cvss —epss 0.02
.NET DLL Hijacking Remote Code Execution Vulnerability
- CVE-2023-21808Feb 14, 2023risk 0.00cvss —epss 0.01
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2023-21538Jan 10, 2023risk 0.00cvss —epss 0.03
.NET Denial of Service Vulnerability
- CVE-2022-41089Dec 13, 2022risk 0.00cvss —epss 0.01
.NET Framework Remote Code Execution Vulnerability
- CVE-2022-34716Aug 9, 2022risk 0.00cvss —epss 0.02
.NET Spoofing Vulnerability
- CVE-2022-32973Jun 21, 2022risk 0.00cvss —epss 0.01
An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges.
- CVE-2022-26788Apr 15, 2022risk 0.00cvss —epss 0.01
PowerShell Elevation of Privilege Vulnerability
- CVE-2020-1108May 21, 2020risk 0.00cvss —epss 0.12
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
- CVE-2019-1167Jul 19, 2019risk 0.00cvss —epss 0.01
A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement, aka 'Windows Defender Application Control Security Feature Bypass Vulnerability'.
- CVE-2019-0631Mar 6, 2019risk 0.00cvss —epss 0.01
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0632.
- CVE-2019-0632Mar 6, 2019risk 0.00cvss —epss 0.01
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0631.
- CVE-2019-0627Mar 6, 2019risk 0.00cvss —epss 0.01
A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0631, CVE-2019-0632.
- CVE-2018-8415Nov 14, 2018risk 0.00cvss —epss 0.01
A tampering vulnerability exists in PowerShell that could allow an attacker to execute unlogged code, aka "Microsoft PowerShell Tampering Vulnerability." This affects Windows 7, PowerShell Core 6.1, Windows Server 2012 R2, Windows RT 8.1, PowerShell Core 6.0, Windows Server…
Page 3 of 3