Defender Antimalware Platform
by Microsoft
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-33825 | Hig | 0.63 | 7.8 | 0.07 | KEV | Apr 14, 2026 | Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges locally. | |
| CVE-2026-45498 | Med | 0.38 | 4.0 | 0.63 | KEV | May 20, 2026 | Microsoft Defender Denial of Service Vulnerability | |
| CVE-2024-20671 | 0.00 | — | 0.01 | Mar 12, 2024 | Microsoft Defender Security Feature Bypass Vulnerability | |||
| CVE-2023-36422 | 0.00 | — | 0.01 | Nov 14, 2023 | Microsoft Windows Defender Elevation of Privilege Vulnerability | |||
| CVE-2023-38175 | 0.00 | — | 0.01 | Aug 8, 2023 | Microsoft Windows Defender Elevation of Privilege Vulnerability | |||
| CVE-2020-0835 | 0.00 | — | 0.01 | Apr 15, 2020 | An elevation of privilege vulnerability exists when Windows Defender antimalware platform improperly handles hard links, aka 'Windows Defender Antimalware Platform Hard Link Elevation of Privilege Vulnerability'. |
- risk 0.63cvss 7.8epss 0.07
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges locally.
- risk 0.38cvss 4.0epss 0.63
Microsoft Defender Denial of Service Vulnerability
- CVE-2024-20671Mar 12, 2024risk 0.00cvss —epss 0.01
Microsoft Defender Security Feature Bypass Vulnerability
- CVE-2023-36422Nov 14, 2023risk 0.00cvss —epss 0.01
Microsoft Windows Defender Elevation of Privilege Vulnerability
- CVE-2023-38175Aug 8, 2023risk 0.00cvss —epss 0.01
Microsoft Windows Defender Elevation of Privilege Vulnerability
- CVE-2020-0835Apr 15, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when Windows Defender antimalware platform improperly handles hard links, aka 'Windows Defender Antimalware Platform Hard Link Elevation of Privilege Vulnerability'.