Windows Kernel
by Microsoft
CVEs (304)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-36403 | Hig | 0.46 | 7.0 | 0.01 | Nov 14, 2023 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2023-35361 | Hig | 0.46 | 7.0 | 0.00 | Jul 11, 2023 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2023-35360 | Hig | 0.46 | 7.0 | 0.00 | Jul 11, 2023 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2023-28222 | Hig | 0.46 | 7.1 | 0.01 | Apr 11, 2023 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2023-21750 | Hig | 0.46 | 7.1 | 0.01 | Jan 10, 2023 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2022-29142 | Hig | 0.46 | 7.0 | 0.05 | May 10, 2022 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2021-1682 | Hig | 0.46 | 7.0 | 0.01 | Jan 12, 2021 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2019-1041 | Hig | 0.46 | 7.0 | 0.01 | Jun 12, 2019 | An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete… | ||
| CVE-2019-0656 | Hig | 0.46 | 7.0 | 0.01 | Mar 5, 2019 | An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. | ||
| CVE-2018-8224 | Hig | 0.46 | 7.0 | 0.01 | Jun 14, 2018 | An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. | ||
| CVE-2018-0842 | Hig | 0.46 | 7.0 | 0.01 | Feb 15, 2018 | Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow an elevation of privilege vulnerability due to how objects in memory are… | ||
| CVE-2026-42984 | Hig | 0.45 | 7.0 | 0.00 | Jun 9, 2026 | Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2020-1034 | Med | 0.45 | 6.8 | 0.04 | Sep 11, 2020 | An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated… | ||
| CVE-2017-0244 | Med | 0.44 | 6.7 | 0.02 | May 12, 2017 | The kernel in Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows locally authenticated attackers to gain privileges via a crafted application, or in Windows 7 for x64-based systems, cause denial of service, aka "Windows Kernel Elevation of Privilege Vulnerability." | ||
| CVE-2016-3372 | Med | 0.43 | 6.6 | 0.02 | Sep 14, 2016 | The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevation… | ||
| CVE-2022-44707 | Med | 0.42 | 6.5 | 0.03 | Dec 13, 2022 | Windows Kernel Denial of Service Vulnerability | ||
| CVE-2021-43244 | Med | 0.42 | 6.5 | 0.01 | Dec 15, 2021 | Windows Kernel Information Disclosure Vulnerability | ||
| CVE-2021-34500 | Med | 0.41 | 6.3 | 0.02 | Jul 14, 2021 | Windows Kernel Memory Information Disclosure Vulnerability | ||
| CVE-2019-1345 | Med | 0.39 | 5.5 | 0.03 | Oct 10, 2019 | An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1334. | ||
| CVE-2018-0975 | Med | 0.39 | 5.5 | 0.03 | Apr 12, 2018 | An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows… |
- risk 0.46cvss 7.0epss 0.01
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.00
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.00
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.46cvss 7.1epss 0.01
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.46cvss 7.1epss 0.01
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.05
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete…
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'.
- risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2.
- risk 0.46cvss 7.0epss 0.01
Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow an elevation of privilege vulnerability due to how objects in memory are…
- risk 0.45cvss 7.0epss 0.00
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.45cvss 6.8epss 0.04
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated…
- risk 0.44cvss 6.7epss 0.02
The kernel in Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows locally authenticated attackers to gain privileges via a crafted application, or in Windows 7 for x64-based systems, cause denial of service, aka "Windows Kernel Elevation of Privilege Vulnerability."
- risk 0.43cvss 6.6epss 0.02
The kernel API in Microsoft Windows Vista SP2 and Windows Server 2008 SP2 does not properly enforce permissions, which allows local users to spoof processes, spoof inter-process communication, or cause a denial of service via a crafted application, aka "Windows Kernel Elevation…
- risk 0.42cvss 6.5epss 0.03
Windows Kernel Denial of Service Vulnerability
- risk 0.42cvss 6.5epss 0.01
Windows Kernel Information Disclosure Vulnerability
- risk 0.41cvss 6.3epss 0.02
Windows Kernel Memory Information Disclosure Vulnerability
- risk 0.39cvss 5.5epss 0.03
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1334.
- risk 0.39cvss 5.5epss 0.03
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows…
Page 7 of 16