Windows Defender
by Microsoft
CVEs (30)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-34471 | 0.00 | — | 0.00 | Aug 12, 2021 | Microsoft Windows Defender Elevation of Privilege Vulnerability | |||
| CVE-2021-24092 | 0.00 | — | 0.01 | Feb 25, 2021 | Microsoft Defender Elevation of Privilege Vulnerability | |||
| CVE-2020-1461 | 0.00 | — | 0.01 | Jul 14, 2020 | An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'. | |||
| CVE-2020-1163 | 0.00 | — | 0.01 | Jun 9, 2020 | An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE… | |||
| CVE-2020-1170 | 0.00 | — | 0.02 | Jun 9, 2020 | An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE… | |||
| CVE-2020-1002 | 0.00 | — | 0.01 | Apr 15, 2020 | An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'. | |||
| CVE-2019-1161 | 0.00 | — | 0.01 | Aug 14, 2019 | An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could… | |||
| CVE-2013-3154 | 0.00 | — | 0.02 | Jul 10, 2013 | The signature-update functionality in Windows Defender on Microsoft Windows 7 and Windows Server 2008 R2 relies on an incorrect pathname, which allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory, aka "Microsoft Windows 7… | |||
| CVE-2013-0078 | 0.00 | — | 0.02 | Apr 9, 2013 | The Microsoft Antimalware Client in Windows Defender on Windows 8 and Windows RT uses an incorrect pathname for MsMpEng.exe, which allows local users to gain privileges via a crafted application, aka "Microsoft Antimalware Improper Pathname Vulnerability." | |||
| CVE-2011-0037 | 0.00 | — | 0.02 | Feb 25, 2011 | Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain… |
- CVE-2021-34471Aug 12, 2021risk 0.00cvss —epss 0.00
Microsoft Windows Defender Elevation of Privilege Vulnerability
- CVE-2021-24092Feb 25, 2021risk 0.00cvss —epss 0.01
Microsoft Defender Elevation of Privilege Vulnerability
- CVE-2020-1461Jul 14, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'.
- CVE-2020-1163Jun 9, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE…
- CVE-2020-1170Jun 9, 2020risk 0.00cvss —epss 0.02
An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'. This CVE…
- CVE-2020-1002Apr 15, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation of Privilege Vulnerability'.
- CVE-2019-1161Aug 14, 2019risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could…
- CVE-2013-3154Jul 10, 2013risk 0.00cvss —epss 0.02
The signature-update functionality in Windows Defender on Microsoft Windows 7 and Windows Server 2008 R2 relies on an incorrect pathname, which allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory, aka "Microsoft Windows 7…
- CVE-2013-0078Apr 9, 2013risk 0.00cvss —epss 0.02
The Microsoft Antimalware Client in Windows Defender on Windows 8 and Windows RT uses an incorrect pathname for MsMpEng.exe, which allows local users to gain privileges via a crafted application, aka "Microsoft Antimalware Improper Pathname Vulnerability."
- CVE-2011-0037Feb 25, 2011risk 0.00cvss —epss 0.02
Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain…
Page 2 of 2