Windows CSC Service
by Microsoft
CVEs (412)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-30190 | Hig | 0.80 | 7.8 | 0.99 | KEV | Jun 1, 2022 | A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then… | |
| CVE-2022-21999 | Hig | 0.75 | 7.8 | 0.42 | KEV | Feb 9, 2022 | Windows Print Spooler Elevation of Privilege Vulnerability | |
| CVE-2022-41128 | Hig | 0.71 | 8.8 | 0.25 | KEV | Nov 9, 2022 | Windows Scripting Languages Remote Code Execution Vulnerability | |
| CVE-2022-26809 | Cri | 0.71 | 9.8 | 0.91 | Apr 15, 2022 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2022-34721 | Cri | 0.70 | 9.8 | 0.76 | Sep 13, 2022 | Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | ||
| CVE-2022-41073 | Hig | 0.69 | 7.8 | 0.02 | KEV | Nov 9, 2022 | Windows Print Spooler Elevation of Privilege Vulnerability | |
| CVE-2022-24521 | Hig | 0.69 | 7.8 | 0.07 | KEV | Apr 15, 2022 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | |
| CVE-2022-34718 | Cri | 0.68 | 9.8 | 0.48 | Sep 13, 2022 | Windows TCP/IP Remote Code Execution Vulnerability | ||
| CVE-2022-34713 | Hig | 0.68 | 7.8 | 0.68 | KEV | Aug 9, 2022 | Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability | |
| CVE-2022-37969 | Hig | 0.65 | 7.8 | 0.28 | KEV | Sep 13, 2022 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | |
| CVE-2022-26925 | Hig | 0.65 | 8.1 | 0.10 | KEV | May 10, 2022 | Windows LSA Spoofing Vulnerability | |
| CVE-2022-35744 | Cri | 0.64 | 9.8 | 0.02 | May 31, 2023 | Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability | ||
| CVE-2022-34722 | Cri | 0.64 | 9.8 | 0.02 | Sep 13, 2022 | Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | ||
| CVE-2022-30133 | Cri | 0.64 | 9.8 | 0.02 | Aug 9, 2022 | Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability | ||
| CVE-2022-22047 | Hig | 0.64 | 7.8 | 0.19 | KEV | Jul 12, 2022 | Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability | |
| CVE-2022-29130 | Cri | 0.64 | 9.8 | 0.04 | May 10, 2022 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2022-22012 | Cri | 0.64 | 9.8 | 0.04 | May 10, 2022 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2022-22718 | Hig | 0.64 | 7.8 | 0.18 | KEV | Feb 9, 2022 | Windows Print Spooler Elevation of Privilege Vulnerability | |
| CVE-2022-41033 | Hig | 0.63 | 7.8 | 0.02 | KEV | Oct 11, 2022 | Windows COM+ Event System Service Elevation of Privilege Vulnerability | |
| CVE-2022-26904 | Hig | 0.61 | 7.0 | 0.10 | KEV | Apr 15, 2022 | Windows User Profile Service Elevation of Privilege Vulnerability |
- risk 0.80cvss 7.8epss 0.99
A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then…
- risk 0.75cvss 7.8epss 0.42
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.71cvss 8.8epss 0.25
Windows Scripting Languages Remote Code Execution Vulnerability
- risk 0.71cvss 9.8epss 0.91
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.70cvss 9.8epss 0.76
Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
- risk 0.69cvss 7.8epss 0.02
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.69cvss 7.8epss 0.07
Windows Common Log File System Driver Elevation of Privilege Vulnerability
- risk 0.68cvss 9.8epss 0.48
Windows TCP/IP Remote Code Execution Vulnerability
- risk 0.68cvss 7.8epss 0.68
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
- risk 0.65cvss 7.8epss 0.28
Windows Common Log File System Driver Elevation of Privilege Vulnerability
- risk 0.65cvss 8.1epss 0.10
Windows LSA Spoofing Vulnerability
- risk 0.64cvss 9.8epss 0.02
Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability
- risk 0.64cvss 9.8epss 0.02
Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
- risk 0.64cvss 9.8epss 0.02
Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability
- risk 0.64cvss 7.8epss 0.19
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
- risk 0.64cvss 9.8epss 0.04
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.64cvss 9.8epss 0.04
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.64cvss 7.8epss 0.18
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.63cvss 7.8epss 0.02
Windows COM+ Event System Service Elevation of Privilege Vulnerability
- risk 0.61cvss 7.0epss 0.10
Windows User Profile Service Elevation of Privilege Vulnerability
Page 1 of 21