Vendor CVEs
Microsoft
All CVEs
14,319 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-35769 | Hig | 0.49 | 7.5 | 0.02 | Aug 9, 2022 | Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability | ||
| CVE-2022-34701 | Hig | 0.49 | 7.5 | 0.02 | Aug 9, 2022 | Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability | ||
| CVE-2022-30194 | Hig | 0.49 | 7.5 | 0.01 | Aug 9, 2022 | Windows WebBrowser Control Remote Code Execution Vulnerability | ||
| CVE-2022-30144 | Hig | 0.49 | 7.5 | 0.01 | Aug 9, 2022 | Windows Bluetooth Service Remote Code Execution Vulnerability | ||
| CVE-2022-30215 | Hig | 0.49 | 7.5 | 0.02 | Jul 12, 2022 | Active Directory Federation Services Elevation of Privilege Vulnerability | ||
| CVE-2022-30211 | Hig | 0.49 | 7.5 | 0.02 | Jul 12, 2022 | Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability | ||
| CVE-2022-22039 | Hig | 0.49 | 7.5 | 0.02 | Jul 12, 2022 | Windows Network File System Remote Code Execution Vulnerability | ||
| CVE-2022-22037 | Hig | 0.49 | 7.5 | 0.02 | Jul 12, 2022 | Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability | ||
| CVE-2022-33739 | Hig | 0.49 | 7.5 | 0.01 | Jun 16, 2022 | CA Clarity 15.8 and below and 15.9.0 contain an insecure XML parsing vulnerability that could allow a remote attacker to potentially view the contents of any file on the system. | ||
| CVE-2022-30152 | Hig | 0.49 | 7.5 | 0.03 | Jun 15, 2022 | Windows Network Address Translation (NAT) Denial of Service Vulnerability | ||
| CVE-2022-30150 | Hig | 0.49 | 7.5 | 0.03 | Jun 15, 2022 | Windows Defender Remote Credential Guard Elevation of Privilege Vulnerability | ||
| CVE-2022-30149 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2022-30146 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2022-30145 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Windows Encrypting File System (EFS) Remote Code Execution Vulnerability | ||
| CVE-2022-30143 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2022-30142 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Windows File History Remote Code Execution Vulnerability | ||
| CVE-2022-30140 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Windows iSCSI Discovery Service Remote Code Execution Vulnerability | ||
| CVE-2022-30139 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2022-29143 | Hig | 0.49 | 7.5 | 0.02 | Jun 15, 2022 | Microsoft SQL Server Remote Code Execution Vulnerability | ||
| CVE-2022-32230 | Hig | 0.49 | 7.5 | 0.07 | Jun 14, 2022 | Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the… | ||
| CVE-2022-29145 | Hig | 0.49 | 7.5 | 0.05 | May 10, 2022 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2022-29117 | Hig | 0.49 | 7.5 | 0.05 | May 10, 2022 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2022-26931 | Hig | 0.49 | 7.5 | 0.02 | May 10, 2022 | Windows Kerberos Elevation of Privilege Vulnerability | ||
| CVE-2022-26915 | Hig | 0.49 | 7.5 | 0.03 | Apr 15, 2022 | Windows Secure Channel Denial of Service Vulnerability | ||
| CVE-2022-26832 | Hig | 0.49 | 7.5 | 0.03 | Apr 15, 2022 | .NET Framework Denial of Service Vulnerability | ||
| CVE-2022-26831 | Hig | 0.49 | 7.5 | 0.03 | Apr 15, 2022 | Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability | ||
| CVE-2022-26830 | Hig | 0.49 | 7.5 | 0.02 | Apr 15, 2022 | DiskUsage.exe Remote Code Execution Vulnerability | ||
| CVE-2022-24534 | Hig | 0.49 | 7.5 | 0.02 | Apr 15, 2022 | Win32 Stream Enumeration Remote Code Execution Vulnerability | ||
| CVE-2022-24485 | Hig | 0.49 | 7.5 | 0.02 | Apr 15, 2022 | Win32 File Enumeration Remote Code Execution Vulnerability | ||
| CVE-2022-21983 | Hig | 0.49 | 7.5 | 0.02 | Apr 15, 2022 | Win32 Stream Enumeration Remote Code Execution Vulnerability | ||
| CVE-2022-24464 | Hig | 0.49 | 7.5 | 0.03 | Mar 9, 2022 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2022-21965 | Hig | 0.49 | 7.5 | 0.03 | Feb 9, 2022 | Microsoft Teams Denial of Service Vulnerability | ||
| CVE-2020-23315 | Hig | 0.49 | 7.5 | 0.02 | Jan 20, 2022 | There is an ASSERTION (pFuncBody->GetYieldRegister() == oldYieldRegister) failed in Js::DebugContext::RundownSourcesAndReparse in ChakraCore version 1.12.0.0-beta. | ||
| CVE-2022-21932 | Hig | 0.49 | 7.6 | 0.01 | Jan 11, 2022 | Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability | ||
| CVE-2022-21911 | Hig | 0.49 | 7.5 | 0.03 | Jan 11, 2022 | .NET Framework Denial of Service Vulnerability | ||
| CVE-2022-21904 | Hig | 0.49 | 7.5 | 0.04 | Jan 11, 2022 | Windows GDI Information Disclosure Vulnerability | ||
| CVE-2022-21890 | Hig | 0.49 | 7.5 | 0.03 | Jan 11, 2022 | Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability | ||
| CVE-2022-21889 | Hig | 0.49 | 7.5 | 0.03 | Jan 11, 2022 | Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability | ||
| CVE-2022-21883 | Hig | 0.49 | 7.5 | 0.04 | Jan 11, 2022 | Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability | ||
| CVE-2022-21880 | Hig | 0.49 | 7.5 | 0.04 | Jan 11, 2022 | Windows GDI+ Information Disclosure Vulnerability | ||
| CVE-2022-21848 | Hig | 0.49 | 7.5 | 0.04 | Jan 11, 2022 | Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability | ||
| CVE-2022-21843 | Hig | 0.49 | 7.5 | 0.03 | Jan 11, 2022 | Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | ||
| CVE-2021-43893 | Hig | 0.49 | 7.5 | 0.07 | Dec 15, 2021 | Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability | ||
| CVE-2021-43888 | Hig | 0.49 | 7.5 | 0.03 | Dec 15, 2021 | Microsoft Defender for IoT Information Disclosure Vulnerability | ||
| CVE-2021-43242 | Hig | 0.49 | 7.6 | 0.01 | Dec 15, 2021 | Microsoft SharePoint Server Spoofing Vulnerability | ||
| CVE-2021-43236 | Hig | 0.49 | 7.5 | 0.03 | Dec 15, 2021 | Microsoft Message Queuing Information Disclosure Vulnerability | ||
| CVE-2021-43233 | Hig | 0.49 | 7.5 | 0.02 | Dec 15, 2021 | Remote Desktop Client Remote Code Execution Vulnerability | ||
| CVE-2021-43228 | Hig | 0.49 | 7.5 | 0.04 | Dec 15, 2021 | SymCrypt Denial of Service Vulnerability | ||
| CVE-2021-43225 | Hig | 0.49 | 7.5 | 0.03 | Dec 15, 2021 | Bot Framework SDK Remote Code Execution Vulnerability | ||
| CVE-2021-43222 | Hig | 0.49 | 7.5 | 0.03 | Dec 15, 2021 | Microsoft Message Queuing Information Disclosure Vulnerability |
- risk 0.49cvss 7.5epss 0.02
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.01
Windows WebBrowser Control Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.01
Windows Bluetooth Service Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Active Directory Federation Services Elevation of Privilege Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Network File System Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
- risk 0.49cvss 7.5epss 0.01
CA Clarity 15.8 and below and 15.9.0 contain an insecure XML parsing vulnerability that could allow a remote attacker to potentially view the contents of any file on the system.
- risk 0.49cvss 7.5epss 0.03
Windows Network Address Translation (NAT) Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.03
Windows Defender Remote Credential Guard Elevation of Privilege Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows File History Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Microsoft SQL Server Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.07
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the…
- risk 0.49cvss 7.5epss 0.05
.NET and Visual Studio Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.05
.NET and Visual Studio Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.02
Windows Kerberos Elevation of Privilege Vulnerability
- risk 0.49cvss 7.5epss 0.03
Windows Secure Channel Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.03
.NET Framework Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.03
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.02
DiskUsage.exe Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Win32 Stream Enumeration Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Win32 File Enumeration Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.02
Win32 Stream Enumeration Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.03
.NET and Visual Studio Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.03
Microsoft Teams Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.02
There is an ASSERTION (pFuncBody->GetYieldRegister() == oldYieldRegister) failed in Js::DebugContext::RundownSourcesAndReparse in ChakraCore version 1.12.0.0-beta.
- risk 0.49cvss 7.6epss 0.01
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
- risk 0.49cvss 7.5epss 0.03
.NET Framework Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.04
Windows GDI Information Disclosure Vulnerability
- risk 0.49cvss 7.5epss 0.03
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.03
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.04
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.04
Windows GDI+ Information Disclosure Vulnerability
- risk 0.49cvss 7.5epss 0.04
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.03
Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.07
Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability
- risk 0.49cvss 7.5epss 0.03
Microsoft Defender for IoT Information Disclosure Vulnerability
- risk 0.49cvss 7.6epss 0.01
Microsoft SharePoint Server Spoofing Vulnerability
- risk 0.49cvss 7.5epss 0.03
Microsoft Message Queuing Information Disclosure Vulnerability
- risk 0.49cvss 7.5epss 0.02
Remote Desktop Client Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.04
SymCrypt Denial of Service Vulnerability
- risk 0.49cvss 7.5epss 0.03
Bot Framework SDK Remote Code Execution Vulnerability
- risk 0.49cvss 7.5epss 0.03
Microsoft Message Queuing Information Disclosure Vulnerability
Page 116 of 287