Vendor CVEs
Microsoft
All CVEs
14,174 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-36017 | Hig | 0.59 | 8.8 | 0.25 | Nov 14, 2023 | Windows Scripting Engine Memory Corruption Vulnerability | ||
| CVE-2023-36744 | Hig | 0.59 | 8.0 | 0.82 | Sep 12, 2023 | Microsoft Exchange Server Remote Code Execution Vulnerability | ||
| CVE-2023-38181 | Hig | 0.59 | 8.8 | 0.17 | Aug 8, 2023 | Microsoft Exchange Server Spoofing Vulnerability | ||
| CVE-2023-29325 | Hig | 0.59 | 8.1 | 0.84 | May 9, 2023 | Windows OLE Remote Code Execution Vulnerability | ||
| CVE-2023-21768 | Hig | 0.59 | 7.8 | 0.65 | Jan 10, 2023 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | ||
| CVE-2022-44698 | Med | 0.59 | 5.4 | 0.76 | KEV | Dec 13, 2022 | Windows SmartScreen Security Feature Bypass Vulnerability | |
| CVE-2022-41034 | Hig | 0.59 | 7.8 | 0.67 | Oct 11, 2022 | Visual Studio Code Remote Code Execution Vulnerability | ||
| CVE-2022-21972 | Hig | 0.59 | 8.1 | 0.81 | May 10, 2022 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | ||
| CVE-2022-23285 | Hig | 0.59 | 8.8 | 0.26 | Mar 9, 2022 | Remote Desktop Client Remote Code Execution Vulnerability | ||
| CVE-2022-21990 | Hig | 0.59 | 8.8 | 0.19 | Mar 9, 2022 | Remote Desktop Client Remote Code Execution Vulnerability | ||
| CVE-2022-22005 | Hig | 0.59 | 8.8 | 0.17 | Feb 9, 2022 | Microsoft SharePoint Server Remote Code Execution Vulnerability | ||
| CVE-2022-21969 | Cri | 0.59 | 9.0 | 0.01 | Jan 11, 2022 | Microsoft Exchange Server Remote Code Execution Vulnerability | ||
| CVE-2022-21901 | Cri | 0.59 | 9.0 | 0.01 | Jan 11, 2022 | Windows Hyper-V Elevation of Privilege Vulnerability | ||
| CVE-2022-21855 | Cri | 0.59 | 9.0 | 0.01 | Jan 11, 2022 | Microsoft Exchange Server Remote Code Execution Vulnerability | ||
| CVE-2022-21846 | Cri | 0.59 | 9.0 | 0.01 | Jan 11, 2022 | Microsoft Exchange Server Remote Code Execution Vulnerability | ||
| CVE-2021-43882 | Cri | 0.59 | 9.0 | 0.02 | Dec 15, 2021 | Microsoft Defender for IoT Remote Code Execution Vulnerability | ||
| CVE-2021-26443 | Cri | 0.59 | 9.0 | 0.02 | Nov 10, 2021 | Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability | ||
| CVE-2021-26427 | Cri | 0.59 | 9.0 | 0.01 | Oct 13, 2021 | Microsoft Exchange Server Remote Code Execution Vulnerability | ||
| CVE-2021-34535 | Hig | 0.59 | 8.8 | 0.18 | Aug 12, 2021 | Remote Desktop Client Remote Code Execution Vulnerability | ||
| CVE-2021-34448 | Med | 0.59 | 6.8 | 0.31 | KEV | Jul 16, 2021 | Scripting Engine Memory Corruption Vulnerability | |
| CVE-2021-28483 | Cri | 0.59 | 9.0 | 0.01 | Apr 13, 2021 | Microsoft Exchange Server Remote Code Execution Vulnerability | ||
| CVE-2020-1481 | Hig | 0.59 | 8.8 | 0.24 | Jul 14, 2020 | A remote code execution vulnerability exists in the ESLint extension for Visual Studio Code when it validates source code after opening a project, aka 'Visual Studio Code ESLint Extention Remote Code Execution Vulnerability'. | ||
| CVE-2020-1439 | Hig | 0.59 | 8.8 | 0.20 | Jul 14, 2020 | A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input, aka 'PerformancePoint Services Remote Code Execution Vulnerability'. | ||
| CVE-2020-1436 | Hig | 0.59 | 8.8 | 0.21 | Jul 14, 2020 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Windows Font Library Remote Code… | ||
| CVE-2020-1043 | Cri | 0.59 | 9.0 | 0.05 | Jul 14, 2020 | A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from… | ||
| CVE-2020-1042 | Cri | 0.59 | 9.0 | 0.06 | Jul 14, 2020 | A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from… | ||
| CVE-2020-1041 | Cri | 0.59 | 9.0 | 0.05 | Jul 14, 2020 | A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from… | ||
| CVE-2020-1036 | Cri | 0.59 | 9.0 | 0.06 | Jul 14, 2020 | A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from… | ||
| CVE-2020-1032 | Cri | 0.59 | 9.0 | 0.05 | Jul 14, 2020 | A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from… | ||
| CVE-2020-1226 | Hig | 0.59 | 8.8 | 0.17 | Jun 9, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1225. | ||
| CVE-2020-1225 | Hig | 0.59 | 8.8 | 0.17 | Jun 9, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1226. | ||
| CVE-2020-0964 | Hig | 0.59 | 8.8 | 0.17 | Apr 15, 2020 | A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. | ||
| CVE-2020-0687 | Hig | 0.59 | 8.8 | 0.19 | Apr 15, 2020 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'. | ||
| CVE-2020-0883 | Hig | 0.59 | 8.8 | 0.22 | Mar 12, 2020 | A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0881. | ||
| CVE-2020-0881 | Hig | 0.59 | 8.8 | 0.16 | Mar 12, 2020 | A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0883. | ||
| CVE-2019-1354 | Hig | 0.59 | 8.8 | 0.22 | Jan 24, 2020 | A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387. | ||
| CVE-2019-1350 | Hig | 0.59 | 8.8 | 0.26 | Jan 24, 2020 | A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387. | ||
| CVE-2020-0654 | Cri | 0.59 | 9.1 | 0.03 | Jan 14, 2020 | A security feature bypass vulnerability exists in Microsoft OneDrive App for Android.This could allow an attacker to bypass the passcode or fingerprint requirements of the App.The security update addresses the vulnerability by correcting the way Microsoft OneDrive App for… | ||
| CVE-2020-0606 | Hig | 0.59 | 8.8 | 0.17 | Jan 14, 2020 | A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code… | ||
| CVE-2020-0605 | Hig | 0.59 | 8.8 | 0.18 | Jan 14, 2020 | A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code… | ||
| CVE-2020-0603 | Hig | 0.59 | 8.8 | 0.20 | Jan 14, 2020 | A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka 'ASP.NET Core Remote Code Execution… | ||
| CVE-2019-1468 | Hig | 0.59 | 8.8 | 0.17 | Dec 10, 2019 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'. | ||
| CVE-2019-1331 | Hig | 0.59 | 8.8 | 0.18 | Oct 10, 2019 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1327. | ||
| CVE-2019-1109 | Cri | 0.59 | 9.1 | 0.04 | Jul 15, 2019 | A spoofing vulnerability exists when Microsoft Office Javascript does not check the validity of the web page making a request to Office documents.An attacker who successfully exploited this vulnerability could read or write information in Office documents.The security update… | ||
| CVE-2019-1019 | Hig | 0.59 | 8.5 | 0.15 | Jun 12, 2019 | A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages. To exploit this vulnerability, an attacker could send a specially crafted authentication request. An attacker who successfully exploited this… | ||
| CVE-2019-0938 | Cri | 0.59 | 9.0 | 0.03 | May 16, 2019 | An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka 'Microsoft Edge Elevation of Privilege Vulnerability'. | ||
| CVE-2019-0902 | Hig | 0.59 | 8.8 | 0.19 | May 16, 2019 | A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893,… | ||
| CVE-2019-0853 | Hig | 0.59 | 8.8 | 0.28 | Apr 9, 2019 | A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. | ||
| CVE-2019-0842 | Hig | 0.59 | 8.8 | 0.18 | Apr 9, 2019 | A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'. | ||
| CVE-2019-0795 | Hig | 0.59 | 8.8 | 0.21 | Apr 9, 2019 | A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0792, CVE-2019-0793. |
- risk 0.59cvss 8.8epss 0.25
Windows Scripting Engine Memory Corruption Vulnerability
- risk 0.59cvss 8.0epss 0.82
Microsoft Exchange Server Remote Code Execution Vulnerability
- risk 0.59cvss 8.8epss 0.17
Microsoft Exchange Server Spoofing Vulnerability
- risk 0.59cvss 8.1epss 0.84
Windows OLE Remote Code Execution Vulnerability
- risk 0.59cvss 7.8epss 0.65
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
- risk 0.59cvss 5.4epss 0.76
Windows SmartScreen Security Feature Bypass Vulnerability
- risk 0.59cvss 7.8epss 0.67
Visual Studio Code Remote Code Execution Vulnerability
- risk 0.59cvss 8.1epss 0.81
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
- risk 0.59cvss 8.8epss 0.26
Remote Desktop Client Remote Code Execution Vulnerability
- risk 0.59cvss 8.8epss 0.19
Remote Desktop Client Remote Code Execution Vulnerability
- risk 0.59cvss 8.8epss 0.17
Microsoft SharePoint Server Remote Code Execution Vulnerability
- risk 0.59cvss 9.0epss 0.01
Microsoft Exchange Server Remote Code Execution Vulnerability
- risk 0.59cvss 9.0epss 0.01
Windows Hyper-V Elevation of Privilege Vulnerability
- risk 0.59cvss 9.0epss 0.01
Microsoft Exchange Server Remote Code Execution Vulnerability
- risk 0.59cvss 9.0epss 0.01
Microsoft Exchange Server Remote Code Execution Vulnerability
- risk 0.59cvss 9.0epss 0.02
Microsoft Defender for IoT Remote Code Execution Vulnerability
- risk 0.59cvss 9.0epss 0.02
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability
- risk 0.59cvss 9.0epss 0.01
Microsoft Exchange Server Remote Code Execution Vulnerability
- risk 0.59cvss 8.8epss 0.18
Remote Desktop Client Remote Code Execution Vulnerability
- risk 0.59cvss 6.8epss 0.31
Scripting Engine Memory Corruption Vulnerability
- risk 0.59cvss 9.0epss 0.01
Microsoft Exchange Server Remote Code Execution Vulnerability
- risk 0.59cvss 8.8epss 0.24
A remote code execution vulnerability exists in the ESLint extension for Visual Studio Code when it validates source code after opening a project, aka 'Visual Studio Code ESLint Extention Remote Code Execution Vulnerability'.
- risk 0.59cvss 8.8epss 0.20
A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input, aka 'PerformancePoint Services Remote Code Execution Vulnerability'.
- risk 0.59cvss 8.8epss 0.21
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Windows Font Library Remote Code…
- risk 0.59cvss 9.0epss 0.05
A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from…
- risk 0.59cvss 9.0epss 0.06
A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from…
- risk 0.59cvss 9.0epss 0.05
A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from…
- risk 0.59cvss 9.0epss 0.06
A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from…
- risk 0.59cvss 9.0epss 0.05
A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from…
- risk 0.59cvss 8.8epss 0.17
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1225.
- risk 0.59cvss 8.8epss 0.17
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1226.
- risk 0.59cvss 8.8epss 0.17
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.
- risk 0.59cvss 8.8epss 0.19
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.
- risk 0.59cvss 8.8epss 0.22
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0881.
- risk 0.59cvss 8.8epss 0.16
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0883.
- risk 0.59cvss 8.8epss 0.22
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.
- risk 0.59cvss 8.8epss 0.26
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387.
- risk 0.59cvss 9.1epss 0.03
A security feature bypass vulnerability exists in Microsoft OneDrive App for Android.This could allow an attacker to bypass the passcode or fingerprint requirements of the App.The security update addresses the vulnerability by correcting the way Microsoft OneDrive App for…
- risk 0.59cvss 8.8epss 0.17
A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code…
- risk 0.59cvss 8.8epss 0.18
A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code…
- risk 0.59cvss 8.8epss 0.20
A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka 'ASP.NET Core Remote Code Execution…
- risk 0.59cvss 8.8epss 0.17
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'.
- risk 0.59cvss 8.8epss 0.18
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1327.
- risk 0.59cvss 9.1epss 0.04
A spoofing vulnerability exists when Microsoft Office Javascript does not check the validity of the web page making a request to Office documents.An attacker who successfully exploited this vulnerability could read or write information in Office documents.The security update…
- risk 0.59cvss 8.5epss 0.15
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages. To exploit this vulnerability, an attacker could send a specially crafted authentication request. An attacker who successfully exploited this…
- risk 0.59cvss 9.0epss 0.03
An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka 'Microsoft Edge Elevation of Privilege Vulnerability'.
- risk 0.59cvss 8.8epss 0.19
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893,…
- risk 0.59cvss 8.8epss 0.28
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.
- risk 0.59cvss 8.8epss 0.18
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'.
- risk 0.59cvss 8.8epss 0.21
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0791, CVE-2019-0792, CVE-2019-0793.
Page 13 of 284