Vendor CVEs
Microsoft
All CVEs
14,324 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-35629 | Med | 0.44 | 6.8 | 0.01 | Dec 12, 2023 | Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability | ||
| CVE-2023-36697 | Med | 0.44 | 6.8 | 0.02 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36777 | Med | 0.44 | 5.7 | 0.81 | Sep 12, 2023 | Microsoft Exchange Server Information Disclosure Vulnerability | ||
| CVE-2023-36759 | Med | 0.44 | 6.7 | 0.01 | Sep 12, 2023 | Visual Studio Elevation of Privilege Vulnerability | ||
| CVE-2023-35332 | Med | 0.44 | 6.8 | 0.01 | Jul 11, 2023 | Windows Remote Desktop Protocol Security Feature Bypass | ||
| CVE-2023-33153 | Med | 0.44 | 6.8 | 0.01 | Jul 11, 2023 | Microsoft Outlook Remote Code Execution Vulnerability | ||
| CVE-2023-32055 | Med | 0.44 | 6.7 | 0.00 | Jul 11, 2023 | Active Template Library Elevation of Privilege Vulnerability | ||
| CVE-2023-32043 | Med | 0.44 | 6.8 | 0.01 | Jul 11, 2023 | Windows Remote Desktop Security Feature Bypass Vulnerability | ||
| CVE-2022-35754 | Med | 0.44 | 6.7 | 0.00 | May 31, 2023 | Unified Write Filter Elevation of Privilege Vulnerability | ||
| CVE-2023-24932 | Med | 0.44 | 6.7 | 0.11 | May 9, 2023 | Secure Boot Security Feature Bypass Vulnerability | ||
| CVE-2023-28270 | Med | 0.44 | 6.8 | 0.00 | Apr 11, 2023 | Windows Lock Screen Security Feature Bypass Vulnerability | ||
| CVE-2023-28235 | Med | 0.44 | 6.8 | 0.01 | Apr 11, 2023 | Windows Lock Screen Security Feature Bypass Vulnerability | ||
| CVE-2023-22880 | Med | 0.44 | 6.8 | 0.01 | Mar 16, 2023 | Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5 and Zoom VDI for Windows clients before 5.13.1 contain an information disclosure vulnerability. A recent update to the Microsoft Edge WebView2 runtime used by the affected Zoom… | ||
| CVE-2023-21694 | Med | 0.44 | 6.8 | 0.01 | Feb 14, 2023 | Windows Fax Service Remote Code Execution Vulnerability | ||
| CVE-2023-21563 | Med | 0.44 | 6.8 | 0.02 | Jan 10, 2023 | BitLocker Security Feature Bypass Vulnerability | ||
| CVE-2022-44682 | Med | 0.44 | 6.8 | 0.01 | Dec 13, 2022 | Windows Hyper-V Denial of Service Vulnerability | ||
| CVE-2022-41089 | Hig | 0.44 | 7.8 | 0.01 | Dec 13, 2022 | .NET Framework Remote Code Execution Vulnerability | ||
| CVE-2022-38017 | Med | 0.44 | 6.8 | 0.01 | Oct 11, 2022 | StorSimple 8000 Series Elevation of Privilege Vulnerability | ||
| CVE-2022-22041 | Med | 0.44 | 6.8 | 0.02 | Jul 12, 2022 | Windows Print Spooler Elevation of Privilege Vulnerability | ||
| CVE-2022-30137 | Med | 0.44 | 6.7 | 0.01 | Jun 15, 2022 | Executive Summary An Elevation of Privilege (EOP) vulnerability has been identified within Service Fabric clusters that run Docker containers. Exploitation of this EOP vulnerability requires an attacker to gain remote code execution within a container. All Service Fabric and… | ||
| CVE-2022-21962 | Med | 0.44 | 6.8 | 0.01 | Jan 11, 2022 | Windows Resilient File System (ReFS) Remote Code Execution Vulnerability | ||
| CVE-2022-21961 | Med | 0.44 | 6.8 | 0.01 | Jan 11, 2022 | Windows Resilient File System (ReFS) Remote Code Execution Vulnerability | ||
| CVE-2022-21960 | Med | 0.44 | 6.8 | 0.01 | Jan 11, 2022 | Windows Resilient File System (ReFS) Remote Code Execution Vulnerability | ||
| CVE-2022-21959 | Med | 0.44 | 6.8 | 0.01 | Jan 11, 2022 | Windows Resilient File System (ReFS) Remote Code Execution Vulnerability | ||
| CVE-2022-21958 | Med | 0.44 | 6.8 | 0.01 | Jan 11, 2022 | Windows Resilient File System (ReFS) Remote Code Execution Vulnerability | ||
| CVE-2022-21892 | Med | 0.44 | 6.8 | 0.01 | Jan 11, 2022 | Windows Resilient File System (ReFS) Remote Code Execution Vulnerability | ||
| CVE-2021-42284 | Med | 0.44 | 6.8 | 0.03 | Nov 10, 2021 | Windows Hyper-V Denial of Service Vulnerability | ||
| CVE-2021-42274 | Med | 0.44 | 6.8 | 0.01 | Nov 10, 2021 | Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability | ||
| CVE-2021-41374 | Med | 0.44 | 6.7 | 0.01 | Nov 10, 2021 | Azure Sphere Information Disclosure Vulnerability | ||
| CVE-2021-41342 | Med | 0.44 | 6.8 | 0.02 | Oct 13, 2021 | Windows MSHTML Platform Remote Code Execution Vulnerability | ||
| CVE-2021-34534 | Med | 0.44 | 6.8 | 0.02 | Aug 12, 2021 | Windows MSHTML Platform Remote Code Execution Vulnerability | ||
| CVE-2021-34447 | Med | 0.44 | 6.8 | 0.02 | Jul 16, 2021 | Windows MSHTML Platform Remote Code Execution Vulnerability | ||
| CVE-2021-34497 | Med | 0.44 | 6.8 | 0.02 | Jul 14, 2021 | Windows MSHTML Platform Remote Code Execution Vulnerability | ||
| CVE-2021-34493 | Med | 0.44 | 6.7 | 0.01 | Jul 14, 2021 | Windows Partition Management Driver Elevation of Privilege Vulnerability | ||
| CVE-2021-31971 | Med | 0.44 | 6.8 | 0.02 | Jun 8, 2021 | Windows HTML Platforms Security Feature Bypass Vulnerability | ||
| CVE-2021-28458 | Hig | 0.44 | 7.8 | 0.02 | Apr 13, 2021 | Azure ms-rest-nodeauth Library Elevation of Privilege Vulnerability | ||
| CVE-2021-27092 | Med | 0.44 | 6.8 | 0.03 | Apr 13, 2021 | Azure AD Web Sign-in Security Feature Bypass Vulnerability | ||
| CVE-2021-27075 | Med | 0.44 | 6.8 | 0.01 | Mar 11, 2021 | Azure Virtual Machine Information Disclosure Vulnerability | ||
| CVE-2021-26854 | Med | 0.44 | 6.6 | 0.20 | Mar 3, 2021 | Microsoft Exchange Server Remote Code Execution Vulnerability | ||
| CVE-2021-24109 | Med | 0.44 | 6.8 | 0.02 | Feb 25, 2021 | Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability | ||
| CVE-2021-24075 | Med | 0.44 | 6.8 | 0.02 | Feb 25, 2021 | Microsoft Windows VMSwitch Denial of Service Vulnerability | ||
| CVE-2020-17099 | Med | 0.44 | 6.8 | 0.01 | Dec 10, 2020 | Windows Lock Screen Security Feature Bypass Vulnerability | ||
| CVE-2020-17063 | Med | 0.44 | 6.8 | 0.01 | Nov 11, 2020 | Microsoft Office Online Spoofing Vulnerability | ||
| CVE-2020-17049 | Med | 0.44 | 6.6 | 0.14 | Nov 11, 2020 | A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD). To exploit the vulnerability, a compromised service that is configured to use KCD could… | ||
| CVE-2020-16905 | Med | 0.44 | 6.8 | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files. The vulnerability could allow elevation of privilege if an attacker can successfully exploit it. An attacker who successfully exploited the… | ||
| CVE-2020-16860 | Med | 0.44 | 6.8 | 0.03 | Sep 11, 2020 | A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) when the server fails to properly sanitize web requests to an affected Dynamics server. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the… | ||
| CVE-2020-0951 | Med | 0.44 | 6.7 | 0.07 | Sep 11, 2020 | A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by… | ||
| CVE-2020-1398 | Med | 0.44 | 6.8 | 0.01 | Jul 14, 2020 | An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog.An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.The security update addresses the vulnerability by… | ||
| CVE-2020-1333 | Med | 0.44 | 6.7 | 0.01 | Jul 14, 2020 | An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points, aka 'Group Policy Services Policy Processing Elevation of Privilege Vulnerability'. | ||
| CVE-2020-1310 | Med | 0.44 | 6.7 | 0.01 | Jun 9, 2020 | An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1247, CVE-2020-1251, CVE-2020-1253. |
- risk 0.44cvss 6.8epss 0.01
Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.44cvss 5.7epss 0.81
Microsoft Exchange Server Information Disclosure Vulnerability
- risk 0.44cvss 6.7epss 0.01
Visual Studio Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Remote Desktop Protocol Security Feature Bypass
- risk 0.44cvss 6.8epss 0.01
Microsoft Outlook Remote Code Execution Vulnerability
- risk 0.44cvss 6.7epss 0.00
Active Template Library Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Remote Desktop Security Feature Bypass Vulnerability
- risk 0.44cvss 6.7epss 0.00
Unified Write Filter Elevation of Privilege Vulnerability
- risk 0.44cvss 6.7epss 0.11
Secure Boot Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.00
Windows Lock Screen Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Lock Screen Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.01
Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5 and Zoom VDI for Windows clients before 5.13.1 contain an information disclosure vulnerability. A recent update to the Microsoft Edge WebView2 runtime used by the affected Zoom…
- risk 0.44cvss 6.8epss 0.01
Windows Fax Service Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
BitLocker Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Hyper-V Denial of Service Vulnerability
- risk 0.44cvss 7.8epss 0.01
.NET Framework Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
StorSimple 8000 Series Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.02
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.44cvss 6.7epss 0.01
Executive Summary An Elevation of Privilege (EOP) vulnerability has been identified within Service Fabric clusters that run Docker containers. Exploitation of this EOP vulnerability requires an attacker to gain remote code execution within a container. All Service Fabric and…
- risk 0.44cvss 6.8epss 0.01
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.03
Windows Hyper-V Denial of Service Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Hyper-V Discrete Device Assignment (DDA) Denial of Service Vulnerability
- risk 0.44cvss 6.7epss 0.01
Azure Sphere Information Disclosure Vulnerability
- risk 0.44cvss 6.8epss 0.02
Windows MSHTML Platform Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
Windows MSHTML Platform Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
Windows MSHTML Platform Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
Windows MSHTML Platform Remote Code Execution Vulnerability
- risk 0.44cvss 6.7epss 0.01
Windows Partition Management Driver Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.02
Windows HTML Platforms Security Feature Bypass Vulnerability
- risk 0.44cvss 7.8epss 0.02
Azure ms-rest-nodeauth Library Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.03
Azure AD Web Sign-in Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.01
Azure Virtual Machine Information Disclosure Vulnerability
- risk 0.44cvss 6.6epss 0.20
Microsoft Exchange Server Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.02
Microsoft Windows VMSwitch Denial of Service Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Lock Screen Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.01
Microsoft Office Online Spoofing Vulnerability
- risk 0.44cvss 6.6epss 0.14
A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD). To exploit the vulnerability, a compromised service that is configured to use KCD could…
- risk 0.44cvss 6.8epss 0.01
An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files. The vulnerability could allow elevation of privilege if an attacker can successfully exploit it. An attacker who successfully exploited the…
- risk 0.44cvss 6.8epss 0.03
A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) when the server fails to properly sanitize web requests to an affected Dynamics server. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the…
- risk 0.44cvss 6.7epss 0.07
A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by…
- risk 0.44cvss 6.8epss 0.01
An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog.An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.The security update addresses the vulnerability by…
- risk 0.44cvss 6.7epss 0.01
An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points, aka 'Group Policy Services Policy Processing Elevation of Privilege Vulnerability'.
- risk 0.44cvss 6.7epss 0.01
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1247, CVE-2020-1251, CVE-2020-1253.
Page 144 of 287