VYPR

Vendor CVEs

Microsoft

All CVEs

14,323 total · sorted by risk
  • CVE-2022-22023MedJul 12, 2022
    risk 0.43cvss 6.6epss 0.01

    Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

  • CVE-2022-26911MedApr 15, 2022
    risk 0.43cvss 6.5epss 0.03

    Skype for Business Information Disclosure Vulnerability

  • CVE-2022-26829MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-26822MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-26821MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-26820MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-26819MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-26818MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-26817MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-26814MedApr 15, 2022
    risk 0.43cvss 6.6epss 0.02

    Windows DNS Server Remote Code Execution Vulnerability

  • CVE-2022-23271MedFeb 9, 2022
    risk 0.43cvss 6.5epss 0.04

    Microsoft Dynamics GP Elevation Of Privilege Vulnerability

  • CVE-2021-43216MedDec 15, 2021
    risk 0.43cvss 6.5epss 0.03

    Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

  • CVE-2021-42305MedNov 10, 2021
    risk 0.43cvss 6.5epss 0.08

    Microsoft Exchange Server Spoofing Vulnerability

  • CVE-2021-42304MedNov 10, 2021
    risk 0.43cvss 6.6epss 0.01

    Azure RTOS Elevation of Privilege Vulnerability

  • CVE-2021-42303MedNov 10, 2021
    risk 0.43cvss 6.6epss 0.01

    Azure RTOS Elevation of Privilege Vulnerability

  • CVE-2021-42302MedNov 10, 2021
    risk 0.43cvss 6.6epss 0.01

    Azure RTOS Elevation of Privilege Vulnerability

  • CVE-2021-30621MedSep 3, 2021
    risk 0.43cvss 6.5epss 0.03

    Chromium: CVE-2021-30621 UI Spoofing in Autofill

  • CVE-2021-30619MedSep 3, 2021
    risk 0.43cvss 6.5epss 0.03

    Chromium: CVE-2021-30619 UI Spoofing in Autofill

  • CVE-2021-30617MedSep 3, 2021
    risk 0.43cvss 6.5epss 0.04

    Chromium: CVE-2021-30617 Policy bypass in Blink

  • CVE-2021-30615MedSep 3, 2021
    risk 0.43cvss 6.5epss 0.06

    Chromium: CVE-2021-30615 Cross-origin data leak in Navigation

  • CVE-2021-28442MedApr 13, 2021
    risk 0.43cvss 6.5epss 0.06

    Windows TCP/IP Information Disclosure Vulnerability

  • CVE-2021-28323MedApr 13, 2021
    risk 0.43cvss 6.5epss 0.04

    Windows DNS Information Disclosure Vulnerability

  • CVE-2021-24085MedFeb 25, 2021
    risk 0.43cvss 6.5epss 0.05

    Microsoft Exchange Server Spoofing Vulnerability

  • CVE-2021-1721MedFeb 25, 2021
    risk 0.43cvss 6.5epss 0.03

    .NET Core and Visual Studio Denial of Service Vulnerability

  • CVE-2021-1679MedJan 12, 2021
    risk 0.43cvss 6.5epss 0.03

    Windows CryptoAPI Denial of Service Vulnerability

  • CVE-2021-1646MedJan 12, 2021
    risk 0.43cvss 6.6epss 0.01

    Windows WLAN Service Elevation of Privilege Vulnerability

  • CVE-2020-17133MedDec 10, 2020
    risk 0.43cvss 6.5epss 0.04

    Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability

  • CVE-2020-17119MedDec 10, 2020
    risk 0.43cvss 6.5epss 0.04

    Microsoft Outlook Information Disclosure Vulnerability

  • CVE-2020-16953MedOct 16, 2020
    risk 0.43cvss 6.5epss 0.04

    An information disclosure vulnerability exists when Microsoft SharePoint Server fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the…

  • CVE-2020-16948MedOct 16, 2020
    risk 0.43cvss 6.5epss 0.04

    An information disclosure vulnerability exists when Microsoft SharePoint Server fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the…

  • CVE-2020-1590MedSep 11, 2020
    risk 0.43cvss 6.6epss 0.01

    An elevation of privilege vulnerability exists when the Connected User Experiences and Telemetry Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges on the victim system. To exploit the…

  • CVE-2020-1159MedSep 11, 2020
    risk 0.43cvss 6.6epss 0.01

    An elevation of privilege vulnerability exists in the way that the StartTileData.dll handles file creation in protected locations. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a…

  • CVE-2020-1146MedSep 11, 2020
    risk 0.43cvss 6.6epss 0.01

    An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to…

  • CVE-2020-1130MedSep 11, 2020
    risk 0.43cvss 6.6epss 0.01

    An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this…

  • CVE-2020-1097MedSep 11, 2020
    risk 0.43cvss 6.5epss 0.05

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system. There are multiple…

  • CVE-2020-1091MedSep 11, 2020
    risk 0.43cvss 6.5epss 0.04

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system. There are multiple…

  • CVE-2020-0856MedSep 11, 2020
    risk 0.43cvss 6.5epss 0.04

    An information disclosure vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system. To…

  • CVE-2020-0664MedSep 11, 2020
    risk 0.43cvss 6.5epss 0.04

    An information disclosure vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system. To…

  • CVE-2020-1468MedJul 14, 2020
    risk 0.43cvss 6.5epss 0.05

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.

  • CVE-2020-1433MedJul 14, 2020
    risk 0.43cvss 6.5epss 0.05

    An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Information Disclosure Vulnerability'.

  • CVE-2020-1397MedJul 14, 2020
    risk 0.43cvss 6.5epss 0.06

    An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory, aka 'Windows Imaging Component Information Disclosure Vulnerability'.

  • CVE-2020-1348MedJun 9, 2020
    risk 0.43cvss 6.5epss 0.05

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.

  • CVE-2020-1322MedJun 9, 2020
    risk 0.43cvss 6.5epss 0.05

    An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable, aka 'Microsoft Project Information Disclosure Vulnerability'.

  • CVE-2020-1284MedJun 9, 2020
    risk 0.43cvss 6.5epss 0.07

    A denial of service vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests, aka 'Windows SMBv3 Client/Server Denial of Service Vulnerability'.

  • CVE-2020-1283MedJun 9, 2020
    risk 0.43cvss 6.5epss 0.09

    A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.

  • CVE-2020-1232MedJun 9, 2020
    risk 0.43cvss 6.5epss 0.06

    An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'.

  • CVE-2020-1179MedMay 21, 2020
    risk 0.43cvss 6.5epss 0.06

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0963, CVE-2020-1141, CVE-2020-1145.

  • CVE-2020-0963MedMay 21, 2020
    risk 0.43cvss 6.5epss 0.06

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1141, CVE-2020-1145, CVE-2020-1179.

  • CVE-2020-0993MedApr 15, 2020
    risk 0.43cvss 6.5epss 0.05

    A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries, aka 'Windows DNS Denial of Service Vulnerability'.

  • CVE-2020-0970HigApr 15, 2020
    risk 0.43cvss 7.5epss 0.13

    A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0968.

Page 147 of 287