VYPR

Vendor CVEs

Microsoft

All CVEs

14,318 total · sorted by risk
  • CVE-2021-1637MedJan 12, 2021
    risk 0.36cvss 5.5epss 0.01

    Windows DNS Query Information Disclosure Vulnerability

  • CVE-2020-35609MedDec 22, 2020
    risk 0.36cvss 5.5epss 0.01

    A denial-of-service vulnerability exists in the asynchronous ioctl functionality of Microsoft Azure Sphere 20.05. A sequence of specially crafted ioctl calls can cause a denial of service. An attacker can write shellcode to trigger this vulnerability.

  • CVE-2020-17138MedDec 10, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Error Reporting Information Disclosure Vulnerability

  • CVE-2020-17126MedDec 10, 2020
    risk 0.36cvss 5.5epss 0.01

    Microsoft Excel Information Disclosure Vulnerability

  • CVE-2020-17098MedDec 10, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows GDI+ Information Disclosure Vulnerability

  • CVE-2020-17094MedDec 10, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Error Reporting Information Disclosure Vulnerability

  • CVE-2020-17113MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Camera Codec Information Disclosure Vulnerability

  • CVE-2020-17102MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    WebP Image Extensions Information Disclosure Vulnerability

  • CVE-2020-17100MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Visual Studio Tampering Vulnerability

  • CVE-2020-17081MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.03

    Microsoft Raw Image Extension Information Disclosure Vulnerability

  • CVE-2020-17071MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Delivery Optimization Information Disclosure Vulnerability

  • CVE-2020-17069MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows NDIS Information Disclosure Vulnerability

  • CVE-2020-17056MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Network File System Information Disclosure Vulnerability

  • CVE-2020-17046MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Error Reporting Denial of Service Vulnerability

  • CVE-2020-17045MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows KernelStream Information Disclosure Vulnerability

  • CVE-2020-17036MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Function Discovery SSDP Provider Information Disclosure Vulnerability

  • CVE-2020-17030MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows MSCTF Server Information Disclosure Vulnerability

  • CVE-2020-17029MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Canonical Display Driver Information Disclosure Vulnerability

  • CVE-2020-17013MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Win32k Information Disclosure Vulnerability

  • CVE-2020-17004MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows Graphics Component Information Disclosure Vulnerability

  • CVE-2020-17000MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Remote Desktop Protocol Client Information Disclosure Vulnerability

  • CVE-2020-16999MedNov 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Windows WalletService Information Disclosure Vulnerability

  • CVE-2020-16938MedOct 16, 2020
    risk 0.36cvss 5.5epss 0.02

    An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…

  • CVE-2020-16921MedOct 16, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists in Text Services Framework when it fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could potentially read data that was not intended to be disclosed. Note that this…

  • CVE-2020-16919MedOct 16, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files. An attacker with unprivileged access to a…

  • CVE-2020-16914MedOct 16, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface Plus (GDI+) handles objects in memory, allowing an attacker to retrieve information from a targeted system. By itself, the information disclosure does not allow arbitrary code…

  • CVE-2020-16897MedOct 16, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit…

  • CVE-2020-16889MedOct 16, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this…

  • CVE-2020-1303MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.04

    An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by…

  • CVE-2020-1256MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.05

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are…

  • CVE-2020-1250MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability,…

  • CVE-2020-1224MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.04

    An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an…

  • CVE-2020-1133MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this…

  • CVE-2020-1122MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this…

  • CVE-2020-1119MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when StartTileData.dll improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…

  • CVE-2020-1083MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit…

  • CVE-2020-1038MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. To exploit this vulnerability, an attacker would have…

  • CVE-2020-16879MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when a Windows Projected Filesystem improperly handles file redirections. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system To exploit this…

  • CVE-2020-16855MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.04

    An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory. An attacker who successfully exploited the vulnerability could view out of bound memory.…

  • CVE-2020-16854MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…

  • CVE-2020-0989MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions. An attacker who successfully exploited this vulnerability could bypass access restrictions to read files. To exploit this vulnerability,…

  • CVE-2020-0941MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability,…

  • CVE-2020-0928MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…

  • CVE-2020-0921MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    Microsoft Graphics Component Denial of Service Vulnerability

  • CVE-2020-0914MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. An attacker…

  • CVE-2020-0875MedSep 11, 2020
    risk 0.36cvss 5.5epss 0.04

    An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity). This…

  • CVE-2020-1574MedAug 17, 2020
    risk 0.36cvss 5.5epss 0.03

    A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a…

  • CVE-2020-1573MedAug 17, 2020
    risk 0.36cvss 5.5epss 0.02

    A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an…

  • CVE-2020-1510MedAug 17, 2020
    risk 0.36cvss 5.5epss 0.05

    An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…

  • CVE-2020-1505MedAug 17, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability exists when Microsoft SharePoint Server fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability,…

Page 173 of 287