VYPR

Vendor CVEs

Microsoft

All CVEs

14,293 total · sorted by risk
  • CVE-2020-17061HigNov 11, 2020
    risk 0.58cvss 8.8epss 0.04

    Microsoft SharePoint Remote Code Execution Vulnerability

  • CVE-2020-17042HigNov 11, 2020
    risk 0.58cvss 8.8epss 0.05

    Windows Print Spooler Remote Code Execution Vulnerability

  • CVE-2020-16911HigOct 16, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install…

  • CVE-2020-16898HigOct 16, 2020
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client. To…

  • CVE-2020-1523HigSep 11, 2020
    risk 0.58cvss 8.9epss 0.02

    A tampering vulnerability exists when Microsoft SharePoint Server fails to properly handle profile data. An attacker who successfully exploited this vulnerability could modify a targeted user's profile data. To exploit the vulnerability, an attacker would need to be…

  • CVE-2020-1129HigSep 11, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change,…

  • CVE-2020-0922HigSep 11, 2020
    risk 0.58cvss 8.8epss 0.05

    A remote code execution vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. To exploit the vulnerability, a user would have…

  • CVE-2020-1585HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.05

    A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or…

  • CVE-2020-1583HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.05

    An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could…

  • CVE-2020-1561HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. To exploit the vulnerability, a user would have to open…

  • CVE-2020-1555HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.05

    A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An…

  • CVE-2020-1504HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…

  • CVE-2020-1498HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…

  • CVE-2020-1496HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…

  • CVE-2020-1495HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…

  • CVE-2020-1494HigAug 17, 2020
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…

  • CVE-2020-1472MedKEVAug 17, 2020
    risk 0.58cvss 5.5epss 1.00

    An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially…

  • CVE-2020-1448HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1447.

  • CVE-2020-1447HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1448.

  • CVE-2020-1446HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448.

  • CVE-2020-1435HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.14

    A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

  • CVE-2020-1416HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.06

    An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability'.

  • CVE-2020-1412HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.14

    A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'.

  • CVE-2020-1408HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.06

    A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.

  • CVE-2020-1240HigJul 14, 2020
    risk 0.58cvss 8.8epss 0.14

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.

  • CVE-2020-1321HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.12

    A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory, aka 'Microsoft Office Remote Code Execution Vulnerability'.

  • CVE-2020-1317HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.04

    An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'.

  • CVE-2020-1299HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.15

    A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution…

  • CVE-2020-1286HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.12

    A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths.An attacker who successfully exploited this vulnerability could run arbitrary code in the context of the current user, aka 'Windows Shell Remote Code Execution…

  • CVE-2020-1281HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.14

    A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'.

  • CVE-2020-1248HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.14

    A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

  • CVE-2020-1239HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.06

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1238.

  • CVE-2020-1238HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.07

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1239.

  • CVE-2020-1223HigJun 9, 2020
    risk 0.58cvss 8.8epss 0.08

    A remote code execution vulnerability exists when Microsoft Word for Android fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file.The update addresses the vulnerability by correcting…

  • CVE-2020-1171HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.14

    A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads configuration files after opening a project, aka 'Visual Studio Code Python Extension Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1192.

  • CVE-2020-1126HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1028, CVE-2020-1136, CVE-2020-1150.

  • CVE-2020-1117HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in the way that the Color Management Module (ICM32.dll) handles objects in memory, aka 'Microsoft Color Management Remote Code Execution Vulnerability'.

  • CVE-2020-1102HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.15

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1023, CVE-2020-1024.

  • CVE-2020-1069HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

  • CVE-2020-1067HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.09

    A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.

  • CVE-2020-1061HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in the way that the Microsoft Script Runtime handles objects in memory, aka 'Microsoft Script Runtime Remote Code Execution Vulnerability'.

  • CVE-2020-1024HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1023, CVE-2020-1102.

  • CVE-2020-1023HigMay 21, 2020
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1024, CVE-2020-1102.

  • CVE-2020-0979HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0906.

  • CVE-2020-0974HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929,…

  • CVE-2020-0971HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929,…

  • CVE-2020-0967HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0966.

  • CVE-2020-0966HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0967.

  • CVE-2020-0950HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0948, CVE-2020-0949.

  • CVE-2020-0949HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0948, CVE-2020-0950.

Page 19 of 286