VYPR

Vendor CVEs

Microsoft

All CVEs

14,294 total · sorted by risk
  • CVE-2020-0948HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0949, CVE-2020-0950.

  • CVE-2020-0931HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0929,…

  • CVE-2020-0929HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0920, CVE-2020-0931,…

  • CVE-2020-0920HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0929, CVE-2020-0931,…

  • CVE-2020-0906HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0979.

  • CVE-2020-0760HigApr 15, 2020
    risk 0.58cvss 8.8epss 0.09

    A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991.

  • CVE-2020-0869HigMar 12, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0801, CVE-2020-0807, CVE-2020-0809.

  • CVE-2020-0850HigMar 12, 2020
    risk 0.58cvss 8.8epss 0.09

    A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0851, CVE-2020-0852, CVE-2020-0855, CVE-2020-0892.

  • CVE-2020-0816HigMar 12, 2020
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'.

  • CVE-2020-0809HigMar 12, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0801, CVE-2020-0807, CVE-2020-0869.

  • CVE-2020-0807HigMar 12, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0801, CVE-2020-0809, CVE-2020-0869.

  • CVE-2020-0801HigMar 12, 2020
    risk 0.58cvss 8.8epss 0.05

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0807, CVE-2020-0809, CVE-2020-0869.

  • CVE-2020-0684HigMar 12, 2020
    risk 0.58cvss 8.8epss 0.09

    A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution…

  • CVE-2020-0759HigFeb 11, 2020
    risk 0.58cvss 8.8epss 0.15

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.

  • CVE-2020-0738HigFeb 11, 2020
    risk 0.58cvss 8.8epss 0.06

    A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'.

  • CVE-2020-0734HigFeb 11, 2020
    risk 0.58cvss 8.8epss 0.16

    A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0681.

  • CVE-2020-0662HigFeb 11, 2020
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.

  • CVE-2019-1456HigNov 12, 2019
    risk 0.58cvss 8.8epss 0.09

    A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1419.

  • CVE-2019-1441HigNov 12, 2019
    risk 0.58cvss 8.8epss 0.12

    A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'.

  • CVE-2019-1419HigNov 12, 2019
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1456.

  • CVE-2019-1333HigOct 10, 2019
    risk 0.58cvss 8.8epss 0.15

    A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'.

  • CVE-2019-1327HigOct 10, 2019
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1331.

  • CVE-2019-1060HigOct 10, 2019
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'.

  • CVE-2019-1302HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.05

    An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of Privilege Vulnerability'.

  • CVE-2019-1296HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.08

    A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1257, CVE-2019-1295.

  • CVE-2019-1295HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.08

    A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1257, CVE-2019-1296.

  • CVE-2019-1291HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.12

    A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1290.

  • CVE-2019-1290HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.12

    A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1291.

  • CVE-2019-1257HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.12

    A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1295, CVE-2019-1296.

  • CVE-2019-0788HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.12

    A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-1290, CVE-2019-1291.

  • CVE-2019-0787HigSep 11, 2019
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0788, CVE-2019-1290, CVE-2019-1291.

  • CVE-2019-1183HigAug 14, 2019
    risk 0.58cvss 8.8epss 0.05

    This information is being revised to indicate that this CVE (CVE-2019-1183) is fully mitigated by the security updates for the vulnerability discussed in CVE-2019-1194. No update is required.

  • CVE-2019-1140HigAug 14, 2019
    risk 0.58cvss 8.8epss 0.04

    A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current…

  • CVE-2019-1113HigJul 15, 2019
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code…

  • CVE-2019-1111HigJul 15, 2019
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1110.

  • CVE-2019-1110HigJul 15, 2019
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1111.

  • CVE-2019-1102HigJul 15, 2019
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

  • CVE-2019-0887HigJul 15, 2019
    risk 0.58cvss 8.0epss 0.71

    A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

  • CVE-2019-0888HigJun 12, 2019
    risk 0.58cvss 8.8epss 0.11

    A remote code execution vulnerability exists in the way that ActiveX Data Objects (ADO) handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code with the victim user’s privileges. An attacker could craft a website that…

  • CVE-2019-0722HigJun 12, 2019
    risk 0.58cvss 8.8epss 0.05

    A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating…

  • CVE-2019-0995HigMay 16, 2019
    risk 0.58cvss 8.8epss 0.05

    A security feature bypass vulnerability exists when urlmon.dll improperly handles certain Mark of the Web queries, aka 'Internet Explorer Security Feature Bypass Vulnerability'.

  • CVE-2019-0952HigMay 16, 2019
    risk 0.58cvss 8.8epss 0.10

    A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

  • CVE-2019-0845HigApr 9, 2019
    risk 0.58cvss 8.8epss 0.15

    A remote code execution vulnerability exists when the IOleCvt interface renders ASP webpage content, aka 'Windows IOleCvt Interface Remote Code Execution Vulnerability'.

  • CVE-2019-0794HigApr 9, 2019
    risk 0.58cvss 8.8epss 0.15

    A remote code execution vulnerability exists when OLE automation improperly handles objects in memory, aka 'OLE Automation Remote Code Execution Vulnerability'.

  • CVE-2019-0790HigApr 9, 2019
    risk 0.58cvss 8.8epss 0.16

    A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0791, CVE-2019-0792, CVE-2019-0793, CVE-2019-0795.

  • CVE-2019-0772HigApr 9, 2019
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0665, CVE-2019-0666, CVE-2019-0667.

  • CVE-2019-0765HigApr 9, 2019
    risk 0.58cvss 8.8epss 0.14

    A remote code execution vulnerability exists in the way that comctl32.dll handles objects in memory, aka 'Comctl32 Remote Code Execution Vulnerability'.

  • CVE-2019-0756HigApr 9, 2019
    risk 0.58cvss 8.8epss 0.13

    A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'.

  • CVE-2019-0724HigMar 5, 2019
    risk 0.58cvss 8.1epss 0.24

    An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0686.

  • CVE-2019-0668HigMar 5, 2019
    risk 0.58cvss 8.8epss 0.04

    An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'.

Page 20 of 286