VYPR

Vendor CVEs

Microsoft

All CVEs

14,318 total · sorted by risk
  • CVE-2022-23272HigFeb 9, 2022
    risk 0.53cvss 8.1epss 0.03

    Microsoft Dynamics GP Elevation Of Privilege Vulnerability

  • CVE-2022-23256HigFeb 9, 2022
    risk 0.53cvss 8.1epss 0.02

    Azure Data Explorer Spoofing Vulnerability

  • CVE-2022-21991HigFeb 9, 2022
    risk 0.53cvss 8.1epss 0.02

    Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability

  • CVE-2022-21893HigJan 11, 2022
    risk 0.53cvss 8.0epss 0.07

    Remote Desktop Protocol Remote Code Execution Vulnerability

  • CVE-2021-43217HigDec 15, 2021
    risk 0.53cvss 8.1epss 0.06

    Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

  • CVE-2021-42310HigDec 15, 2021
    risk 0.53cvss 8.1epss 0.02

    Microsoft Defender for IoT Remote Code Execution Vulnerability

  • CVE-2021-42306HigNov 24, 2021
    risk 0.53cvss 8.1epss 0.03

    An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential  on an Azure AD Application or Service Principal (which is not recommended). This vulnerability allows a…

  • CVE-2021-41344HigOct 13, 2021
    risk 0.53cvss 8.1epss 0.06

    Microsoft SharePoint Server Remote Code Execution Vulnerability

  • CVE-2021-26435HigSep 15, 2021
    risk 0.53cvss 8.1epss 0.05

    Windows Scripting Engine Memory Corruption Vulnerability

  • CVE-2021-36958HigAug 12, 2021
    risk 0.53cvss 7.8epss 0.32

    A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install…

  • CVE-2021-34524HigAug 12, 2021
    risk 0.53cvss 8.1epss 0.03

    Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability

  • CVE-2021-34520HigJul 14, 2021
    risk 0.53cvss 8.1epss 0.03

    Microsoft SharePoint Server Remote Code Execution Vulnerability

  • CVE-2021-34492HigJul 14, 2021
    risk 0.53cvss 8.1epss 0.02

    Windows Certificate Spoofing Vulnerability

  • CVE-2021-33786HigJul 14, 2021
    risk 0.53cvss 8.1epss 0.02

    Windows LSA Security Feature Bypass Vulnerability

  • CVE-2021-33781HigJul 14, 2021
    risk 0.53cvss 8.1epss 0.02

    Azure AD Security Feature Bypass Vulnerability

  • CVE-2021-33779HigJul 14, 2021
    risk 0.53cvss 8.1epss 0.02

    Windows AD FS Security Feature Bypass Vulnerability

  • CVE-2021-33767HigJul 14, 2021
    risk 0.53cvss 8.2epss 0.01

    Open Enclave SDK Elevation of Privilege Vulnerability

  • CVE-2021-31980HigJun 8, 2021
    risk 0.53cvss 8.1epss 0.03

    Microsoft Intune Management Extension Remote Code Execution Vulnerability

  • CVE-2021-31950HigJun 8, 2021
    risk 0.53cvss 7.6epss 0.05

    Microsoft SharePoint Server Spoofing Vulnerability

  • CVE-2021-28460HigApr 13, 2021
    risk 0.53cvss 8.1epss 0.00

    Azure Sphere Unsigned Code Execution Vulnerability

  • CVE-2021-28445HigApr 13, 2021
    risk 0.53cvss 8.1epss 0.03

    Windows Network File System Remote Code Execution Vulnerability

  • CVE-2021-24112HigFeb 25, 2021
    risk 0.53cvss 8.1epss 0.03

    .NET Core Remote Code Execution Vulnerability

  • CVE-2021-24086HigFeb 25, 2021
    risk 0.53cvss 7.5epss 0.59

    Windows TCP/IP Denial of Service Vulnerability

  • CVE-2021-1722HigFeb 25, 2021
    risk 0.53cvss 8.1epss 0.02

    Windows Fax Service Remote Code Execution Vulnerability

  • CVE-2020-17118HigDec 10, 2020
    risk 0.53cvss 8.1epss 0.04

    Microsoft SharePoint Remote Code Execution Vulnerability

  • CVE-2020-16970HigNov 11, 2020
    risk 0.53cvss 8.1epss 0.01

    Azure Sphere Unsigned Code Execution Vulnerability

  • CVE-2020-1400HigJul 14, 2020
    risk 0.53cvss 7.8epss 0.24

    A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1401, CVE-2020-1407.

  • CVE-2020-1349HigJul 14, 2020
    risk 0.53cvss 7.8epss 0.23

    A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka 'Microsoft Outlook Remote Code Execution Vulnerability'.

  • CVE-2020-1056HigMay 21, 2020
    risk 0.53cvss 8.1epss 0.03

    An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a…

  • CVE-2020-1022HigApr 15, 2020
    risk 0.53cvss 8.0epss 0.07

    A remote code execution vulnerability exists in Microsoft Dynamics Business Central, aka 'Dynamics Business Central Remote Code Execution Vulnerability'.

  • CVE-2020-0905HigMar 12, 2020
    risk 0.53cvss 8.0epss 0.11

    An remote code execution vulnerability exists in Microsoft Dynamics Business Central, aka 'Dynamics Business Central Remote Code Execution Vulnerability'.

  • CVE-2020-0692HigFeb 11, 2020
    risk 0.53cvss 8.1epss 0.03

    An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'.

  • CVE-2020-0665HigFeb 11, 2020
    risk 0.53cvss 8.1epss 0.04

    An elevation of privilege vulnerability exists in Active Directory Forest trusts due to a default setting that lets an attacker in the trusting forest request delegation of a TGT for an identity from the trusted forest, aka 'Active Directory Elevation of Privilege Vulnerability'.

  • CVE-2019-1448HigNov 12, 2019
    risk 0.53cvss 7.8epss 0.28

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.

  • CVE-2019-1424HigNov 12, 2019
    risk 0.53cvss 8.1epss 0.03

    A security feature bypass vulnerability exists when Windows Netlogon improperly handles a secure communications channel, aka 'NetLogon Security Feature Bypass Vulnerability'.

  • CVE-2019-1234HigNov 12, 2019
    risk 0.53cvss 7.5epss 0.58

    A spoofing vulnerability exists when Azure Stack fails to validate certain requests, aka 'Azure Stack Spoofing Vulnerability'.

  • CVE-2019-1311HigOct 10, 2019
    risk 0.53cvss 7.8epss 0.34

    A remote code execution vulnerability exists when the Windows Imaging API improperly handles objects in memory, aka 'Windows Imaging API Remote Code Execution Vulnerability'.

  • CVE-2019-1136HigJul 15, 2019
    risk 0.53cvss 8.1epss 0.03

    An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'.

  • CVE-2019-0734HigMay 16, 2019
    risk 0.53cvss 8.1epss 0.04

    An elevation of privilege vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully decode and replace authentication request using Kerberos, allowing an attacker to be validated as an Administrator.The update addresses this…

  • CVE-2019-0728HigMar 5, 2019
    risk 0.53cvss 7.8epss 0.28

    A remote code execution vulnerability exists in Visual Studio Code when it process environment variables after opening a project, aka 'Visual Studio Code Remote Code Execution Vulnerability'.

  • CVE-2018-8587HigDec 12, 2018
    risk 0.53cvss 7.8epss 0.29

    A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook.

  • CVE-2018-12368HigOct 18, 2018
    risk 0.53cvss 8.1epss 0.05

    Windows 10 does not warn users before opening executable files with the SettingContent-ms extension even when they have been downloaded from the internet and have the "Mark of the Web." Without the warning, unsuspecting users unfamiliar with this new file type might run an…

  • CVE-2018-8495HigOct 10, 2018
    risk 0.53cvss 7.5epss 0.56

    A remote code execution vulnerability exists when Windows Shell improperly handles URIs, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

  • CVE-2018-8423HigOct 10, 2018
    risk 0.53cvss 7.8epss 0.33

    A remote code execution vulnerability exists in the Microsoft JET Database Engine, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server…

  • CVE-2018-8430HigSep 13, 2018
    risk 0.53cvss 7.8epss 0.23

    A remote code execution vulnerability exists in Microsoft Word if a user opens a specially crafted PDF file, aka "Word PDF Remote Code Execution Vulnerability." This affects Microsoft Word, Microsoft Office.

  • CVE-2018-8392HigSep 13, 2018
    risk 0.53cvss 7.8epss 0.23

    A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1,…

  • CVE-2018-8172HigJul 11, 2018
    risk 0.53cvss 7.8epss 0.31

    A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project, aka "Visual Studio Remote Code Execution Vulnerability." This affects Microsoft Visual Studio, Expression Blend 4.

  • CVE-2018-8210HigJun 14, 2018
    risk 0.53cvss 7.8epss 0.25

    A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka "Windows Remote Code Execution Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10, Windows 10…

  • CVE-2018-8162HigMay 9, 2018
    risk 0.53cvss 7.8epss 0.23

    A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Excel. This CVE ID is unique from…

  • CVE-2018-8158HigMay 9, 2018
    risk 0.53cvss 7.8epss 0.23

    A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-8157,…

Page 47 of 287