CVEs (3,883)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Microsoft 4Windows 10 Windows Server 2012Windows Server 2016+1 moreNov 21, 2024 Dec 12, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A remote code execution vulnerability exists in Windows Domain Name System (DNS) servers when they fail to properly handle requests, aka "Windows DNS Server Heap Overflow Vulnerability." This affects Windows Server 2012...Show more |
1Microsoft 5Windows 7 Windows 8.1Windows Rt 8.1+2 moreNov 21, 2024 Dec 12, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Wind...Show more |
1Microsoft 3Windows 7 Windows Server 2008Windows Server 2012Nov 21, 2024 Dec 12, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows Server 2012, Windows 7, Windows...Show more |
1Microsoft 12Windows 10 1607 Windows 10 1703Windows 10 1709+9 moreOct 29, 2025 Dec 12, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2...Show more |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Dec 12, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Serve...Show more |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Dec 12, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Serve...Show more |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Dec 12, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information disclosure vulnerability exists when Remote Procedure Call runtime improperly initializes objects in memory, aka "Remote Procedure Call runtime Information Disclosure Vulnerability." This affects Windows 7...Show more |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Dec 12, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Wind...Show more |
1Microsoft 7Windows 10 Windows 7Windows 8.1+4 moreNov 21, 2024 Nov 14, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka "Win32k Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows...Show more |
1Microsoft 5Windows 7 Windows 8.1Windows Rt 8.1+2 moreNov 21, 2024 Nov 14, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Window...Show more |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Nov 14, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 20...Show more |
1Microsoft 6Windows 10 Windows 8.1Windows Rt 8.1+3 moreNov 21, 2024 Nov 14, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 20...Show more |
1Microsoft 7Windows 10 Windows 7Windows 8.1+4 moreNov 21, 2024 Nov 14, 2018 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Window...Show more |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Nov 14, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An elevation of privilege exists in Windows COM Aggregate Marshaler, aka "Windows COM Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Se...Show more |
1Microsoft 6Windows 10 Windows 8.1Windows Rt 8.1+3 moreNov 21, 2024 Nov 14, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012,...Show more |
1Microsoft 6Windows 10 Windows 8.1Windows Rt 8.1+3 moreNov 21, 2024 Nov 14, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 A cross-site-scripting (XSS) vulnerability exists when an open source customization for Microsoft Active Directory Federation Services (AD FS) does not properly sanitize a specially crafted web request to an affected AD...Show more |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Nov 14, 2018 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R...Show more |
1Microsoft 6Windows 10 Windows 8.1Windows Rt 8.1+3 moreNov 21, 2024 Nov 14, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 20...Show more |
1Microsoft 4Windows Server 2008 Windows Server 2012Windows Server 2016+1 moreNov 21, 2024 Nov 14, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory, aka "Windows Deployment Services TFTP Server Remote Code Execution Vulnerability." This affe...Show more |
1Microsoft 7Windows 10 Windows 7Windows 8.1+4 moreNov 21, 2024 Nov 14, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A remote code execution vulnerability exists when Windows Search handles objects in memory, aka "Windows Search Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Window...Show more |