Vulnerabilities (CVE)

Vendor filter

Microsoft Subscribe

Filter

6739 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1170 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-23 7.2
An elevation of privilege vulnerability exists when reparse points are created by sandboxed processes allowing sandbox escape, aka 'Windows NTFS Elevation of Privilege Vulnerability'.
CVE-2019-1161 1 Microsoft 5 Forefront Endpoint Protection 2010, Security Essentials, System Center Endpoint Protection and 2 more 2019-08-22 6.6
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elevation...
CVE-2019-1162 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-08-22 7.2
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local...
CVE-2019-1223 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-22 5.0
A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability'.
CVE-2019-1163 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-22 4.3
A security feature bypass exists when Windows incorrectly validates CAB file signatures, aka 'Windows File Signature Security Feature Bypass Vulnerability'.
CVE-2019-1225 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-22 5.0
An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Server Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1224.
CVE-2019-1224 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-22 5.0
An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Server Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1225.
CVE-2019-1258 1 Microsoft 2 Active Directory Authentication Library, Nuget 2019-08-22 6.5
An elevation of privilege vulnerability exists in Azure Active Directory Authentication Library On-Behalf-Of flow, in the way the library caches tokens, aka 'Azure Active Directory Authentication Library Elevation of Privilege Vulnerability'.
CVE-2019-1229 1 Microsoft 1 Dynamics 365 2019-08-22 6.5
An elevation of privilege vulnerability exists in Dynamics On-Premise v9, aka 'Dynamics On-Premise Elevation of Privilege Vulnerability'.
CVE-2019-1172 1 Microsoft 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more 2019-08-21 4.3
An information disclosure vulnerability exists in Azure Active Directory (AAD) Microsoft Account (MSA) during the login request session, aka 'Windows Information Disclosure Vulnerability'.
CVE-2019-1169 1 Microsoft 2 Windows 7, Windows Server 2008 2019-08-21 7.2
An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.
CVE-2019-1185 1 Microsoft 2 Windows 10, Windows Server 2016 2019-08-21 4.6
An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'.
CVE-2019-1164 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-08-21 7.2
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1159.
CVE-2019-1176 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-21 7.2
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.
CVE-2019-1168 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-08-21 7.2
An elevation of privilege exists in the p2pimsvc service where an attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit this vulnerability, an attacker would first have to log on to the...
CVE-2019-1183 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-08-21 9.3
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'.
CVE-2019-1171 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-21 2.1
An information disclosure vulnerability exists in SymCrypt during the OAEP decryption stage, aka 'SymCrypt Information Disclosure Vulnerability'.
CVE-2019-1187 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-08-21 5.0
A denial of service vulnerability exists when the XmlLite runtime (XmlLite.dll) improperly parses XML input, aka 'XmlLite Runtime Denial of Service Vulnerability'.
CVE-2019-1188 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-08-21 9.3
A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka...
CVE-2019-1213 1 Microsoft 1 Windows Server 2008 2019-08-20 7.5
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'.