Vulnerabilities (CVE)

Vendor filter

Microsoft Subscribe

Filter

6481 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-0976 1 Microsoft 1 Nuget 2019-05-20 2.1
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify contents of the intermediate build folder (by default "obj"), aka 'NuGet Package Manager Tampering Vulnerability'.
CVE-2019-1000 1 Microsoft 1 Azure Active Directory Connect 2019-05-20 3.5
An elevation of privilege vulnerability exists in Microsoft Azure Active Directory Connect build 1.3.20.0, which allows an attacker to execute two PowerShell cmdlets in context of a privileged account, and perform privileged actions.To exploit...
CVE-2019-0921 1 Microsoft 1 Internet Explorer 2019-05-20 4.3
An spoofing vulnerability exists when Internet Explorer improperly handles URLs, aka 'Internet Explorer Spoofing Vulnerability'.
CVE-2019-0929 1 Microsoft 1 Internet Explorer 2019-05-20 7.6
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'.
CVE-2019-0727 1 Microsoft 6 Visual Studio, Visual Studio 2017, Visual Studio 2019 and 3 more 2019-05-20 7.2
An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to...
CVE-2019-0938 1 Microsoft 1 Edge 2019-05-20 6.8
An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka 'Microsoft Edge Elevation of Privilege Vulnerability'.
CVE-2019-0926 1 Microsoft 1 Edge 2019-05-20 7.6
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'.
CVE-2014-1817 1 Microsoft 9 Windows Rt 8.1, Windows 8, Windows Server 2008 and 6 more 2019-05-20 9.3
usp10.dll in Uniscribe (aka the Unicode Script Processor) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and...
CVE-2019-0734 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-05-20 9.3
An elevation of privilege vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully decode and replace authentication request using Kerberos, allowing an attacker to be validated as an Administrator.The...
CVE-2019-0864 1 Microsoft 1 .net Framework 2019-05-20 2.1
A denial of service vulnerability exists when .NET Framework improperly handles objects in heap memory, aka '.NET Framework Denial of Service Vulnerability'.
CVE-2019-0995 1 Microsoft 1 Internet Explorer 2019-05-20 6.8
A security feature bypass vulnerability exists when urlmon.dll improperly handles certain Mark of the Web queries, aka 'Internet Explorer Security Feature Bypass Vulnerability'.
CVE-2019-0979 1 Microsoft 2 Team Foundation Server, Azure Devops Server 2019 2019-05-20 3.5
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE...
CVE-2019-0758 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-05-20 4.3
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0882, CVE-2019-0961.
CVE-2019-0819 1 Microsoft 1 Sql Server 2019-05-20 4.0
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'.
CVE-2019-0872 1 Microsoft 2 Team Foundation Server, Azure Devops Server 2019 2019-05-20 3.5
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE...
CVE-2016-3237 1 Microsoft 8 Windows Server 2008, Windows 10, Windows 7 and 5 more 2019-05-20 6.8
Kerberos in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows man-in-the-middle attackers to bypass...
CVE-2019-0971 1 Microsoft 2 Team Foundation Server, Azure Devops Server 2019 2019-05-20 9.0
An information disclosure vulnerability exists when Azure DevOps Server and Microsoft Team Foundation Server do not properly sanitize a specially crafted authentication request to an affected server, aka 'Azure DevOps Server and Team Foundation...
CVE-2019-0950 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2019-05-20 3.5
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from...
CVE-2019-0949 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2019-05-20 3.5
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from...
CVE-2019-0942 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-05-20 2.1
An elevation of privilege vulnerability exists in the Unified Write Filter (UWF) feature for Windows 10 when it improperly restricts access to the registry, aka 'Unified Write Filter Elevation of Privilege Vulnerability'.