Vulnerabilities (CVE)

Vendor filter

Microsoft Subscribe

Filter

6484 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-0734 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-05-20 9.3
An elevation of privilege vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully decode and replace authentication request using Kerberos, allowing an attacker to be validated as an Administrator.The...
CVE-2019-0864 1 Microsoft 1 .net Framework 2019-05-20 2.1
A denial of service vulnerability exists when .NET Framework improperly handles objects in heap memory, aka '.NET Framework Denial of Service Vulnerability'.
CVE-2019-0995 1 Microsoft 1 Internet Explorer 2019-05-20 6.8
A security feature bypass vulnerability exists when urlmon.dll improperly handles certain Mark of the Web queries, aka 'Internet Explorer Security Feature Bypass Vulnerability'.
CVE-2019-0979 1 Microsoft 2 Team Foundation Server, Azure Devops Server 2019 2019-05-20 3.5
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE...
CVE-2019-0758 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-05-20 4.3
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0882, CVE-2019-0961.
CVE-2019-0819 1 Microsoft 1 Sql Server 2019-05-20 4.0
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'.
CVE-2019-0872 1 Microsoft 2 Team Foundation Server, Azure Devops Server 2019 2019-05-20 3.5
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE...
CVE-2016-3237 1 Microsoft 8 Windows Server 2008, Windows 10, Windows 7 and 5 more 2019-05-20 6.8
Kerberos in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows man-in-the-middle attackers to bypass...
CVE-2019-0971 1 Microsoft 2 Team Foundation Server, Azure Devops Server 2019 2019-05-20 9.0
An information disclosure vulnerability exists when Azure DevOps Server and Microsoft Team Foundation Server do not properly sanitize a specially crafted authentication request to an affected server, aka 'Azure DevOps Server and Team Foundation...
CVE-2019-0950 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2019-05-20 3.5
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from...
CVE-2019-0949 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2019-05-20 3.5
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from...
CVE-2019-0942 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-05-20 2.1
An elevation of privilege vulnerability exists in the Unified Write Filter (UWF) feature for Windows 10 when it improperly restricts access to the registry, aka 'Unified Write Filter Elevation of Privilege Vulnerability'.
CVE-2019-0940 1 Microsoft 2 Edge, Internet Explorer 2019-05-20 7.6
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.
CVE-2019-0936 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-05-20 7.2
An elevation of privilege vulnerability exists in Microsoft Windows when Windows fails to properly handle certain symbolic links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0734.
CVE-2019-0932 1 Microsoft 1 Skype 2019-05-20 4.3
An information disclosure vulnerability exists in Skype for Android, aka 'Skype for Android Information Disclosure Vulnerability'.
CVE-2019-0931 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-05-20 6.9
An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations, aka 'Windows Storage Service Elevation of Privilege Vulnerability'.
CVE-2019-0930 1 Microsoft 1 Internet Explorer 2019-05-20 4.3
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory, aka 'Internet Explorer Information Disclosure Vulnerability'.
CVE-2019-1008 1 Microsoft 2 Dynamics 365, Dynamics Crm 2015 2019-05-20 4.3
A security feature bypass vulnerability exists in Dynamics On Premise, aka 'Microsoft Dynamics On-Premise Security Feature Bypass'.
CVE-2019-0982 1 Microsoft 1 Asp.net Core 2019-05-20 5.0
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
CVE-2014-1818 1 Microsoft 9 Windows Rt 8.1, Windows 8, Windows Server 2008 and 6 more 2019-05-17 9.3
GDI+ in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Office 2007 SP3 and 2010 SP1 and SP2, Live Meeting...