Vulnerabilities (CVE)

Vendor filter

Microsoft Subscribe

Filter

6665 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1019 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-07-19 6.0
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request, aka 'Microsoft Windows...
CVE-2019-0966 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-18 5.5
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.
CVE-2019-1076 1 Microsoft 2 Team Foundation Server, Azure Devops Server 2019-07-18 3.5
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'.
CVE-2019-1116 1 Microsoft 2 Windows 7, Windows Server 2008 2019-07-17 4.3
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1094, CVE-2019-1095,...
CVE-2019-1063 1 Microsoft 1 Internet Explorer 2019-07-17 7.6
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'.
CVE-2019-1037 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 6.9
An elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.
CVE-2019-1101 1 Microsoft 2 Windows 7, Windows Server 2008 2019-07-17 4.3
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1094, CVE-2019-1095,...
CVE-2019-1118 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 9.3
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121,...
CVE-2019-1117 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 9.3
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121,...
CVE-2019-1083 1 Microsoft 1 .net Framework 2019-07-17 5.0
A denial of service vulnerability exists when Microsoft Common Object Runtime Library improperly handles web requests, aka '.NET Denial of Service Vulnerability'.
CVE-2019-1079 1 Microsoft 1 Visual Studio 2019-07-17 4.3
An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka 'Visual Studio Information Disclosure Vulnerability'.
CVE-2019-1091 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 2.1
An information disclosure vulnerability exists when Unistore.dll fails to properly handle objects in memory, aka 'Microsoft unistore.dll Information Disclosure Vulnerability'.
CVE-2019-1104 1 Microsoft 2 Edge, Internet Explorer 2019-07-17 7.6
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.
CVE-2019-1108 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-07-17 4.0
An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'.
CVE-2019-1110 1 Microsoft 3 Excel, Office, Office 365 Proplus 2019-07-17 9.3
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1111.
CVE-2019-1111 1 Microsoft 3 Excel, Office, Office 365 Proplus 2019-07-17 9.3
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1110.
CVE-2019-1112 1 Microsoft 2 Office, Office 365 Proplus 2019-07-17 4.3
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.
CVE-2019-1090 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 7.2
An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory, aka 'Windows dnsrlvr.dll Elevation of Privilege Vulnerability'.
CVE-2019-1074 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 2.1
An elevation of privilege vulnerability exists in Microsoft Windows where certain folders, with local service privilege, are vulnerable to symbolic link attack. An attacker who successfully exploited this vulnerability could potentially access...
CVE-2019-1129 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 7.2
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1130.