Vulnerabilities (CVE)

Vendor filter

Microsoft Subscribe

Product filter

Windows Server 2016 Subscribe

Filter

774 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1089 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-07-19 7.2
An elevation of privilege vulnerability exists in rpcss.dll when the RPC service Activation Kernel improperly handles an RPC request. To exploit this vulnerability, a low level authenticated attacker could run a specially crafted application. The...
CVE-2019-1102 1 Microsoft 7 Windows 10, Windows 7, Windows 8.1 and 4 more 2019-07-19 9.3
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.
CVE-2019-0785 1 Microsoft 3 Windows Server 2012, Windows Server 2016, Windows Server 2019 2019-07-19 7.5
A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'.
CVE-2019-1006 1 Microsoft 13 .net Framework, Identitymodel, Sharepoint Enterprise Server and 10 more 2019-07-19 5.0
An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'.
CVE-2019-1082 1 Microsoft 7 Windows 10, Windows 7, Windows 8.1 and 4 more 2019-07-19 7.2
An elevation of privilege vulnerability exists in Microsoft Windows where a certain DLL, with Local Service privilege, is vulnerable to race planting a customized DLL.An attacker who successfully exploited this vulnerability could potentially...
CVE-2019-0811 1 Microsoft 3 Windows Server 2012, Windows Server 2016, Windows Server 2019 2019-07-19 5.0
A denial of service vulnerability exists in Windows DNS Server when it fails to properly handle DNS queries, aka 'Windows DNS Server Denial of Service Vulnerability'.
CVE-2019-0887 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-07-19 8.5
A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
CVE-2019-1019 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-07-19 6.0
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request, aka 'Microsoft Windows...
CVE-2019-0966 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-18 5.5
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.
CVE-2019-1037 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 6.9
An elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.
CVE-2019-1118 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 9.3
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121,...
CVE-2019-1117 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 9.3
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121,...
CVE-2019-1091 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 2.1
An information disclosure vulnerability exists when Unistore.dll fails to properly handle objects in memory, aka 'Microsoft unistore.dll Information Disclosure Vulnerability'.
CVE-2019-1108 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-07-17 4.0
An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'.
CVE-2019-1090 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 7.2
An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory, aka 'Windows dnsrlvr.dll Elevation of Privilege Vulnerability'.
CVE-2019-1074 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 2.1
An elevation of privilege vulnerability exists in Microsoft Windows where certain folders, with local service privilege, are vulnerable to symbolic link attack. An attacker who successfully exploited this vulnerability could potentially access...
CVE-2019-1129 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 7.2
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1130.
CVE-2019-1130 1 Microsoft 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more 2019-07-17 7.2
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.
CVE-2019-1067 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2019-07-17 7.2
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'.
CVE-2019-1096 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-07-17 2.1
An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.