Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Microsoft Subscribe
Filtered by product Windows 10
Total 4164 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-1596 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-28 2.9 LOW 5.3 MEDIUM
A information disclosure vulnerability exists when TLS components use weak hash algorithms, aka 'TLS Information Disclosure Vulnerability'.
CVE-2020-1593 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-28 6.8 MEDIUM 8.8 HIGH
A remote code execution vulnerability exists when Windows Media Audio Decoder improperly handles objects, aka 'Windows Media Audio Decoder Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1508.
CVE-2020-1113 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-28 9.3 HIGH 7.5 HIGH
A security feature bypass vulnerability exists in Microsoft Windows when the Task Scheduler service fails to properly verify client connections over RPC, aka 'Windows Task Scheduler Security Feature Bypass Vulnerability'.
CVE-2020-0922 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-28 9.3 HIGH 8.8 HIGH
A remote code execution vulnerability exists in the way that Microsoft COM for Windows handles objects in memory, aka 'Microsoft COM for Windows Remote Code Execution Vulnerability'.
CVE-2020-1592 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2020-09-17 2.1 LOW 3.3 LOW
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0928, CVE-2020-1033, CVE-2020-1589, CVE-2020-16854.
CVE-2020-0870 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2020-09-17 7.2 HIGH 7.8 HIGH
An elevation of privilege vulnerability exists when the Shell infrastructure component improperly handles objects in memory, aka 'Shell infrastructure component Elevation of Privilege Vulnerability'.
CVE-2020-1285 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-17 9.3 HIGH 8.8 HIGH
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.
CVE-2020-1252 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-17 6.8 MEDIUM 7.8 HIGH
A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.
CVE-2020-1180 1 Microsoft 5 Chakracore, Edge, Windows 10 and 2 more 2020-09-17 7.6 HIGH 7.5 HIGH
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1057, CVE-2020-1172.
CVE-2020-1172 1 Microsoft 5 Chakracore, Edge, Windows 10 and 2 more 2020-09-17 7.6 HIGH 7.5 HIGH
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1057, CVE-2020-1180.
CVE-2020-1031 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-16 5.0 MEDIUM 7.5 HIGH
An information disclosure vulnerability exists in the way that the Windows Server DHCP service improperly discloses the contents of its memory.To exploit the vulnerability, an unauthenticated attacker could send a specially crafted packet to an affected DHCP server, aka 'Windows DHCP Server Information Disclosure Vulnerability'.
CVE-2020-0997 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2020-09-16 9.3 HIGH 7.8 HIGH
A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory, aka 'Windows Camera Codec Pack Remote Code Execution Vulnerability'.
CVE-2020-16854 1 Microsoft 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more 2020-09-16 2.1 LOW 5.5 MEDIUM
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0928, CVE-2020-1033, CVE-2020-1589, CVE-2020-1592.
CVE-2020-1074 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-16 9.3 HIGH 7.8 HIGH
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1039.
CVE-2020-1083 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-16 2.1 LOW 5.5 MEDIUM
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka 'Microsoft Graphics Component Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0921.
CVE-2020-1122 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2020-09-15 4.6 MEDIUM 7.8 HIGH
An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'.
CVE-2020-1129 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2020-09-15 6.8 MEDIUM 8.8 HIGH
A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1319.
CVE-2020-1119 1 Microsoft 2 Windows 10, Windows Server 2016 2020-09-15 2.1 LOW 5.5 MEDIUM
An information disclosure vulnerability exists when StartTileData.dll improperly handles objects in memory, aka 'Windows Information Disclosure Vulnerability'.
CVE-2020-1039 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-15 9.3 HIGH 7.8 HIGH
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1074.
CVE-2020-1038 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2020-09-15 4.9 MEDIUM 5.5 MEDIUM
A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory, aka 'Windows Routing Utilities Denial of Service'.