Filtered by vendor Microsoft
Subscribe
Total
17397 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-28309 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-15 | 2.1 LOW | 5.5 MEDIUM |
| Windows Kernel Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-27093. | |||||
| CVE-2021-28318 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-15 | 2.1 LOW | 5.5 MEDIUM |
| Windows GDI+ Information Disclosure Vulnerability | |||||
| CVE-2021-28315 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-15 | 4.6 MEDIUM | 7.8 HIGH |
| Windows Media Video Decoder Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-27095. | |||||
| CVE-2021-28319 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2021-04-15 | 5.0 MEDIUM | 7.5 HIGH |
| Windows TCP/IP Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-28439. | |||||
| CVE-2021-28317 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-15 | 2.1 LOW | 5.5 MEDIUM |
| Microsoft Windows Codecs Library Information Disclosure Vulnerability | |||||
| CVE-2021-28316 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-15 | 2.1 LOW | 4.6 MEDIUM |
| Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability | |||||
| CVE-2021-28324 | 1 Microsoft | 2 Windows 10, Windows Server 2016 | 2021-04-15 | 5.0 MEDIUM | 7.5 HIGH |
| Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-28325. | |||||
| CVE-2021-27079 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2021-04-15 | 6.3 MEDIUM | 5.7 MEDIUM |
| Windows Media Photo Codec Information Disclosure Vulnerability | |||||
| CVE-2021-27067 | 1 Microsoft | 2 Azure Devops Server, Team Foundation Server | 2021-04-15 | 4.0 MEDIUM | 6.5 MEDIUM |
| Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability | |||||
| CVE-2021-26417 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2021-04-15 | 2.1 LOW | 5.5 MEDIUM |
| Windows Overlay Filter Information Disclosure Vulnerability | |||||
| CVE-2021-27089 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-15 | 6.8 MEDIUM | 7.8 HIGH |
| Microsoft Internet Messaging API Remote Code Execution Vulnerability | |||||
| CVE-2021-3146 | 2 Dolby, Microsoft | 5 Audio X2, Exchange Server, Visual C\+\+ and 2 more | 2021-04-14 | 4.6 MEDIUM | 7.8 HIGH |
| The Dolby Audio X2 (DAX2) API service before 0.8.8.90 on Windows allows local users to gain privileges. | |||||
| CVE-2021-20334 | 2 Microsoft, Mongodb | 2 Windows, Compass | 2021-04-14 | 4.6 MEDIUM | 7.8 HIGH |
| A malicious 3rd party with local access to the Windows machine where MongoDB Compass is installed can execute arbitrary software with the privileges of the user who is running MongoDB Compass. This issue affects: MongoDB Inc. MongoDB Compass 1.x version 1.3.0 on Windows and later versions; 1.x versions prior to 1.25.0 on Windows. | |||||
| CVE-2009-3588 | 4 Broadcom, Ca, Linux and 1 more | 35 Anti-virus, Anti-virus For The Enterprise, Anti-virus Sdk and 32 more | 2021-04-14 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service via a crafted RAR archive file that triggers stack corruption, a different vulnerability than CVE-2009-3587. | |||||
| CVE-2021-28483 | 1 Microsoft | 1 Exchange Server | 2021-04-14 | 7.7 HIGH | 9.0 CRITICAL |
| Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28480, CVE-2021-28481, CVE-2021-28482. | |||||
| CVE-2021-28480 | 1 Microsoft | 1 Exchange Server | 2021-04-14 | 10.0 HIGH | 9.8 CRITICAL |
| Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28481, CVE-2021-28482, CVE-2021-28483. | |||||
| CVE-2021-28481 | 1 Microsoft | 1 Exchange Server | 2021-04-14 | 10.0 HIGH | 9.8 CRITICAL |
| Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28480, CVE-2021-28482, CVE-2021-28483. | |||||
| CVE-2021-28482 | 1 Microsoft | 1 Exchange Server | 2021-04-14 | 9.0 HIGH | 8.8 HIGH |
| Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28480, CVE-2021-28481, CVE-2021-28483. | |||||
| CVE-2021-20480 | 5 Hp, Ibm, Linux and 2 more | 8 Hp-ux, Aix, I and 5 more | 2021-04-12 | 4.0 MEDIUM | 6.5 MEDIUM |
| IBM WebSphere Application Server 7.0, 8.0, and 8.5 is vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, a remote authenticated attacker could exploit this vulnerability to obtain sensitive data. IBM X-Force ID: 197502. | |||||
| CVE-2020-4976 | 4 Ibm, Linux, Microsoft and 1 more | 4 Db2, Linux Kernel, Windows and 1 more | 2021-04-12 | 3.6 LOW | 4.4 MEDIUM |
| IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to read and write specific files due to weak file permissions. IBM X-Force ID: 192469. | |||||